Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/WY5BB0d3caQ9SJvj771e1SjzYdk.roa
File: WY5BB0d3caQ9SJvj771e1SjzYdk.roa (raw, json)
Hash identifier: RIYzU3FBbRe0oh6h4SV46LlCD4pt8TICvsZ/pHPNnhk=
Subject key identifier: 59:8E:41:07:47:77:71:A4:3D:48:9B:E3:EF:BD:5E:D5:28:F3:61:D9
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 018F0CE1516E2A72A6AEE78E94BD07456508
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/WY5BB0d3caQ9SJvj771e1SjzYdk.roa
Signing time: Tue 23 Apr 2024 21:34:04 +0000
ROA not before: Tue 23 Apr 2024 21:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 62.171.192.0/18 maxlen: 24
185.192.228.0/22 maxlen: 24
194.154.0.0/19 maxlen: 24
194.238.32.0/19 maxlen: 24
194.238.64.0/19 maxlen: 24
213.18.192.0/18 maxlen: 24
217.177.0.0/18 maxlen: 24
217.177.64.0/19 maxlen: 24
217.179.0.0/17 maxlen: 24
217.179.192.0/18 maxlen: 24
217.180.0.0/19 maxlen: 24
217.180.32.0/20 maxlen: 24
217.180.48.0/21 maxlen: 24
217.180.56.0/22 maxlen: 24
217.181.0.0/18 maxlen: 24
217.181.64.0/19 maxlen: 24
2a02:fb0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 May 2024 21:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0c:e1:51:6e:2a:72:a6:ae:e7:8e:94:bd:07:45:65:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Apr 23 21:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=598e4107477771a43d489be3efbd5ed528f361d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a7:30:cc:68:61:51:85:75:41:1a:b4:ed:ab:
c8:dc:91:e8:76:23:2f:e4:06:d2:b7:02:cf:1e:4b:
33:7f:60:16:fb:89:c6:3f:0e:46:4f:ec:3d:fa:e9:
81:62:f5:64:8c:f8:fc:8d:8f:55:09:f2:e3:23:c8:
83:38:f0:7f:d5:43:37:8e:a6:66:75:3e:0a:12:a6:
60:e6:09:c8:cb:7b:c8:4d:03:e2:d5:f5:05:02:ad:
98:3a:19:1f:07:ee:2c:a7:f3:c2:e9:78:df:64:3f:
e6:0d:81:c2:0c:34:42:d2:08:b7:e5:7e:8a:68:52:
4d:c5:1a:ea:4f:02:8c:fd:9a:81:41:39:6f:80:72:
60:09:7a:7f:a1:bb:7d:6a:8e:52:73:66:68:f0:5b:
c8:29:30:9a:28:e2:5c:f8:0c:5d:43:0b:15:cd:c7:
ef:c5:5c:50:f9:c8:bb:bc:5b:a4:b1:42:0f:4c:24:
7b:c8:af:b1:3f:c1:53:a9:42:c8:66:52:f2:21:e1:
1e:92:7d:1b:80:e5:06:32:09:1c:1b:06:64:a4:10:
7d:6e:30:9f:7b:7b:db:25:f2:b5:e1:47:5f:6d:f3:
f8:f2:83:ec:66:b4:72:92:e9:28:89:48:ac:c9:6f:
53:c8:f3:cb:8a:69:2f:b5:37:0e:6e:13:d6:85:56:
b0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8E:41:07:47:77:71:A4:3D:48:9B:E3:EF:BD:5E:D5:28:F3:61:D9
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/WY5BB0d3caQ9SJvj771e1SjzYdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.192.0/18
185.192.228.0/22
194.154.0.0/19
