Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wHanSLQXvwrIZu7KmTflqEIywVE.roa
File: wHanSLQXvwrIZu7KmTflqEIywVE.roa (raw, json)
Hash identifier: amK7oyVReM+bVShqIT1hSSckFD8y9nl62Sgp/K8GPCk=
Subject key identifier: C0:76:A7:48:B4:17:BF:0A:C8:66:EE:CA:99:37:E5:A8:42:32:C1:51
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01878DA33FA386C4ED44AB3EE72AA2B6D5C7
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wHanSLQXvwrIZu7KmTflqEIywVE.roa
Signing time: Mon 17 Apr 2023 05:14:58 +0000
ROA not before: Mon 17 Apr 2023 05:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.208.105.0/24 maxlen: 24
45.66.152.0/22 maxlen: 24
5.180.32.0/22 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.48.0/24 maxlen: 24
5.180.50.0/24 maxlen: 24
5.180.49.0/24 maxlen: 24
85.208.112.0/22 maxlen: 24
45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.198.0/24 maxlen: 24
45.8.197.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.232.0/22 maxlen: 24
85.209.160.0/22 maxlen: 24
5.253.36.0/22 maxlen: 24
5.253.44.0/24 maxlen: 24
45.8.252.0/24 maxlen: 24
45.8.253.0/24 maxlen: 24
5.253.46.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.0.0/22 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.4.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8d:a3:3f:a3:86:c4:ed:44:ab:3e:e7:2a:a2:b6:d5:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Apr 17 05:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c076a748b417bf0ac866eeca9937e5a84232c151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:35:b9:46:ce:73:c0:51:26:47:8b:49:ae:3d:
05:45:20:58:4b:b6:ff:c2:c9:a0:03:e6:8e:be:83:
53:c3:13:1b:0c:14:00:41:fc:e9:aa:f9:d2:17:75:
69:0b:19:96:39:9f:66:36:ca:ae:74:1a:a6:7e:f1:
34:3d:07:9a:27:a9:a8:1f:bf:88:85:c0:62:c7:4b:
75:c0:fe:9c:d1:aa:21:54:0e:d8:a7:78:9c:5d:cb:
e0:c3:65:f8:37:4e:61:2f:8d:30:c1:e2:60:cd:5a:
45:08:5c:6e:5c:c3:16:c0:b0:5a:ba:5d:7c:a6:10:
d2:45:38:95:3f:38:b2:77:20:b9:86:fa:f4:1c:d5:
2f:18:01:b6:ea:cf:aa:36:1f:dd:03:9e:ac:18:00:
dc:f1:20:11:57:32:bf:6b:0b:37:83:24:db:c7:1a:
8a:3c:65:2c:69:d5:f7:d3:91:e8:e7:55:2b:3d:dc:
30:3c:65:48:f6:61:9c:2e:3d:89:68:1d:94:56:7a:
cc:32:51:ee:74:95:73:9f:7a:7b:61:80:64:93:d8:
5b:70:43:cb:77:60:84:a7:61:87:a1:12:6f:7f:0c:
43:ab:3d:22:13:b5:ff:90:ac:bc:c2:77:25:09:58:
8c:3e:9e:dc:e6:6d:3e:43:82:c4:0a:0e:d9:da:b5:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:76:A7:48:B4:17:BF:0A:C8:66:EE:CA:99:37:E5:A8:42:32:C1:51
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wHanSLQXvwrIZu7KmTflqEIywVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/22
5.180.80.0/24
5.180.82.0/24
5.180.232.0/22
5.253.36.0/22
5.253.44.0/22
45.8.184.0-45.8.195.255
45.8.197.0-45.8.199.255
45.8.203.0/24
45.8.252.0/23
45.8.255.0-45.9.7.255
45.66.152.0/22
85.208.105.0/24
85.208.112.0/22
85.209.160.0/22
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:bb:76:02:01:2e:a9:e2:6a:3e:4f:cd:0c:84:49:3f:fb:29:
2a:69:62:68:9c:96:e9:cb:ec:c2:78:dd:ca:dd:4e:4c:37:c7:
f5:2e:a3:43:65:8e:f6:9c:6a:d0:5e:1f:b8:61:b7:a1:a5:c8:
40:c8:8b:35:30:f2:1b:3e:98:42:1b:ba:5f:11:6f:c0:0a:cc:
7b:15:aa:a9:9d:3f:bf:95:c0:52:da:2b:50:4e:fa:49:99:03:
4a:de:86:9d:a1:d6:4b:d0:58:a7:b8:46:d5:f4:0b:3c:23:36:
40:f9:f8:c0:0c:3e:cd:f6:55:0c:ff:0d:55:51:c0:51:d7:c1:
27:09:d3:de:47:01:0d:03:9e:1f:8d:ac:90:f9:04:7f:90:b0:
8f:c4:53:2a:e7:13:d3:18:7c:e2:2e:1b:be:db:48:b4:7e:a2:
2e:03:fb:cd:80:2a:eb:89:b6:4e:02:68:a7:e5:80:58:ac:b2:
a9:c0:0f:4f:2f:a6:bd:66:dd:2f:04:70:7c:b6:7c:9c:8c:86:
f3:bd:4a:ca:3d:39:42:e0:ba:0e:bb:56:1d:17:ce:6d:a6:4e:
76:a9:d3:5f:e7:a3:b1:80:3d:47:d2:43:dc:4c:b6:49:a5:ee:
4d:19:97:47:85:42:f9:75:57:9f:e8:a3:4e:7f:8a:8e:a3:e1:
94:d2:c3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org