Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Wbfpm3CU3YFJJU7zj0HbVz8GZis.roa
File: Wbfpm3CU3YFJJU7zj0HbVz8GZis.roa (raw, json)
Hash identifier: 5jhoyWGB2KbVU190XKsbXIbZ42aGYS6rM4wEGmTn4ao=
Subject key identifier: 59:B7:E9:9B:70:94:DD:81:49:25:4E:F3:8F:41:DB:57:3F:06:66:2B
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 0187FB590B306855DB017FE6AAF9DD9571B8
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Wbfpm3CU3YFJJU7zj0HbVz8GZis.roa
Signing time: Mon 08 May 2023 12:32:09 +0000
ROA not before: Mon 08 May 2023 12:32:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.221.192.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.194.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
185.137.61.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
185.142.124.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.125.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
195.230.107.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
185.82.64.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
195.230.124.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
185.47.51.0/24 maxlen: 24
185.47.48.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.50.0/23 maxlen: 23
185.47.50.0/24 maxlen: 24
185.47.49.0/24 maxlen: 24
45.155.192.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:59:0b:30:68:55:db:01:7f:e6:aa:f9:dd:95:71:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: May 8 12:32:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59b7e99b7094dd8149254ef38f41db573f06662b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:8d:41:cd:de:d3:20:93:5a:55:fb:60:59:
e2:13:db:4f:08:e0:83:b4:55:ea:b1:ef:dd:fb:01:
7c:67:f5:25:a4:5a:a6:b2:79:6c:47:98:19:d7:d1:
4a:d7:34:ea:07:56:bf:8a:c3:d3:86:13:14:9a:b4:
01:11:9a:3b:13:68:cb:41:6b:a5:1d:f3:6b:98:a9:
45:38:70:48:47:8e:2c:6f:a4:74:a5:52:32:7c:41:
d7:9f:2a:0d:9f:4b:80:1f:89:14:60:ec:ef:dd:b8:
ab:7f:fd:c6:b3:02:26:a3:c4:65:7a:79:aa:79:c9:
6e:23:01:85:96:6c:51:a4:c6:cd:97:6c:5e:27:70:
6d:4d:c3:17:08:f6:1a:32:04:6d:60:86:d3:fc:3b:
20:e0:13:47:c3:55:7e:0a:f3:08:70:f5:a1:14:2f:
1f:ce:9c:69:b0:9b:05:e2:bb:75:57:13:a3:f9:cf:
47:2a:f6:6f:de:34:d1:43:eb:77:47:6a:c8:a9:13:
83:4f:05:bb:35:b2:a5:0d:8b:d6:2e:03:1e:ba:f3:
9e:fe:a2:9f:1b:c5:c3:a8:c4:a8:4a:48:de:33:bc:
12:0d:f5:ae:0f:43:2d:17:ad:a3:38:04:45:22:0e:
17:b5:46:f2:3e:46:64:a3:0f:89:4c:9a:ec:aa:55:
ba:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B7:E9:9B:70:94:DD:81:49:25:4E:F3:8F:41:DB:57:3F:06:66:2B
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Wbfpm3CU3YFJJU7zj0HbVz8GZis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.21.0-185.125.23.255
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.107.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
