Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wUAEJk-0qVdH1ReoEgXyRLv8dX0.roa
File: wUAEJk-0qVdH1ReoEgXyRLv8dX0.roa (raw, json)
Hash identifier: atlan9W1+qhaVZ4mn7kFOPYhk4AVHB/Ns9ONKM8wxd8=
Subject key identifier: C1:40:04:26:4F:B4:A9:57:47:D5:17:A8:12:05:F2:44:BB:FC:75:7D
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018A073762B29283945CBF5DE1455D46DC41
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wUAEJk-0qVdH1ReoEgXyRLv8dX0.roa
Signing time: Fri 18 Aug 2023 05:56:24 +0000
ROA not before: Fri 18 Aug 2023 05:56:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 185.123.53.0/24 maxlen: 24
176.124.32.0/24 maxlen: 24
176.124.33.0/24 maxlen: 24
185.39.18.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
194.61.120.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
45.86.228.0/24 maxlen: 24
45.86.229.0/24 maxlen: 24
45.86.231.0/24 maxlen: 24
77.72.85.0/24 maxlen: 24
195.54.160.0/24 maxlen: 24
2a10:1fc0:f::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:c::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Aug 2023 12:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:37:62:b2:92:83:94:5c:bf:5d:e1:45:5d:46:dc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Aug 18 05:56:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c14004264fb4a95747d517a81205f244bbfc757d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:76:0d:ba:59:78:62:04:45:06:90:ac:ca:
f7:c4:02:26:77:06:6a:2c:64:a5:62:45:ac:34:5a:
7b:0b:54:4b:40:c7:71:ea:01:ba:da:ca:69:89:c8:
b4:ea:0b:82:26:1c:2b:d3:d7:fe:77:99:9a:51:da:
63:d2:9b:d7:16:df:fb:61:4b:b7:98:ce:ec:f8:b6:
46:9b:65:fd:29:aa:7e:3d:6e:bd:84:7d:61:bc:f7:
78:87:22:96:17:c5:bd:71:12:7e:69:2b:c4:a0:db:
cd:dc:40:22:13:5a:81:13:57:14:52:35:64:85:f2:
47:88:a9:35:7e:a1:24:33:30:85:24:c2:c1:60:b5:
51:cb:95:3c:b9:ca:33:d5:9b:d0:6d:20:f7:f5:5c:
12:3d:dc:bc:e2:96:bc:9a:a8:ed:11:4b:dc:ab:10:
7d:24:20:ad:d0:87:dd:88:59:bb:63:5e:89:62:64:
3d:e3:c5:ed:9a:28:1e:a6:03:22:03:68:eb:31:1d:
83:5c:ec:d0:5d:3a:12:e7:bf:5b:87:a7:20:d8:70:
77:97:0e:2e:14:c9:a3:b0:76:05:07:32:59:cf:e2:
ed:13:7d:c6:0e:8e:7e:3b:74:ef:93:44:0c:a7:80:
43:49:0d:94:6c:54:a4:23:aa:00:2f:15:08:17:9e:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:40:04:26:4F:B4:A9:57:47:D5:17:A8:12:05:F2:44:BB:FC:75:7D
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/wUAEJk-0qVdH1ReoEgXyRLv8dX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.228.0/23
45.86.231.0/24
77.72.85.0/24
91.235.234.0/24
176.124.32.0/23
185.39.18.0/24
185.123.53.0/24
193.109.120.0/24
194.61.120.0/23
195.54.160.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::-2a10:1fc0:c:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:e::-2a10:1fc0:10:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2e:53:9f:36:56:a1:d7:6e:a6:cf:cd:ce:d8:24:ed:35:4a:7c:
62:87:48:2e:4b:fe:7e:e7:83:c6:80:d6:6f:c9:40:c9:d2:a2:
92:96:0f:ff:eb:98:58:da:62:d0:3b:cc:f3:c6:bf:5f:55:2b:
44:d8:cb:e1:dd:0c:12:b1:2f:59:aa:b7:18:8c:d2:34:b9:e4:
f3:6d:a9:b1:09:ac:c6:2d:02:cf:cd:4c:a5:42:ca:0a:ae:83:
2b:ad:75:83:c5:ae:b1:aa:ad:82:25:22:42:b7:b4:e8:c5:0e:
02:d9:f6:46:77:e4:d9:c9:de:cf:1a:5d:74:39:d7:32:de:53:
66:a9:d3:16:11:47:41:54:ce:80:05:db:0a:29:7d:3c:92:73:
1e:e4:15:da:bc:a2:ad:77:ab:7c:8f:bd:70:1a:19:dc:15:7d:
f8:0b:40:3d:81:c4:b9:66:a8:75:e5:f2:03:7a:02:76:48:75:
a3:80:66:ed:ba:d3:9b:70:0b:45:29:ef:ee:96:0a:7c:bd:f6:
9d:1a:bb:50:66:01:65:f7:ba:96:11:2b:41:43:87:eb:cf:24:
69:38:88:68:28:0b:57:5f:e9:29:46:83:aa:d0:2d:d6:8c:53:
d2:75:fc:a4:bd:0b:41:a8:1f:61:ba:35:40:37:99:61:87:9e:
72:45:f0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:13 2024 by rpki-client on console-ams.rpki-client.org