Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wBWZlRjyMUSHsMUbUvx8xC0Ayg0.roa
File: wBWZlRjyMUSHsMUbUvx8xC0Ayg0.roa (raw, json)
Hash identifier: ieuG+UFPCao1LDanfEYGRIkNa8Ezxil2zFLZ8kLqPaA=
Subject key identifier: C0:15:99:95:18:F2:31:44:87:B0:C5:1B:52:FC:7C:C4:2D:00:CA:0D
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018A663A8D198D53566C5267712985FEB702
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wBWZlRjyMUSHsMUbUvx8xC0Ayg0.roa
Signing time: Tue 05 Sep 2023 16:43:47 +0000
ROA not before: Tue 05 Sep 2023 16:43:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 188.95.112.0/21 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.208.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 24
185.70.92.0/22 maxlen: 24
91.142.208.0/20 maxlen: 24
188.164.192.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
94.127.186.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
94.127.184.0/21 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
185.222.156.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
149.62.168.0/21 maxlen: 24
195.5.116.0/23 maxlen: 24
5.175.40.0/21 maxlen: 24
91.200.140.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
31.24.40.0/21 maxlen: 24
2a01:4b80::/32 maxlen: 32
2a00:5ac0:100::/48 maxlen: 48
2a00:5ac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 06 Sep 2023 06:17:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:3a:8d:19:8d:53:56:6c:52:67:71:29:85:fe:b7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Sep 5 16:43:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c015999518f2314487b0c51b52fc7cc42d00ca0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:60:c1:77:66:b1:b4:98:a9:05:83:28:f7:6d:
b3:8c:52:ba:6d:fe:6d:cd:37:23:be:7f:a5:a9:42:
88:27:82:f8:54:72:6a:60:79:18:22:11:6e:42:9f:
32:60:8d:3e:9e:4d:e6:62:ca:fa:d1:75:d0:12:e0:
4f:a6:0d:20:55:11:0a:50:d8:44:23:53:56:1f:45:
fb:b9:96:3d:a5:c1:65:45:14:38:34:cc:d3:2d:6e:
95:4c:8a:d8:c3:fd:e0:eb:bc:0f:21:43:72:47:dc:
90:58:f9:0a:cc:fa:93:09:fc:10:12:8f:a7:29:31:
29:8e:80:c9:52:05:b5:19:32:64:6a:aa:87:c0:bb:
bf:c0:e1:b1:82:b0:7e:c4:35:d1:35:ae:79:ad:5b:
4c:7c:76:c7:8d:8e:fe:04:be:f1:81:de:84:4c:6f:
72:10:4c:bd:14:58:a3:f2:b9:d2:8d:ed:a9:06:64:
a3:4f:da:b7:60:3c:e7:4a:f9:e3:e6:a3:c0:de:a0:
69:60:17:93:73:2b:53:3c:e6:b1:57:0b:58:c2:4a:
f1:3b:bd:78:46:6c:9d:37:80:4b:c7:0b:fc:7b:d0:
16:3e:7b:be:45:ab:b4:ae:01:e8:49:b1:a1:ce:57:
1c:d0:d9:ab:f0:3e:52:39:58:36:2d:05:3a:27:c3:
77:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:15:99:95:18:F2:31:44:87:B0:C5:1B:52:FC:7C:C4:2D:00:CA:0D
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wBWZlRjyMUSHsMUbUvx8xC0Ayg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0/21
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/48
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
15:f1:39:46:38:9a:ed:de:41:27:5e:a8:dc:29:6a:f8:8c:37:
be:4e:90:71:be:ad:2d:82:04:d8:a6:58:8b:fc:53:43:7e:05:
4c:ac:a2:fe:f5:e5:b1:12:8c:bd:15:71:72:0b:56:91:0e:f1:
9b:03:c5:23:1b:f7:8a:f7:90:2f:37:af:8b:96:9f:5b:97:fb:
66:17:67:03:e5:9b:12:39:45:73:e8:85:0b:ee:e4:ef:5f:16:
bd:62:42:66:8c:64:5a:e2:c2:f3:5e:16:3d:c7:5d:0b:ce:3d:
c3:98:81:6e:f4:43:b6:3d:b2:16:03:36:d7:af:48:64:2c:6b:
fd:39:5e:fb:a2:96:4a:cf:12:de:f0:34:1c:66:08:7a:17:4b:
c1:d5:41:a9:22:1c:47:4d:66:49:d9:e1:b6:f2:b7:8c:f9:5f:
27:7b:3c:47:c6:12:10:de:d3:ac:22:e3:f7:c7:7f:03:0e:2c:
0a:ed:78:39:bf:4c:7f:4e:69:1e:6d:bd:a9:3a:a9:e5:16:e7:
53:57:ef:d3:05:f2:88:e8:ce:df:d0:76:82:cc:04:15:5c:90:
48:f7:db:6f:23:6c:93:21:95:f8:b8:e2:9f:37:07:c4:6b:52:
41:28:25:8a:57:8c:40:a3:69:f4:c9:e9:93:38:27:5b:71:a0:
3d:c3:2b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:45 2024 by rpki-client on console-ams.rpki-client.org