Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/W4DSDTOWDcYJjOdqyRd6myuvk-0.roa
File: W4DSDTOWDcYJjOdqyRd6myuvk-0.roa (raw, json)
Hash identifier: aGFSM4y67vdHIx9bOn+T1zElypqWjWP7coglKGmVlL4=
Subject key identifier: 5B:80:D2:0D:33:96:0D:C6:09:8C:E7:6A:C9:17:7A:9B:2B:AF:93:ED
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018A1B335A32F4264BC741D55F9C20CDD466
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/W4DSDTOWDcYJjOdqyRd6myuvk-0.roa
Signing time: Tue 22 Aug 2023 03:04:24 +0000
ROA not before: Tue 22 Aug 2023 03:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3258
IP address blocks: 45.66.216.0/22 maxlen: 24
92.60.40.0/22 maxlen: 24
45.159.48.0/22 maxlen: 24
45.14.105.0/24 maxlen: 24
45.14.107.0/24 maxlen: 24
45.142.124.0/22 maxlen: 24
147.78.240.0/21 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
193.111.30.0/23 maxlen: 24
185.184.220.0/22 maxlen: 24
45.149.156.0/22 maxlen: 24
176.119.148.0/22 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
88.214.20.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
45.14.64.0/22 maxlen: 24
45.14.70.0/24 maxlen: 24
45.66.128.0/22 maxlen: 24
91.200.240.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a09:4::/48 maxlen: 48
2a09:3::/48 maxlen: 48
2a09:5::/48 maxlen: 48
2a09:7::/48 maxlen: 48
2a09:1::/48 maxlen: 48
2a09:7:2008::/48 maxlen: 48
2a09:2::/48 maxlen: 48
2a0d:c7c1::/32 maxlen: 48
2a09:7:1::/48 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Aug 2023 03:18:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1b:33:5a:32:f4:26:4b:c7:41:d5:5f:9c:20:cd:d4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Aug 22 03:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b80d20d33960dc6098ce76ac9177a9b2baf93ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f7:55:94:6a:ff:87:48:ef:0a:d1:01:19:35:
e9:99:a7:b1:a9:60:63:df:56:97:bd:ac:ef:16:4b:
67:78:e3:b2:cb:13:60:d3:b6:f5:ad:99:ea:a1:94:
a6:10:12:1f:4a:fc:3c:c3:f7:6c:61:cd:6b:18:fc:
17:9b:d6:c6:6e:17:7a:fa:b7:4c:2b:14:f5:de:cb:
54:38:04:9d:59:90:a1:a2:b8:ba:7e:d6:30:bf:95:
bf:3c:fc:fd:10:ad:02:52:18:c6:d3:ce:17:d2:ce:
fa:fe:94:1a:d5:a2:c4:0f:7e:60:98:5a:af:78:b6:
cc:02:12:bc:4b:04:3c:44:b2:69:d0:cb:2b:5e:22:
da:4e:0a:31:75:7d:f6:ae:97:09:fc:6c:15:8d:ca:
09:32:54:a8:2c:45:8e:68:56:63:46:9f:63:1f:f3:
8f:4b:eb:f9:91:cd:ad:c9:a5:f4:e7:69:0a:df:fb:
66:cd:c9:4a:8d:a6:94:d1:04:35:60:27:00:a9:88:
0b:ab:8c:f1:73:85:76:af:44:8c:8a:fa:33:9f:90:
06:33:a6:ba:05:2a:cb:ab:fb:4e:81:60:18:0c:fc:
68:60:d9:73:68:87:77:67:94:5e:0f:c5:e6:bf:e5:
ad:61:13:6c:fb:e1:f8:c9:ed:da:4f:c5:f8:74:de:
86:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:80:D2:0D:33:96:0D:C6:09:8C:E7:6A:C9:17:7A:9B:2B:AF:93:ED
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/W4DSDTOWDcYJjOdqyRd6myuvk-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.64.0/22
45.14.70.0/24
45.14.105.0/24
45.14.107.0/24
45.66.128.0/22
45.66.216.0/22
45.142.124.0/22
45.143.232.0/22
45.149.156.0/22
45.159.48.0/22
88.214.20.0/22
91.200.240.0/22
92.60.40.0/22
147.78.240.0/21
149.62.44.0/22
176.119.148.0/22
185.184.220.0/22
185.200.64.0/22
193.32.148.0/22
193.111.30.0/23
195.245.241.0-195.245.242.255
IPv6:
2a09:1::/48
2a09:2::/48
2a09:3::/48
2a09:4::/48
2a09:5::/48
2a09:7::/47
2a09:7:2008::/48
2a0d:c7c1::/32
2a10:480::/29
Signature Algorithm: sha256WithRSAEncryption
38:95:11:20:0a:bc:8f:c3:b2:15:3e:6b:4c:91:88:06:c1:a6:
ee:5c:b7:e8:8f:b2:49:77:2b:d9:a1:a0:ed:6d:cf:10:d5:16:
ac:78:c0:24:43:6c:d1:d4:b2:5f:cd:d5:93:c1:90:79:6e:e9:
42:40:0f:ac:e6:a7:d1:54:a2:9e:81:45:75:dc:b8:62:fd:43:
72:4a:c3:f2:e9:c6:82:7a:39:1a:48:8f:57:80:18:18:34:b8:
d1:a5:12:af:5b:f1:0d:98:7f:56:fc:ed:3d:2b:5c:b0:bf:fa:
ce:21:1b:ee:91:e1:f2:30:7d:d3:4d:d6:ab:7b:61:3a:cd:46:
37:95:63:5a:6c:80:77:d9:ca:7c:e9:bc:75:87:83:1f:d2:c7:
8f:29:f1:66:4c:a6:49:bb:79:ba:ad:a8:63:7c:86:e0:63:80:
5c:ea:9d:21:74:d1:34:48:4f:d7:ff:58:36:5a:d1:4c:63:ff:
19:97:11:49:35:74:83:79:17:df:8e:61:09:1e:1a:6e:ca:ed:
42:b8:a2:31:9e:40:2d:fc:ac:9b:0a:54:6a:7d:8b:9e:00:00:
cb:12:58:f5:c3:74:e6:26:6a:1b:d8:fb:c7:5b:01:d3:15:f4:
aa:fa:2f:8c:17:49:e1:e3:3b:f5:9d:60:e9:5c:df:74:b6:81:
4f:ac:1a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org