86:e4:03:4b:9e:6d:f1:a6:02:ca:a8:29:36:fb:97:b2:1a:c3:
b2:66:a6:51:8d:fe:48:7a:83:ec:bc:1b:92:5f:f2:41:c8:08:
ff:6f:66:a4:c1:4b:14:1f:88:db:52:3c:3c:a6:40:e8:48:ef:
c0:7a:e6:bc:99:7b:49:97:c4:61:5c:34:b0:24:fe:40:01:99:
ca:b7:d1:14:fa:2f:d6:4b:53:7d:59:51:ce:c2:49:39:ad:2e:
fd:76:e0:6a:40:16:34:27:34:15:df:91:3d:60:94:91:83:b2:
da:18:db:39:f2:87:0b:ec:a3:e1:65:e7:bf:96:6a:aa:72:23:
c6:58:2d:1e:f3:66:28:b6:9b:a3:ec:c8:ca:9a:96:99:af:03:
17:6f:54:d8:e4:3c:b3:85:f8:33:91:5d:6f:97:2e:1d:b3:1f:
f7:15:ac:4f:0f:98:b0:42:76:1b:6f:33:a9:02:67:97:a3:49:
7b:60:74:c3:db:05:0e:e0:67:f4:cc:52:c1:60:85:f9:43:01:
f7:73:27:d7:3a:9e:1a:20:00:7a:ca:ba:40:09:e7:2b:49:f6:
48:84:b4:5e:a5:8b:43:4b:d5:e2:fb:c0:4c:bf:36:bf:75:74:
94:ff:a3:54:df:ca:53:3a:30:e5:57:9d:8a:75:17:a8:7a:8f:
85:fe:d8:fd
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgISAYf7WQswaFXbAX/mqvndlXG4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzOTY1ZGQxZjZmMjRhNDZkN2NjNGJjY2ZlY2Q0MTUxYzZk
ZDFiZmIwHhcNMjMwNTA4MTIzMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWI3ZTk5YjcwOTRkZDgxNDkyNTRlZjM4ZjQxZGI1NzNmMDY2NjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcaNQc3e0yCTWlX7YFniE9tPCOCD
tFXqse/d+wF8Z/UlpFqmsnlsR5gZ19FK1zTqB1a/isPThhMUmrQBEZo7E2jLQWul
HfNrmKlFOHBIR44sb6R0pVIyfEHXnyoNn0uAH4kUYOzv3birf/3GswImo8Rlenmq
ecluIwGFlmxRpMbNl2xeJ3BtTcMXCPYaMgRtYIbT/Dsg4BNHw1V+CvMIcPWhFC8f
zpxpsJsF4rt1VxOj+c9HKvZv3jTRQ+t3R2rIqRODTwW7NbKlDYvWLgMeuvOe/qKf
G8XDqMSoSkjeM7wSDfWuD0MtF62jOARFIg4XtUbyPkZkow+JTJrsqlW68wIDAQAB
o4ICuDCCArQwHQYDVR0OBBYEFFm36ZtwlN2BSSVO849B21c/BmYrMB8GA1UdIwQY
MBaAFEOWXdH28kpG18xLzP7NQVHG3Rv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTVaZDBmYnlTa2JYekV2TV9zMUJVY2JkR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9jNzMxYzQtOTE4My00ZGIzLWI3MGEt
MzM5ODBjMDNmMDhlLzEvV2JmcG0zQ1UzWUZKSlU3emowSGJWejhHWmlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9jNzMxYzQtOTE4My00ZGIzLWI3MGEtMzM5ODBjMDNmMDhl
LzEvUTVaZDBmYnlTa2JYekV2TV9zMUJVY2JkR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHNBggrBgEFBQcBBwEB/wSBvTCBujCBtwQCAAEwgbADBAIt
m8ADBABb1ZcDBABb1Z0DBABb1acDBABb1awDBAK5LzADBAK5UkADBAK5eTgwDAME
ALl9FQMEA7l9EAMEArmJPAMEArmOXAMEArmOfAMEAbnUwAMEALnUwwMEArndwAME
ArnuLAMEAcH2rgMEAcH2yAMEAMMIZgMEAMMIbgMEAMMIcAMEAMMIcgMEAcO/FgME
AcO/LAMEAMPmYQMEAMPmaQMEAMPmawMEAMPmfDANBgkqhkiG9w0BAQsFAAOCAQEA
huQDS55t8aYCyqgpNvuXshrDsmamUY3+SHqD7Lwbkl/yQcgI/29mpMFLFB+I21I8
PKZA6EjvwHrmvJl7SZfEYVw0sCT+QAGZyrfRFPov1ktTfVlRzsJJOa0u/XbgakAW
NCc0Fd+RPWCUkYOy2hjbOfKHC+yj4WXnv5ZqqnIjxlgtHvNmKLabo+zIypqWma8D
F29U2OQ8s4X4M5Fdb5cuHbMf9xWsTw+YsEJ2G28zqQJnl6NJe2B0w9sFDuBn9MxS
wWCF+UMB93Mn1zqeGiAAesq6QAnnK0n2SIS0XqWLQ0vV4vvATL82v3V0lP+jVN/K
Uzow5VedinUXqHqPhf7Y/Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:23 2023 by rpki-client on console-ams.rpki-client.org