Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/WTTJtRSH9MAtUusvRoTiM22ere0.roa
File: WTTJtRSH9MAtUusvRoTiM22ere0.roa (raw, json)
Hash identifier: mkoovVgSvNkjJp0JQKmqqk7ryyjJNDO0FgEEO/zWE0s=
Subject key identifier: 59:34:C9:B5:14:87:F4:C0:2D:52:EB:2F:46:84:E2:33:6D:9E:AD:ED
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 018BA5377191EA003368028020701FE07AE5
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/WTTJtRSH9MAtUusvRoTiM22ere0.roa
Signing time: Mon 06 Nov 2023 15:19:16 +0000
ROA not before: Mon 06 Nov 2023 15:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25135
IP address blocks: 88.82.0.0/19 maxlen: 19
148.252.160.0/19 maxlen: 19
212.183.152.0/21 maxlen: 21
85.255.224.0/20 maxlen: 20
148.252.132.0/23 maxlen: 23
148.252.128.0/23 maxlen: 23
148.252.128.0/19 maxlen: 19
148.252.136.0/22 maxlen: 22
85.255.232.0/23 maxlen: 23
212.183.128.0/20 maxlen: 20
212.183.128.0/19 maxlen: 19
148.252.144.0/23 maxlen: 23
148.252.140.0/23 maxlen: 23
85.255.236.0/23 maxlen: 23
85.255.234.0/23 maxlen: 23
148.252.152.0/24 maxlen: 24
148.252.150.0/24 maxlen: 24
148.252.148.0/23 maxlen: 23
148.252.146.0/23 maxlen: 23
148.252.158.0/23 maxlen: 23
148.252.156.0/23 maxlen: 23
185.69.144.0/22 maxlen: 22
194.62.232.0/24 maxlen: 24
194.62.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:37:71:91:ea:00:33:68:02:80:20:70:1f:e0:7a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Nov 6 15:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5934c9b51487f4c02d52eb2f4684e2336d9eaded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ca:9c:d8:4d:ba:d4:82:96:fd:21:83:e7:ca:
84:d4:ef:1f:8f:71:49:00:cf:9f:8c:dc:77:05:46:
78:fb:ce:0b:c7:6b:11:9e:b9:25:c4:b0:07:0d:f4:
d2:f2:60:4a:c0:5a:69:eb:1e:a5:e6:12:a1:27:b1:
9e:76:60:31:c0:c6:e0:b8:4c:c3:7c:a0:e1:ca:8c:
05:bc:32:25:bc:a7:01:f4:0e:e7:48:c1:a5:4a:a9:
d5:90:05:20:93:7c:7a:06:dc:0d:00:57:cb:9b:53:
b5:18:d6:6d:37:ce:25:23:18:06:24:97:23:4d:9f:
89:b2:49:a5:f6:69:ee:b2:8e:81:bc:29:cb:40:40:
c4:4b:62:17:6e:8f:94:22:36:25:aa:ca:ac:1c:c8:
8b:31:84:93:cb:e9:ce:ca:15:7e:67:9d:a0:f3:43:
13:bb:50:8a:41:2a:e9:80:2b:dc:4c:af:7c:18:ce:
cf:1a:4d:bc:6d:c4:56:cd:7d:8e:2a:b1:77:95:65:
53:dc:f1:fa:f9:ab:a3:86:0e:ce:27:5c:8f:e1:1d:
96:58:60:05:b5:df:12:28:1b:ac:1e:65:16:74:6c:
06:b9:de:c4:49:e3:22:89:81:4f:be:7b:ff:60:67:
62:81:e7:39:fa:ce:77:44:4f:39:a5:07:9a:b9:dc:
cb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:34:C9:B5:14:87:F4:C0:2D:52:EB:2F:46:84:E2:33:6D:9E:AD:ED
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/WTTJtRSH9MAtUusvRoTiM22ere0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.224.0/20
88.82.0.0/19
148.252.128.0/18
185.69.144.0/22
194.62.232.0/24
194.62.238.0/24
212.183.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:cf:1b:ca:04:5b:75:8a:39:16:ec:25:64:12:76:d0:6e:2e:
6c:55:fe:ab:1d:c4:ee:46:46:9a:94:ec:ed:76:a0:60:96:63:
b8:c2:b7:34:26:d1:60:cd:f8:f7:b7:7a:89:98:4e:4d:e4:00:
10:e1:c4:7e:f5:cd:26:bc:9a:42:4c:8d:0f:8d:09:3c:d4:12:
b6:c7:76:4d:9f:25:3b:2b:4a:3d:c7:62:8a:50:54:98:69:21:
fa:34:ff:9f:32:a7:82:29:70:cd:c8:61:91:95:40:b6:b2:f0:
3a:44:fc:2a:ec:16:51:ad:50:b1:0b:96:a6:76:d9:3d:68:84:
74:fa:67:64:2f:e6:ea:93:6c:f1:42:bb:b7:a2:9d:80:ce:b7:
52:5b:5b:b5:b1:9f:9c:4f:e7:22:78:2b:09:8b:39:2a:39:5a:
de:e7:f9:79:e2:a0:e4:cc:5d:e8:86:6d:d4:dc:c7:46:af:c5:
29:84:3e:21:c9:ff:42:4a:0e:df:8e:fe:c0:3c:1a:ae:b0:69:
09:99:2f:9c:09:54:c2:b5:eb:23:4c:ee:ac:dd:fe:91:8c:12:
cf:49:84:b4:d9:26:b9:3c:0d:9a:7b:64:14:78:9a:d4:c0:b2:
0d:5b:78:ae:8f:9e:10:3f:d6:e7:9d:04:bb:18:c2:0e:e8:32:
3f:fe:39:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:28 2024 by rpki-client on console-ams.rpki-client.org