194.238.32.0-194.238.95.255
213.18.192.0/18
217.177.0.0-217.177.95.255
217.179.0.0/17
217.179.192.0-217.180.59.255
217.181.0.0-217.181.95.255
IPv6:
2a02:fb0::/32
Signature Algorithm: sha256WithRSAEncryption
00:9c:33:c1:3a:3c:b5:7b:cd:58:ea:b7:52:77:8c:86:a9:be:
89:86:3c:a4:f4:08:4c:7b:50:9b:a4:08:d3:88:b5:42:d7:54:
1d:1c:72:59:4c:e2:59:91:e0:42:03:51:3b:3f:54:2f:30:de:
c8:56:ce:2b:52:04:e8:5d:80:fc:27:39:0e:d1:4e:9f:f1:1d:
72:88:49:34:21:a3:e3:31:aa:38:2b:99:49:6a:24:f5:c2:f2:
14:0e:af:b2:a1:f8:ef:d8:43:b8:5b:5a:c1:ff:4a:3b:94:26:
e8:52:5c:04:fb:cc:28:37:2f:16:61:20:25:2d:79:c5:0b:aa:
cf:75:6e:09:6f:98:9e:54:47:00:02:35:d7:2c:29:69:20:2e:
13:20:ff:52:f9:ff:08:a0:ce:78:35:1a:42:4f:7f:0d:9e:9f:
ed:ea:ba:bf:09:7e:3c:ef:27:4e:32:6d:3d:59:03:0a:35:9e:
d3:44:d1:c9:5d:11:bf:51:f5:f5:d2:ee:4c:e0:cd:7a:35:8c:
e5:8c:74:8b:aa:3b:b4:9a:69:36:69:fd:0e:3b:9c:a9:1d:8d:
03:a0:20:7e:df:8e:66:c5:f7:b9:d1:06:22:24:65:18:de:94:
a7:2e:0d:f0:21:79:d1:80:b1:c4:d9:c6:0a:24:43:e2:b1:a4:
e7:42:18:70
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAY8M4VFuKnKmrueOlL0HRWUIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjQwNDIzMjEzNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OThlNDEwNzQ3Nzc3MWE0M2Q0ODliZTNlZmJkNWVkNTI4ZjM2MWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhKcwzGhhUYV1QRq07avI3JHodiMv
5AbStwLPHkszf2AW+4nGPw5GT+w9+umBYvVkjPj8jY9VCfLjI8iDOPB/1UM3jqZm
dT4KEqZg5gnIy3vITQPi1fUFAq2YOhkfB+4sp/PC6XjfZD/mDYHCDDRC0gi35X6K
aFJNxRrqTwKM/ZqBQTlvgHJgCXp/obt9ao5Sc2Zo8FvIKTCaKOJc+AxdQwsVzcfv
xVxQ+ci7vFuksUIPTCR7yK+xP8FTqULIZlLyIeEekn0bgOUGMgkcGwZkpBB9bjCf
e3vbJfK14UdfbfP48oPsZrRykukoiUisyW9TyPPLimkvtTcObhPWhVawywIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFFmOQQdHd3GkPUib4++9XtUo82HZMB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvV1k1QkIwZDNjYVE5U0p2ajc3MWUxU2p6WWRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQGPqvAAwQC
ucDkAwQFwpoAMAwDBAXC7iADBAXC7kADBAbVEsAwCwMDANmxAwQF2bFAAwQH2bMA
MAwDBAbZs8ADBALZtDgwCwMDANm1AwQF2bVAMA0EAgACMAcDBQAqAg+wMA0GCSqG
SIb3DQEBCwUAA4IBAQAAnDPBOjy1e81Y6rdSd4yGqb6Jhjyk9AhMe1CbpAjTiLVC
11QdHHJZTOJZkeBCA1E7P1QvMN7IVs4rUgToXYD8JzkO0U6f8R1yiEk0IaPjMao4
K5lJaiT1wvIUDq+yofjv2EO4W1rB/0o7lCboUlwE+8woNy8WYSAlLXnFC6rPdW4J
b5ieVEcAAjXXLClpIC4TIP9S+f8IoM54NRpCT38Nnp/t6rq/CX487ydOMm09WQMK
NZ7TRNHJXRG/UfX10u5M4M16NYzljHSLqju0mmk2af0OO5ypHY0DoCB+345mxfe5
0QYiJGUY3pSnLg3wIXnRgLHE2cYKJEPisaTnQhhw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:08 2024 by rpki-client on console-fra.rpki-client.org