Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Wb9tkxTekQHDRxW367hlEYApDDE.roa
File: Wb9tkxTekQHDRxW367hlEYApDDE.roa (raw, json)
Hash identifier: 0iM2BP9xdUYFIA46WqO0RlIbN16X/2i0vU2LiNo4VbA=
Subject key identifier: 59:BF:6D:93:14:DE:91:01:C3:47:15:B7:EB:B8:65:11:80:29:0C:31
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 0187E0C24EF5E3AB51E819643153A71B9E60
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Wb9tkxTekQHDRxW367hlEYApDDE.roa
Signing time: Wed 03 May 2023 08:37:23 +0000
ROA not before: Wed 03 May 2023 08:37:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 188.241.249.0/24 maxlen: 32
185.66.136.0/22 maxlen: 32
92.255.52.0/24 maxlen: 32
92.255.64.0/24 maxlen: 32
212.70.3.0/24 maxlen: 32
188.241.200.0/21 maxlen: 32
119.12.192.0/20 maxlen: 32
212.70.8.0/21 maxlen: 32
92.255.80.0/22 maxlen: 32
89.46.242.0/24 maxlen: 32
92.114.81.0/24 maxlen: 32
180.235.160.0/20 maxlen: 32
86.104.76.0/22 maxlen: 32
89.40.81.0/24 maxlen: 32
180.235.176.0/20 maxlen: 32
110.238.192.0/19 maxlen: 32
92.114.60.0/22 maxlen: 32
91.92.216.0/23 maxlen: 32
188.241.15.0/24 maxlen: 32
91.92.218.0/24 maxlen: 32
94.177.14.0/23 maxlen: 32
93.113.52.0/23 maxlen: 24
188.240.214.0/23 maxlen: 32
91.92.178.0/23 maxlen: 32
94.139.224.0/20 maxlen: 24
188.241.0.0/23 maxlen: 32
92.255.0.0/24 maxlen: 32
85.217.190.0/23 maxlen: 32
193.56.24.0/22 maxlen: 32
89.32.132.0/22 maxlen: 32
188.211.24.0/23 maxlen: 32
86.106.176.0/23 maxlen: 32
85.217.220.0/23 maxlen: 32
176.223.104.0/22 maxlen: 32
94.139.48.0/21 maxlen: 32
94.139.56.0/22 maxlen: 32
91.92.17.0/24 maxlen: 32
91.92.20.0/24 maxlen: 32
91.92.22.0/23 maxlen: 32
94.139.60.0/23 maxlen: 32
94.176.0.0/23 maxlen: 32
193.142.103.0/24 maxlen: 32
176.223.68.0/22 maxlen: 32
188.240.48.0/23 maxlen: 32
94.176.172.0/22 maxlen: 32
89.38.155.0/24 maxlen: 32
91.92.138.0/24 maxlen: 32
193.200.104.0/23 maxlen: 32
91.92.64.0/24 maxlen: 32
176.223.182.0/23 maxlen: 32
185.101.68.0/22 maxlen: 32
188.212.136.0/21 maxlen: 32
119.13.224.0/20 maxlen: 32
93.114.236.0/22 maxlen: 32
93.114.136.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
2.57.76.0/22 maxlen: 32
89.104.122.0/23 maxlen: 32
31.14.26.0/24 maxlen: 32
89.223.22.0/23 maxlen: 32
91.192.212.0/22 maxlen: 32
93.115.4.0/23 maxlen: 32
77.81.92.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 23 May 2023 06:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:c2:4e:f5:e3:ab:51:e8:19:64:31:53:a7:1b:9e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: May 3 08:37:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59bf6d9314de9101c34715b7ebb8651180290c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e6:5d:51:37:e7:ff:73:06:8d:1f:00:e8:c4:
0b:93:5d:16:a6:8f:ce:5f:e4:cc:e7:e4:0a:ef:1f:
15:14:f6:ae:04:84:db:b7:25:e3:01:7b:eb:53:15:
