Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WtQFthCy77tbuB3rzzubFOHUxvM.roa
File: WtQFthCy77tbuB3rzzubFOHUxvM.roa (raw, json)
Hash identifier: FHqmr+9o8MjwcE2HFDHHewaJJ+2c9ol7hpO27rAeHC8=
Subject key identifier: 5A:D4:05:B6:10:B2:EF:BB:5B:B8:1D:EB:CF:3B:9B:14:E1:D4:C6:F3
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018FD2A916F5632AE0D8AF3C594C68F997A5
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WtQFthCy77tbuB3rzzubFOHUxvM.roa
Signing time: Sat 01 Jun 2024 07:17:27 +0000
ROA not before: Sat 01 Jun 2024 07:17:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206092
IP address blocks: 45.84.216.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
45.86.202.0/24 maxlen: 24
45.92.229.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
45.146.54.0/24 maxlen: 24
45.154.137.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
45.157.112.0/24 maxlen: 24
89.251.0.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
136.144.33.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
193.37.33.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 04:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d2:a9:16:f5:63:2a:e0:d8:af:3c:59:4c:68:f9:97:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 1 07:17:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ad405b610b2efbb5bb81debcf3b9b14e1d4c6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:33:d7:a4:04:90:ef:91:9d:f5:2c:93:02:48:
f9:f7:51:4a:6b:69:af:25:02:ae:5b:15:e1:58:96:
09:ec:7b:00:ca:22:3f:b6:af:46:e8:9c:11:b0:58:
a9:5c:ed:0b:b9:66:60:d0:cd:76:2b:5d:01:13:2d:
9a:18:1f:2b:04:9d:db:b5:f0:21:d8:fc:d0:71:d8:
e2:94:4b:db:30:c6:91:e3:10:71:2b:0c:ae:61:aa:
00:01:17:3d:28:6a:1e:2c:b2:ad:fa:3c:75:15:69:
0f:0d:a4:2b:3b:10:42:9a:f5:74:4a:88:b0:fb:38:
02:f1:40:75:79:aa:63:97:31:f8:42:67:6e:a4:cb:
7d:32:8c:c9:64:35:6f:b8:d7:35:59:80:b0:7d:dc:
4c:27:0b:ad:48:27:cc:da:be:1c:04:98:06:14:68:
cc:f8:34:df:32:34:9f:c5:24:23:4c:6a:37:07:ae:
02:1c:05:ef:bf:cb:30:8d:0b:84:e4:d2:ec:08:c0:
0f:16:61:df:15:ee:ee:b3:88:2c:7d:93:b5:04:6f:
4d:2e:1b:94:0a:e5:e7:78:a4:33:ca:86:13:42:ee:
ab:39:38:2b:a3:38:73:24:09:24:2e:5f:ce:ac:9e:
ad:fe:26:12:57:d2:06:d1:a7:96:f0:84:ff:d0:85:
c9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D4:05:B6:10:B2:EF:BB:5B:B8:1D:EB:CF:3B:9B:14:E1:D4:C6:F3
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WtQFthCy77tbuB3rzzubFOHUxvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.86.200.0/24
45.86.202.0/24
45.92.229.0/24
45.95.243.0/24
45.146.54.0/24
45.154.137.0-45.154.138.255
45.157.112.0/24
89.251.0.0/24
136.144.17.0/24
136.144.19.0/24
136.144.33.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/23
193.176.211.0/24
194.5.48.0/24
194.5.53.0/24
194.34.173.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:53:17:87:38:46:a4:86:41:1b:8d:4d:8c:10:00:d7:4a:df:
65:ff:25:1c:6f:bf:dd:8a:5c:14:2f:66:30:f4:2a:5f:bb:9b:
a7:8f:10:26:ea:5f:59:e8:3a:dc:fb:f2:52:fa:a1:e7:1e:0b:
4f:83:16:48:e5:f0:ac:aa:f8:6c:ea:05:73:05:87:03:9f:0c:
fb:10:c6:68:44:23:58:f0:ea:38:58:44:8e:cc:b7:31:b1:3a:
85:a9:36:6a:f3:c2:89:95:58:5b:09:c7:61:1d:57:4d:a9:b3:
02:82:b5:8b:2b:a2:10:14:4e:7a:2a:6f:12:26:42:2a:b1:39:
fc:6b:65:fc:e5:c6:c1:9c:cf:89:5a:bc:b1:4d:82:3d:6a:13:
97:f6:ef:35:45:55:f7:0e:e0:e1:3e:cd:2f:6e:06:6a:d4:5e:
e4:21:61:51:f3:c0:c8:5a:37:d9:49:fd:72:03:74:85:ec:14:
82:09:ce:da:f5:97:d0:99:48:96:0f:39:7b:44:3b:df:45:2f:
0d:36:23:61:f9:7a:69:c1:eb:ee:b0:4a:5e:2f:28:9a:d1:a3:
7b:c7:0e:49:7a:aa:02:4c:ad:b8:66:98:ca:2b:e7:1b:58:68:
9f:cb:c4:02:64:2a:20:91:d4:7c:7b:a4:e7:40:4f:4b:ac:7c:
f7:90:94:29
-----BEGIN CERTIFICATE-----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Generated at Wed Jul 3 06:38:49 2024 by rpki-client on console-ams.rpki-client.org