Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WggbHYmf8y3T1HXW7RROogSSBVg.roa
File: WggbHYmf8y3T1HXW7RROogSSBVg.roa (raw, json)
Hash identifier: P6SA4TrStnC8XusIdbDRPSLZ4v7fs4UKifT6JMerKrQ=
Subject key identifier: 5A:08:1B:1D:89:9F:F3:2D:D3:D4:75:D6:ED:14:4E:A2:04:92:05:58
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 01942747748938D892D9B278D4C0EB4D908D
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WggbHYmf8y3T1HXW7RROogSSBVg.roa
Signing time: Thu 02 Jan 2025 13:49:41 +0000
ROA not before: Thu 02 Jan 2025 13:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48467
IP address blocks: 94.228.160.0/24 maxlen: 24
94.228.167.0/24 maxlen: 24
94.228.171.0/24 maxlen: 24
94.228.172.0/22 maxlen: 22
94.228.172.0/24 maxlen: 24
178.236.240.0/23 maxlen: 23
178.236.242.0/24 maxlen: 24
178.236.245.0/24 maxlen: 24
178.236.248.0/22 maxlen: 22
178.236.252.0/24 maxlen: 24
178.236.255.0/24 maxlen: 24
185.46.44.0/22 maxlen: 22
185.46.44.0/23 maxlen: 23
185.46.44.0/24 maxlen: 24
185.46.45.0/24 maxlen: 24
185.46.46.0/23 maxlen: 23
185.46.46.0/24 maxlen: 24
185.46.47.0/24 maxlen: 24
2a02:2070::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 05 Feb 2025 13:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:74:89:38:d8:92:d9:b2:78:d4:c0:eb:4d:90:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Jan 2 13:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a081b1d899ff32dd3d475d6ed144ea204920558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:3f:b5:1a:d3:b8:bc:17:e8:aa:d0:07:e1:
0e:3d:ff:5c:d8:8d:7c:3e:ac:ba:ac:4a:c3:32:a6:
b0:5d:45:18:9c:0e:cb:08:45:00:19:f0:d4:36:bf:
40:00:bb:8d:9e:5c:c4:c1:92:85:e7:d3:9d:c4:1a:
96:5e:8d:26:78:f4:b6:98:a1:92:3a:c7:2e:41:2d:
a0:84:cb:6d:18:a7:5b:c3:97:3c:ae:c2:6a:4b:be:
ac:21:20:3d:32:01:7e:43:89:46:c5:5f:08:c0:d6:
57:ff:0e:5c:59:a5:17:ab:f2:f3:a5:ac:40:f7:ae:
0a:80:f5:de:bd:c9:86:ea:b3:a8:27:90:14:da:e3:
8d:54:1f:0e:33:0d:3f:e5:a5:54:db:42:21:97:cd:
35:7a:b9:fe:3d:f6:25:f7:37:53:e6:5b:be:55:56:
5b:10:79:e7:d0:bb:73:8d:38:c7:a7:b3:2d:08:be:
f8:7e:aa:b9:1d:72:6c:9b:73:ff:5a:3d:9c:41:8f:
20:e0:a3:2c:31:ea:a6:d1:5b:9a:8d:6a:06:4e:7b:
c2:71:cc:27:5f:ef:65:36:3b:46:7a:d2:c9:cd:f9:
00:4c:c1:0f:76:65:ad:75:52:e5:ab:b2:97:af:33:
a3:22:0b:cd:eb:0e:04:d8:a7:f3:32:cb:05:c7:db:
65:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:08:1B:1D:89:9F:F3:2D:D3:D4:75:D6:ED:14:4E:A2:04:92:05:58
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WggbHYmf8y3T1HXW7RROogSSBVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.228.160.0/24
94.228.167.0/24
94.228.171.0-94.228.175.255
178.236.240.0-178.236.242.255
178.236.245.0/24
178.236.248.0-178.236.252.255
178.236.255.0/24
185.46.44.0/22
IPv6:
2a02:2070::/32
Signature Algorithm: sha256WithRSAEncryption
40:92:39:77:fc:ab:2a:55:36:8b:f9:21:71:60:88:0f:8f:52:
6a:8d:70:22:2b:8b:21:b1:16:ec:19:1f:cd:9e:8d:69:77:a5:
40:16:6c:b3:5e:df:3a:11:8b:da:b4:40:e4:f6:e9:8b:1f:b8:
fe:82:2d:43:95:0d:45:dc:f9:72:1f:b2:8b:52:0c:db:6a:86:
f9:19:c1:30:98:4d:d2:a3:ef:19:72:27:51:86:ce:ca:34:5c:
71:e9:d4:80:c5:5f:1c:f2:06:3b:0c:50:85:69:f4:1c:62:48:
c9:59:c0:7e:47:7c:9f:dd:24:49:2e:f9:f8:6d:7e:ce:96:4f:
10:7e:56:59:a6:e5:12:6e:9a:44:af:93:77:2d:43:e7:35:5c:
7e:12:23:24:f2:d7:d0:23:dd:41:d2:41:69:3e:11:91:5c:c9:
9a:01:7d:84:3d:c9:6b:5e:80:02:e3:16:e7:3c:cf:5b:23:65:
09:69:8c:84:38:0b:b6:18:17:06:76:39:69:54:7c:ef:6f:0b:
89:6e:1d:6d:01:7d:da:fb:f1:7b:2b:84:90:05:6a:f8:29:d7:
d2:06:86:93:bc:bc:af:d6:c3:11:12:41:44:cb:e2:c7:63:d2:
a0:a0:6d:bc:1f:7b:7b:5e:64:e1:52:6b:f6:58:bb:c2:6e:d9:
14:79:e2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:23:41 2025 by rpki-client