Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/wwlnpE5d2r2gF4zey37Dwn8c4QA.roa
File: wwlnpE5d2r2gF4zey37Dwn8c4QA.roa (raw, json)
Hash identifier: VfSzb/yjyxnhgaIKymNylYDuu76pIlPorYqHkbbNHgM=
Subject key identifier: C3:09:67:A4:4E:5D:DA:BD:A0:17:8C:DE:CB:7E:C3:C2:7F:1C:E1:00
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018CD03B2C8CF5545E83C0988500896BB33B
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/wwlnpE5d2r2gF4zey37Dwn8c4QA.roa
Signing time: Wed 03 Jan 2024 16:49:48 +0000
ROA not before: Wed 03 Jan 2024 16:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
185.126.238.0/24 maxlen: 24
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:33::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:54::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jan 2024 18:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d0:3b:2c:8c:f5:54:5e:83:c0:98:85:00:89:6b:b3:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jan 3 16:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c30967a44e5ddabda0178cdecb7ec3c27f1ce100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:60:31:93:12:03:20:4b:ed:28:3d:ab:9e:43:
c3:be:c7:62:ef:d9:68:0a:ec:4f:a2:c6:56:4c:15:
40:4b:3a:3a:84:3f:95:26:75:51:00:8f:27:c7:96:
19:cb:09:5d:0d:aa:38:83:81:f5:0f:e8:96:76:70:
cb:24:90:94:ed:3b:80:11:93:33:bb:62:01:c7:03:
91:fc:92:55:09:26:bb:38:b2:57:b0:94:8b:0b:f2:
44:0c:3f:7f:33:59:ca:91:90:31:47:79:4e:4d:31:
4b:1d:1d:9e:bd:86:6f:38:b8:62:ef:64:cc:c3:9b:
3c:5c:70:8f:37:8a:f8:e7:36:0a:fa:9f:46:cb:43:
d8:b0:08:8c:c7:76:ea:a8:a1:5e:50:ec:9b:a2:e3:
f9:28:41:9b:78:7a:b6:75:5d:09:e2:83:ae:b0:b0:
41:c2:a4:4d:2b:42:a2:2f:f8:79:c7:11:b5:cd:ce:
64:85:32:a4:f8:16:ae:3b:ea:4d:1f:bb:fd:76:64:
4c:48:7d:bd:6d:07:36:ae:c8:c9:39:80:bf:11:87:
62:9e:f4:fa:48:1c:f6:37:b8:f6:a0:1a:4c:24:19:
b0:a0:0a:f2:61:aa:26:f5:5f:82:f3:d2:b6:a3:ab:
36:13:63:a0:36:84:4c:e8:7c:a3:47:56:98:2f:cd:
89:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:09:67:A4:4E:5D:DA:BD:A0:17:8C:DE:CB:7E:C3:C2:7F:1C:E1:00
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/wwlnpE5d2r2gF4zey37Dwn8c4QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
147.78.3.0/24
185.126.238.0/23
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:24::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:33::/48
2a11:840:40::/47
2a11:840:47::/48
2a11:840:54::/48
Signature Algorithm: sha256WithRSAEncryption
17:28:47:d3:95:74:89:ae:bf:a5:40:e2:5d:b2:ae:ff:7c:b8:
7b:ad:7c:f0:c7:75:b6:d1:41:fe:e8:92:88:5a:31:94:75:48:
96:b6:45:cc:aa:86:2e:42:7d:e1:ba:aa:bd:59:e5:b9:9b:47:
01:b5:c4:cb:e6:8a:b8:ca:e5:0b:c0:8b:85:c8:0a:6b:83:e8:
3d:1f:7b:f2:f7:39:14:43:79:fc:3f:86:e5:a0:12:79:4b:d7:
06:86:7e:e1:c8:63:b4:b3:f5:17:02:55:99:7e:2f:62:db:55:
60:e1:3c:07:a9:2f:2d:4e:08:91:ba:5f:29:55:40:35:29:d3:
cc:18:ed:ce:6e:a5:85:4f:7f:a7:35:3b:b3:68:77:23:0c:8f:
8e:0a:d1:12:2a:42:7d:91:92:aa:22:c5:e3:09:6b:7b:8a:66:
94:75:84:d7:08:60:1e:35:c4:bc:9f:79:a3:1a:91:be:b7:7b:
cc:b7:a8:e6:fa:6e:52:ff:3b:22:e8:98:1d:12:c0:94:1b:b2:
83:7a:a5:2f:37:f3:45:c5:1e:1c:a6:01:4c:4d:f3:64:5b:b5:
c4:7a:f7:c7:32:cf:f5:51:20:b3:54:60:41:2a:86:56:55:d2:
93:c9:e4:a3:bf:94:f7:ad:f1:cb:a5:60:a9:8d:aa:ef:73:91:
e3:eb:15:60
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org