Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/W1suKbR1Ole6l5yrKNpatL9ziUw.roa
File: W1suKbR1Ole6l5yrKNpatL9ziUw.roa (raw, json)
Hash identifier: kAZDHasS8oEAQEes32zeLvEnu8HAaowj6PalQPms9ho=
Subject key identifier: 5B:5B:2E:29:B4:75:3A:57:BA:97:9C:AB:28:DA:5A:B4:BF:73:89:4C
Certificate issuer: /CN=aa1dc50a4b526df18e8b0a6565d7b9d58a75d315
Certificate serial: 018721BCB1CCC85122C6B31C874D49652C7B
Authority key identifier: AA:1D:C5:0A:4B:52:6D:F1:8E:8B:0A:65:65:D7:B9:D5:8A:75:D3:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh3FCktSbfGOiwplZde51Yp10xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/W1suKbR1Ole6l5yrKNpatL9ziUw.roa
Signing time: Mon 27 Mar 2023 06:23:47 +0000
ROA not before: Mon 27 Mar 2023 06:23:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44066
IP address blocks: 212.224.64.0/18 maxlen: 32
185.26.96.0/22 maxlen: 32
84.200.205.0/24 maxlen: 32
194.143.134.0/23 maxlen: 32
185.171.204.0/22 maxlen: 32
79.133.32.0/19 maxlen: 32
159.100.0.0/19 maxlen: 32
84.201.17.0/24 maxlen: 32
84.201.18.0/24 maxlen: 32
37.114.96.0/19 maxlen: 32
194.187.164.0/22 maxlen: 32
84.200.0.0/16 maxlen: 32
82.211.0.0/18 maxlen: 32
31.172.80.0/20 maxlen: 32
82.211.17.0/24 maxlen: 32
84.200.39.0/24 maxlen: 32
84.201.0.0/18 maxlen: 32
2a01:7e0:1fc::/48 maxlen: 48
2a01:7e0::/29 maxlen: 48
2a01:7e0::/32 maxlen: 32
2001:1608::/32 maxlen: 48
2a01:7e0:2f::/48 maxlen: 48
2001:1638::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:21:bc:b1:cc:c8:51:22:c6:b3:1c:87:4d:49:65:2c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1dc50a4b526df18e8b0a6565d7b9d58a75d315
Validity
Not Before: Mar 27 06:23:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b5b2e29b4753a57ba979cab28da5ab4bf73894c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:64:b4:3f:0d:ae:1b:8e:69:9c:c8:99:d3:
41:41:aa:ee:1f:3d:ee:32:9f:e8:e1:32:08:dd:96:
dc:16:d9:97:5c:e7:65:90:f1:24:00:45:45:f6:6b:
2f:b3:f1:b5:0f:59:33:49:ed:ab:ec:72:aa:80:34:
67:d7:11:f5:07:1b:f0:a0:96:8e:49:31:e7:60:b2:
27:67:78:fe:d1:2a:01:da:72:22:dd:6b:82:83:72:
35:50:a5:f0:15:69:3a:f2:18:a9:6f:2c:3d:31:c0:
b0:f1:46:30:d8:a7:c7:b2:e3:3e:59:c3:d3:a7:cd:
2d:41:3c:ac:da:d1:3c:93:29:e6:ac:fe:96:c6:5c:
17:2d:a9:eb:1a:4d:53:d5:d5:16:29:0a:a4:eb:77:
02:cd:06:47:e4:fb:a6:24:98:8c:8d:4a:36:d7:bd:
3e:eb:9e:cd:40:da:f3:7c:40:2e:fd:ec:38:6a:6a:
7f:ed:28:9a:e7:70:a3:ba:68:78:fd:f0:2f:b6:64:
03:a0:8f:9a:45:86:a5:19:8b:a9:b9:a9:87:50:19:
f9:82:5e:81:50:64:d9:a8:e7:79:3e:bb:fd:52:c4:
1a:67:a6:30:81:6e:27:95:2f:b6:58:5c:7e:1e:23:
00:6e:bf:fa:68:d7:28:58:49:33:bb:a4:3a:c3:03:
5d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5B:2E:29:B4:75:3A:57:BA:97:9C:AB:28:DA:5A:B4:BF:73:89:4C
X509v3 Authority Key Identifier:
keyid:AA:1D:C5:0A:4B:52:6D:F1:8E:8B:0A:65:65:D7:B9:D5:8A:75:D3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh3FCktSbfGOiwplZde51Yp10xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/W1suKbR1Ole6l5yrKNpatL9ziUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/qh3FCktSbfGOiwplZde51Yp10xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.80.0/20
37.114.96.0/19
79.133.32.0/19
82.211.0.0/18
84.200.0.0-84.201.63.255
159.100.0.0/19
185.26.96.0/22
185.171.204.0/22
194.143.134.0/23
194.187.164.0/22
212.224.64.0/18
IPv6:
2001:1608::/32
2001:1638::/32
2a01:7e0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:56:32:c0:aa:9c:eb:d6:b8:7c:f2:6c:f2:da:9c:e5:96:ae:
08:fa:ee:c8:4b:57:7f:08:2e:d7:5f:9e:e1:34:d7:55:75:7a:
93:d1:d0:18:14:74:c5:4b:5e:8e:73:86:41:f9:83:60:cd:59:
3b:5f:00:0b:d2:56:d3:f7:d1:75:01:0e:74:46:12:32:d8:b6:
ce:23:e7:72:a1:04:01:f6:54:47:84:00:e3:8d:23:0d:5a:9e:
35:f8:a6:5a:5a:be:84:5e:ae:ed:68:bb:9a:76:b1:ac:6d:16:
0a:23:dd:c7:00:10:b4:43:48:d1:15:3b:62:7a:18:0d:a0:4c:
c3:3e:e0:d8:21:59:d1:e0:3b:8b:0a:61:bc:9f:62:8a:2b:65:
7b:7c:45:34:84:02:ac:d8:f5:42:90:dc:2b:94:22:e9:47:88:
bb:0b:db:2a:0d:10:1f:39:52:2b:74:8d:86:62:c4:aa:dd:da:
a3:a1:97:fc:a3:2b:c5:ed:8e:6b:2e:e0:be:c8:f3:85:34:ae:
34:3e:ef:77:c8:79:fd:0b:57:22:f3:55:68:df:08:e1:52:2a:
42:6b:56:52:dd:bb:8e:4d:48:a4:41:db:2b:81:0c:08:2d:8f:
c2:99:f9:8e:26:38:9a:43:81:ec:8b:bd:45:fd:43:d5:b4:4c:
d1:a5:41:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:36 2024 by rpki-client on console-fra.rpki-client.org