Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/WQOD3GdvOCgkfl_EP1h2Y8ly9VA.roa
File: WQOD3GdvOCgkfl_EP1h2Y8ly9VA.roa (raw, json)
Hash identifier: GF3TXybKH9H/G/5/gc5l6umPxPre89Ns/njpiXXvUHI=
Subject key identifier: 59:03:83:DC:67:6F:38:28:24:7E:5F:C4:3F:58:76:63:C9:72:F5:50
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018AA73C207D34E0C0FDEA85E982E090F95C
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/WQOD3GdvOCgkfl_EP1h2Y8ly9VA.roa
Signing time: Mon 18 Sep 2023 07:40:50 +0000
ROA not before: Mon 18 Sep 2023 07:40:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a11:e82::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a11:780::/29 maxlen: 36
2a09:3b00::/29 maxlen: 29
2a10:c0c5::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Mon 18 Sep 2023 09:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:3c:20:7d:34:e0:c0:fd:ea:85:e9:82:e0:90:f9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Sep 18 07:40:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=590383dc676f3828247e5fc43f587663c972f550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:11:d3:c5:1d:9f:94:31:60:d0:ab:bb:4d:a9:
80:38:1e:22:85:49:1d:e8:59:cb:16:d6:27:73:77:
a3:f9:dd:2a:e4:b5:91:76:1d:ab:23:43:a4:98:1a:
54:f9:e9:11:c8:50:f6:7a:23:73:68:aa:7a:d5:cb:
68:49:30:b7:e8:e9:c9:58:e8:26:d5:df:eb:e4:89:
bd:53:92:e3:04:17:ad:dd:eb:19:8e:39:a4:35:3d:
1a:12:c9:cd:a7:90:ab:e3:a7:66:1e:f4:bf:f1:14:
3e:4c:c1:66:a4:ca:be:60:90:bb:35:ad:f4:8c:ac:
a7:93:14:8c:dc:45:f0:21:36:3d:9d:c6:7e:f0:98:
73:e0:5b:02:ce:a1:49:f0:8f:c2:ba:4f:b2:34:64:
5d:2f:15:51:c5:a0:54:53:06:a6:f7:80:60:42:62:
3a:70:62:6b:b9:f4:a4:7f:ce:ba:c3:47:2c:9a:3e:
02:f7:fc:aa:0b:48:e1:48:62:b6:80:99:87:6a:4c:
ba:65:66:bd:39:e7:63:80:4b:7c:5c:03:9b:65:12:
2c:5b:ad:d8:4f:1f:8f:be:92:1d:c7:39:9c:65:7c:
76:a2:db:bc:59:a7:74:8c:f9:71:0f:cc:53:4a:ec:
dd:6a:fe:d4:09:41:51:1b:4c:f2:fa:a6:89:15:32:
13:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:03:83:DC:67:6F:38:28:24:7E:5F:C4:3F:58:76:63:C9:72:F5:50
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/WQOD3GdvOCgkfl_EP1h2Y8ly9VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/23
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:b680::/29
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:200:a000::/36
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/31
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
80:3f:c8:fa:6a:53:c0:a1:8b:46:be:52:3e:82:94:52:b6:29:
db:ec:3b:8a:74:a5:bd:fc:a5:32:a8:ec:68:61:4f:cc:f5:12:
98:7e:92:c2:39:ce:75:23:b3:a9:62:a2:43:81:8f:83:49:87:
21:2f:87:9e:6b:f5:43:fc:57:3b:02:03:55:e5:98:db:b7:ae:
ca:2e:8f:98:a3:ee:15:e7:2a:83:3a:f4:93:44:64:8b:6e:ed:
06:40:1b:c2:d9:63:67:dd:b1:cc:91:03:97:03:d0:e8:ba:77:
b3:09:0c:94:6d:0a:0c:c8:c4:73:7e:5f:5c:8c:68:f0:30:dc:
30:3d:65:de:08:62:47:b4:bb:3e:22:24:58:21:12:fa:1e:3b:
71:a0:37:56:da:51:bf:1a:5d:17:86:bc:c4:18:ec:ef:25:3b:
91:60:93:2d:da:84:8a:af:93:ae:63:13:a5:44:ea:47:20:a1:
7d:ed:20:1f:62:24:34:3f:4d:fc:e1:3c:bf:bd:fa:eb:44:cf:
d2:a9:5e:d5:f1:a9:d7:dd:c5:82:2f:c9:a2:3d:7a:ca:7b:04:
15:a1:08:13:ca:4d:70:68:04:10:cc:cd:3e:34:39:e9:1e:df:
3b:38:f4:bd:41:f8:22:ae:04:14:2d:34:1f:4f:4c:80:36:ae:
4c:fa:32:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org