Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/WtGuqaPer9rq2gBePlbTuhbzTD0.roa
File: WtGuqaPer9rq2gBePlbTuhbzTD0.roa (raw, json)
Hash identifier: LxVXvMp75fYMMGsPAMIWUQl6IS5UTANmEyzabV9YrSg=
Subject key identifier: 5A:D1:AE:A9:A3:DE:AF:DA:EA:DA:00:5E:3E:56:D3:BA:16:F3:4C:3D
Certificate issuer: /CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Certificate serial: 01870ECFB7F1507446AAAD9D9195DA5B43DD
Authority key identifier: 19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/WtGuqaPer9rq2gBePlbTuhbzTD0.roa
Signing time: Thu 23 Mar 2023 14:11:46 +0000
ROA not before: Thu 23 Mar 2023 14:11:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8966
IP address blocks: 5.195.166.0/24 maxlen: 24
5.195.167.0/24 maxlen: 24
5.195.166.0/23 maxlen: 24
5.195.175.0/24 maxlen: 24
5.195.173.0/24 maxlen: 24
5.195.174.0/24 maxlen: 24
195.229.12.0/24 maxlen: 24
195.229.27.0/24 maxlen: 24
195.229.31.0/24 maxlen: 24
195.229.34.0/24 maxlen: 24
31.219.177.0/24 maxlen: 24
195.229.3.0/24 maxlen: 24
195.229.0.0/24 maxlen: 24
195.229.1.0/24 maxlen: 24
195.229.4.0/24 maxlen: 24
195.229.0.0/19 maxlen: 19
195.229.2.0/24 maxlen: 24
195.229.6.0/24 maxlen: 24
195.229.5.0/24 maxlen: 24
5.195.208.0/24 maxlen: 24
5.195.223.0/24 maxlen: 24
194.170.186.0/24 maxlen: 24
2001:8f8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:cf:b7:f1:50:74:46:aa:ad:9d:91:95:da:5b:43:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee5f16fc144acb98977449faa0ab77de1bdcc9
Validity
Not Before: Mar 23 14:11:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ad1aea9a3deafdaeada005e3e56d3ba16f34c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2c:3f:2f:1c:98:0e:39:67:35:4d:9e:51:8b:
b9:1f:94:28:b3:c1:fd:5f:c4:d4:3d:8c:05:ae:f0:
2c:c4:54:7e:36:50:41:6a:3f:dd:97:6a:7f:2e:f5:
c6:49:9e:eb:c0:08:a5:b3:9d:64:90:dc:ef:d5:df:
e9:de:7c:0f:08:de:1d:cf:6a:ef:b4:61:d6:2d:6b:
74:8d:b3:88:08:d3:96:7f:a0:18:b4:8b:53:2c:e4:
c9:2e:6e:d9:ec:5c:2d:3f:20:2e:d7:c4:a5:e2:11:
e9:aa:5f:b9:fe:7b:99:0a:b0:db:e6:db:a3:bb:e6:
57:4f:a3:9d:40:38:cd:04:54:8c:bb:ce:57:d3:ce:
53:89:cf:b7:d2:f3:a9:cc:1f:2d:ff:a6:ff:49:28:
6d:b8:d5:ae:12:52:b7:7e:37:9d:61:16:02:f7:48:
8f:83:7e:8e:4b:eb:42:b0:f6:b1:3b:71:ba:1a:25:
10:51:90:e5:c3:c7:e1:cc:cc:de:a3:27:8f:08:93:
57:59:fc:c2:05:d9:23:5c:08:c3:39:62:04:da:b5:
05:5e:4b:31:37:b5:d0:d0:3b:a1:dc:e8:31:c0:86:
cf:d1:46:69:d0:c8:56:85:2e:4b:e9:dc:22:b5:22:
5c:e9:52:02:46:ad:6e:57:1d:9d:c2:45:c6:ac:37:
23:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D1:AE:A9:A3:DE:AF:DA:EA:DA:00:5E:3E:56:D3:BA:16:F3:4C:3D
X509v3 Authority Key Identifier:
keyid:19:EE:5F:16:FC:14:4A:CB:98:97:74:49:FA:A0:AB:77:DE:1B:DC:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/WtGuqaPer9rq2gBePlbTuhbzTD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/742370-e10f-4541-aa6c-61afb66d1e8c/1/Ge5fFvwUSsuYl3RJ-qCrd94b3Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.195.166.0/23
5.195.173.0-5.195.175.255
5.195.208.0/24
5.195.223.0/24
31.219.177.0/24
194.170.186.0/24
195.229.0.0/19
195.229.34.0/24
IPv6:
2001:8f8::/32
Signature Algorithm: sha256WithRSAEncryption
2c:fc:16:fb:84:58:52:6b:96:2e:65:7b:b2:59:4a:54:7b:72:
a2:69:ff:d5:9e:ce:4b:7b:68:90:2e:a4:14:48:fa:33:ab:77:
c9:9b:87:e4:5c:4d:c3:12:98:1c:a5:64:d2:2f:14:ff:4b:a7:
ff:99:41:d1:c4:d9:31:00:37:77:f8:08:96:d3:b3:24:ec:2a:
5a:ee:f7:c7:49:a1:96:09:b1:a4:01:0a:e4:1d:cc:f1:db:7b:
62:5f:d1:f3:d1:ef:ba:2a:90:c3:14:fd:ac:47:c5:22:50:38:
6e:e5:69:90:49:77:ef:11:e5:dd:cb:41:d1:95:a7:0d:21:ac:
76:6c:f9:ce:dd:60:e7:52:96:48:99:90:d5:69:a9:e4:a0:e1:
8c:67:56:5d:11:93:1d:67:b6:a0:83:5e:2e:4f:13:95:14:61:
86:c7:b8:b5:d4:21:c6:ea:09:c9:6c:af:73:e8:a6:a5:c9:de:
aa:0f:be:66:e5:02:a3:83:b5:b9:e8:be:e7:5a:e5:e4:d2:8c:
39:a1:69:e8:e0:16:10:6b:17:1a:8f:29:4b:4b:69:b0:e8:55:
54:2e:5a:01:f4:0b:f2:12:03:ee:48:e3:68:e1:4d:24:5d:ef:
5a:95:99:e7:bf:0d:a5:01:20:9a:5c:f8:7b:dd:b0:6d:c6:91:
6a:93:4d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:21 2023 by rpki-client on console-fra.rpki-client.org