b9:62:ca:e5:7b:d8:c9:d0:87:06:a9:11:ae:67:9a:
b5:18:ea:47:15:39:bd:c4:ed:60:80:65:a1:91:03:
d1:da:19:ea:90:3b:f7:bf:50:42:1c:7b:94:ff:59:
41:55:9a:14:05:fa:26:9b:7f:22:28:37:13:bd:98:
6d:3f:8b:93:8d:03:e4:45:a8:15:9d:da:c8:77:c2:
5b:bb:79:29:8a:69:6b:ef:08:88:49:f1:83:ff:a4:
b7:86:f3:2c:c6:55:ae:c9:13:66:b6:5e:c7:6c:1e:
74:f1:86:bd:ca:15:ff:71:16:f0:b3:a5:d7:b4:c7:
11:d9:d7:4b:a1:9e:33:91:2d:55:bf:1e:f1:67:a4:
89:ee:aa:d7:53:b1:47:bf:93:8b:73:4f:87:f4:c2:
7d:66:bd:d3:be:2f:e9:90:95:b2:02:60:ac:d1:5f:
c0:7c:24:c7:1b:4d:c3:55:5c:b7:b2:f7:f9:97:66:
5c:15:2f:a9:66:fb:ae:e6:e8:c6:d7:e0:02:1f:24:
1e:e0:24:16:73:43:51:f3:d1:96:35:14:85:21:e5:
1a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BF:6D:93:14:DE:91:01:C3:47:15:B7:EB:B8:65:11:80:29:0C:31
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Wb9tkxTekQHDRxW367hlEYApDDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.76.0/22
31.14.26.0/24
77.81.92.0/22
85.217.190.0/23
85.217.220.0/23
86.104.76.0/22
86.106.176.0/23
89.32.132.0/22
89.38.155.0/24
89.40.81.0/24
89.46.242.0/24
89.104.122.0/23
89.223.22.0/23
91.92.17.0/24
91.92.20.0/24
91.92.22.0/23
91.92.64.0/24
91.92.138.0/24
91.92.178.0/23
91.92.216.0-91.92.218.255
91.192.212.0/22
92.114.60.0/22
92.114.81.0/24
92.255.0.0/24
92.255.52.0/24
92.255.64.0/24
92.255.80.0/22
93.113.52.0/23
93.114.136.0/23
93.114.236.0/22
93.115.4.0/23
94.139.48.0-94.139.61.255
94.139.224.0/20
94.176.0.0/23
94.176.172.0/22
94.177.14.0/23
110.238.192.0/19
119.12.192.0/20
119.13.224.0/20
176.223.68.0/22
176.223.104.0/22
176.223.182.0/23
180.235.160.0/19
185.66.136.0/22
185.101.68.0/22
188.94.84.0/22
188.211.24.0/23
188.212.136.0/21
188.240.48.0/23
188.240.214.0/23
188.241.0.0/23
188.241.15.0/24
188.241.200.0/21
188.241.249.0/24
193.56.24.0/22
193.142.103.0/24
193.200.104.0/23
212.70.3.0/24
212.70.8.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:1d:d0:cd:d2:81:ce:e8:8f:f0:91:38:d7:3d:c8:41:97:8a:
84:2a:74:f8:07:20:a3:77:8e:ed:f9:88:ff:bb:bb:10:f0:9a:
c9:15:96:63:c7:e9:1a:27:6e:aa:d1:05:36:32:82:c8:84:6f:
0a:77:bd:f6:27:ef:92:59:36:b2:79:3c:14:55:09:06:62:e6:
99:f3:74:c8:52:1a:83:f1:97:72:14:17:ff:10:db:fc:03:00:
7b:76:31:d1:26:88:c7:f1:30:6f:82:a6:48:9f:0f:01:99:7a:
82:eb:fc:1d:12:c6:77:31:94:2a:47:b0:4a:71:5c:93:f7:18:
2c:7d:36:af:26:2f:fb:44:2d:2e:9c:76:51:6d:28:b8:39:a3:
4b:02:e5:4e:13:66:12:31:25:8f:f9:71:d8:d2:d4:fd:67:5c:
f3:62:13:47:d2:0d:aa:9d:8e:f8:0a:23:e7:4a:51:1f:61:7d:
08:cc:1d:30:93:4d:89:ec:1e:98:07:b8:64:3b:c5:f0:98:8e:
35:5d:d1:f4:6c:59:7b:26:27:4c:9d:f8:6f:31:07:22:8b:75:
99:31:dc:af:96:f0:39:97:9e:8c:f0:c7:86:8a:5f:28:f5:5b:
89:26:f4:fc:e0:6b:b8:46:b3:e3:06:34:c4:30:d5:b2:66:61:
62:c6:a5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:46 2024 by rpki-client on console-fra.rpki-client.org