Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/_x_Wkvl-v_6NGCKAAV6hBiKWKQI.roa
File: _x_Wkvl-v_6NGCKAAV6hBiKWKQI.roa (raw, json)
Hash identifier: D8Of9+JYVnTQLQa4ezLNs5O3s8Zazn+79GoglfyN8xA=
Subject key identifier: FF:1F:D6:92:F9:7E:BF:FE:8D:18:22:80:01:5E:A1:06:22:96:29:02
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 018CC9BC2FCF8260D13A31572A56030D1E0A
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/_x_Wkvl-v_6NGCKAAV6hBiKWKQI.roa
Signing time: Tue 02 Jan 2024 10:33:22 +0000
ROA not before: Tue 02 Jan 2024 10:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43391
IP address blocks: 185.80.72.0/24 maxlen: 24
77.223.132.0/24 maxlen: 24
77.223.128.0/19 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.206.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.204.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.33.0/24 maxlen: 24
77.223.149.0/24 maxlen: 24
77.223.148.0/24 maxlen: 24
77.223.152.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.171.0/24 maxlen: 24
91.191.170.0/24 maxlen: 24
91.191.168.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
2a0a:be80::/29 maxlen: 29
2a01:aac0::/32 maxlen: 32
2a0a:be80::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 09:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:2f:cf:82:60:d1:3a:31:57:2a:56:03:0d:1e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Jan 2 10:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff1fd692f97ebffe8d182280015ea10622962902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a4:5f:b8:59:90:e3:42:13:93:46:fa:38:9f:
ae:6b:78:c7:cc:c7:b8:6e:26:66:eb:82:c3:ad:1f:
59:1d:e4:be:53:6b:ab:44:2d:ff:0d:f7:f6:4d:d9:
b1:1b:be:c3:f3:f2:41:68:f3:40:6e:28:f5:bc:a4:
d0:ea:66:b5:6b:c0:93:0a:5a:48:19:28:92:8b:d4:
64:19:b1:76:f2:bb:eb:1b:77:35:54:5b:c5:eb:7c:
b1:f1:9c:36:54:b8:47:3c:9d:64:be:d9:61:87:2a:
b3:2e:6b:d1:2b:54:c9:cf:a5:6f:ed:5c:b5:bf:ca:
f1:6d:5f:57:4f:4d:7e:1c:6b:02:85:5d:6a:48:59:
46:02:23:9c:02:a2:12:8e:74:b9:63:e7:e8:9b:6d:
3b:90:31:f3:ca:e6:fd:c8:e0:1c:45:d0:e7:19:8d:
8a:3c:c4:20:2c:6c:0b:30:27:68:d0:b9:0c:f2:94:
9a:51:68:56:6d:a1:97:98:d5:98:55:7a:d9:89:dc:
82:68:68:c9:40:eb:4f:4f:53:f5:3d:1e:72:70:f3:
f8:77:09:e4:cb:e5:2f:5a:e9:9c:85:47:2e:34:df:
ac:56:ed:cc:5e:a9:af:a1:48:20:1b:02:01:b6:8c:
66:3a:62:f2:b9:57:a8:23:f5:2f:a0:56:2c:80:54:
7f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1F:D6:92:F9:7E:BF:FE:8D:18:22:80:01:5E:A1:06:22:96:29:02
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/_x_Wkvl-v_6NGCKAAV6hBiKWKQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
41:5d:a6:c9:c7:86:b0:87:6d:3a:32:ad:5b:69:1b:75:c0:ae:
4b:62:81:9d:f3:b1:12:95:91:bf:bd:ea:c3:6c:27:95:8d:ca:
f7:70:fa:72:51:ca:6b:1e:0d:68:02:36:b1:8e:c3:34:78:59:
88:63:a5:b5:79:71:65:6b:e5:ff:7f:36:27:46:a1:06:56:e1:
c3:f8:eb:6f:88:76:45:e1:2a:b4:e3:7d:58:90:fc:fc:c3:12:
33:11:aa:91:54:0b:80:f3:6f:b0:e3:5d:f9:28:68:dc:01:ff:
3e:7c:45:ef:a9:63:b9:a9:bd:f7:07:9a:9c:27:af:06:45:9e:
54:e7:31:10:f4:eb:09:6c:14:25:14:67:0e:22:17:ca:7f:3f:
56:89:5e:26:d6:bd:5d:d5:21:67:bd:3d:22:f0:37:99:fe:81:
9c:b0:94:04:90:4b:05:20:72:93:f3:a3:75:b6:52:4f:e7:a6:
a2:f0:51:34:18:57:a8:18:e7:25:11:b5:09:f7:85:29:12:7c:
b9:40:a7:14:8c:dc:96:59:01:fc:43:09:a2:7a:04:9a:2d:aa:
6d:15:5e:2f:87:35:77:42:9c:b2:45:54:23:30:a7:7d:d0:6c:
15:b3:cf:2e:f2:f5:51:b9:13:bd:ed:6d:43:b6:5d:79:4f:c8:
d4:e6:8f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:10 2024 by rpki-client on console-fra.rpki-client.org