Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/_WvxWLtSKucvrA-Q_zIWrM_W3l0.roa
File: _WvxWLtSKucvrA-Q_zIWrM_W3l0.roa (raw, json)
Hash identifier: Yys+VsQpup2lJxcMsvfv33nonX3mUaCGc7pKtCjN5TI=
Subject key identifier: FD:6B:F1:58:BB:52:2A:E7:2F:AC:0F:90:FF:32:16:AC:CF:D6:DE:5D
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 018AACA29275C3825801121CB142E015FD16
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/_WvxWLtSKucvrA-Q_zIWrM_W3l0.roa
Signing time: Tue 19 Sep 2023 08:50:50 +0000
ROA not before: Tue 19 Sep 2023 08:50:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.111.120.0/22 maxlen: 24
185.2.24.0/22 maxlen: 24
80.247.160.0/20 maxlen: 24
193.239.88.0/22 maxlen: 24
185.139.148.0/22 maxlen: 24
85.255.208.0/20 maxlen: 24
81.26.208.0/20 maxlen: 24
87.237.96.0/21 maxlen: 24
87.237.96.0/23 maxlen: 24
94.126.64.0/21 maxlen: 24
87.237.100.0/23 maxlen: 24
62.148.160.0/19 maxlen: 24
81.93.48.0/20 maxlen: 24
2a02:728::/32 maxlen: 48
2a06:5dc0::/29 maxlen: 48
2001:16e8::/32 maxlen: 48
2a00:f80::/32 maxlen: 48
2a02:4640::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Sep 2023 06:55:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:a2:92:75:c3:82:58:01:12:1c:b1:42:e0:15:fd:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Sep 19 08:50:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd6bf158bb522ae72fac0f90ff3216accfd6de5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b7:7c:1b:4c:93:8b:cd:58:41:05:a7:e3:2d:
71:2f:41:ab:e2:82:08:f8:22:b1:69:09:83:9a:c3:
aa:ec:08:10:5b:0e:f2:45:60:54:7d:4d:31:23:c4:
84:a9:53:bd:3c:28:0d:fe:57:ea:91:e1:b2:60:8d:
e7:cb:40:cc:c1:ac:01:13:74:d4:e8:2d:8f:1c:5a:
10:24:21:7e:26:80:52:d8:c1:ef:4a:c3:b6:5b:a7:
88:5e:59:46:31:b2:2e:2a:72:6e:22:84:fa:23:a0:
c1:b3:f5:55:21:13:79:14:52:e9:2a:0c:be:0f:b2:
f0:f2:f5:ce:8c:1d:4c:4e:11:d5:a6:6e:3d:14:46:
30:35:eb:99:f2:36:7a:2c:da:16:22:1d:b5:d6:a0:
af:e4:c8:ff:a1:24:6a:24:89:dd:0a:ff:57:60:ac:
51:56:08:6d:51:8f:60:9c:ef:de:40:e4:8f:c4:35:
00:99:23:ee:87:4a:18:cf:e4:f4:03:50:38:e4:36:
2d:39:9e:bd:7b:6f:bf:14:53:0b:32:3a:c7:f5:6f:
fa:51:51:3f:c7:b1:17:2b:8f:b7:42:bd:62:65:cc:
68:c7:20:80:a0:b1:e4:c8:b5:3c:d1:bb:13:1c:0f:
5f:bd:85:36:79:c7:ba:6a:a1:2a:b0:b3:3b:c3:e9:
63:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:6B:F1:58:BB:52:2A:E7:2F:AC:0F:90:FF:32:16:AC:CF:D6:DE:5D
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/_WvxWLtSKucvrA-Q_zIWrM_W3l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/21
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
37:2f:fa:92:16:e9:cd:91:bd:66:b7:7e:73:9f:81:99:3e:e3:
f2:a6:88:e2:8e:21:22:e1:3a:05:5e:2c:ff:a0:0d:44:96:cb:
c0:27:5d:f3:25:d9:f7:4f:e8:7f:fb:fe:26:50:5c:62:0e:0b:
56:19:a2:da:6e:c3:f5:0c:b7:40:9c:47:b4:e9:4a:3c:68:81:
5b:99:b8:c8:c0:6b:5c:c7:69:09:ae:ac:ad:2c:40:8b:dc:f2:
64:00:02:bb:19:77:bb:3f:67:d6:c1:c7:7e:c6:de:f3:d3:36:
19:cd:ba:00:b7:c0:9f:f8:14:76:90:c1:95:08:f3:dc:24:dd:
34:f2:d4:01:42:4c:f6:9a:28:94:7d:cb:e7:4b:76:86:4b:db:
59:12:9d:a3:89:d2:59:56:27:9b:d0:4f:e3:cb:f8:c4:5b:a5:
26:09:ef:d0:f0:ff:b4:1a:4d:d5:c1:b3:42:bc:93:59:9d:1c:
e0:72:40:ae:47:73:ea:38:de:5b:80:17:b1:bb:be:d1:3e:39:
b7:62:0f:10:fd:84:73:44:eb:d6:f3:42:2b:1c:27:09:2e:a4:
a8:39:55:66:38:5f:72:0f:2e:19:a2:bc:f3:d2:9e:cc:72:a8:
13:8f:a6:b8:e2:9b:74:c9:3b:d0:d7:ff:40:c3:93:1a:4e:5c:
92:eb:9d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:47 2024 by rpki-client on console-ams.rpki-client.org