Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/WI2X7jrtl_BpLK8Ywz6ksmjWNY0.roa
File: WI2X7jrtl_BpLK8Ywz6ksmjWNY0.roa (raw, json)
Hash identifier: rhN0Lcmio7kF6s/Mj2xSuj6skVgwN/GW756VxCMtz4E=
Subject key identifier: 58:8D:97:EE:3A:ED:97:F0:69:2C:AF:18:C3:3E:A4:B2:68:D6:35:8D
Certificate issuer: /CN=2bb330942298f75823cbb980c8eb2acf0b7c0c1b
Certificate serial: 018CC8012FD333923BC7F2B3854230105D52
Authority key identifier: 2B:B3:30:94:22:98:F7:58:23:CB:B9:80:C8:EB:2A:CF:0B:7C:0C:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7MwlCKY91gjy7mAyOsqzwt8DBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/WI2X7jrtl_BpLK8Ywz6ksmjWNY0.roa
Signing time: Tue 02 Jan 2024 02:29:30 +0000
ROA not before: Tue 02 Jan 2024 02:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200154
IP address blocks: 185.32.44.0/24 maxlen: 24
185.32.44.0/22 maxlen: 22
185.32.47.0/24 maxlen: 24
185.32.45.0/24 maxlen: 24
185.32.46.0/24 maxlen: 24
2a00:c0a0::/32 maxlen: 32
2a00:c0a0:4000::/34 maxlen: 34
2a00:c0a0::/34 maxlen: 34
2a00:c0a0:8000::/34 maxlen: 34
2a00:c0a0:c000::/34 maxlen: 34
Validation: Failed, certificate revoked on Sun 14 Apr 2024 15:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:2f:d3:33:92:3b:c7:f2:b3:85:42:30:10:5d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb330942298f75823cbb980c8eb2acf0b7c0c1b
Validity
Not Before: Jan 2 02:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=588d97ee3aed97f0692caf18c33ea4b268d6358d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bb:b0:59:fb:f2:73:a1:f2:57:28:f8:06:18:
0c:a4:bd:61:2f:da:41:b8:da:db:5a:a6:dd:a5:b7:
56:11:bf:f0:c9:e9:04:83:eb:0d:40:d6:6b:9f:02:
1d:7e:cf:b5:22:a6:16:ec:cb:a9:27:ab:f1:7d:f4:
73:77:bf:af:57:f7:24:43:ac:00:08:ca:cf:8e:f0:
0f:ab:78:2d:38:07:e1:92:cc:a9:df:6c:0f:28:3c:
c3:bc:d0:21:8d:b4:4f:cd:1a:cb:26:ce:ac:e8:af:
19:5f:d1:35:11:0d:21:25:fc:34:ff:59:15:06:d0:
3d:01:44:8f:f3:af:89:cb:11:3f:48:04:8a:62:1b:
e9:3b:96:4f:e6:d7:f0:10:0e:78:4a:5b:0e:a1:b4:
9b:1f:3e:12:ee:2f:f2:69:4f:0f:57:a0:35:71:57:
5f:f1:4c:b5:f2:2c:98:39:2b:02:aa:db:ca:cd:e8:
71:e6:6b:e9:ef:c8:76:d5:c6:02:e2:3a:78:63:5d:
4f:b1:8f:77:a2:83:cc:47:13:6a:b8:09:4a:5d:33:
61:e1:63:1d:74:13:29:ef:51:19:8e:03:b4:de:9d:
70:50:9f:3e:cd:2d:ba:8c:14:1d:24:0b:0a:e3:72:
97:76:e6:d6:44:e1:1c:5a:d4:6f:b2:c4:e0:97:89:
4a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8D:97:EE:3A:ED:97:F0:69:2C:AF:18:C3:3E:A4:B2:68:D6:35:8D
X509v3 Authority Key Identifier:
keyid:2B:B3:30:94:22:98:F7:58:23:CB:B9:80:C8:EB:2A:CF:0B:7C:0C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7MwlCKY91gjy7mAyOsqzwt8DBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/WI2X7jrtl_BpLK8Ywz6ksmjWNY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/K7MwlCKY91gjy7mAyOsqzwt8DBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.44.0/22
IPv6:
2a00:c0a0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:67:1b:23:4f:1c:5a:d3:e8:13:c6:d4:27:18:ef:c0:e1:e5:
c0:be:a5:83:4f:60:de:88:b8:25:b8:a5:6d:27:dc:5a:2d:3f:
8a:c2:e9:3b:40:ca:6c:c6:fd:fb:9b:66:e9:6b:c1:4b:a2:d3:
e0:07:5b:d3:cb:cc:ce:91:8c:44:a4:c5:99:92:58:68:fd:a5:
7c:f3:0e:de:34:27:be:86:b8:36:62:2f:a4:03:13:3e:53:53:
25:04:e1:f0:f7:03:59:5b:24:09:4b:ab:50:2a:7f:a5:95:06:
de:ed:bf:6c:76:b1:ed:65:70:31:39:c8:63:2d:84:c7:fe:e1:
65:38:e9:d9:7e:cb:46:8f:5e:e4:79:9b:92:22:06:33:9a:f3:
da:17:d7:5c:4d:4c:78:09:da:05:8b:ca:1b:33:31:34:80:eb:
7d:0f:0b:8f:a2:2f:27:6c:a3:03:f1:83:66:cd:1e:35:98:ab:
34:82:94:9d:12:cf:80:9d:1f:fa:e0:9b:d5:2b:2d:ca:b5:2e:
ca:b1:87:ca:e1:1e:49:6f:2b:63:3b:8d:50:fa:be:13:0b:c2:
25:0e:7a:c1:82:69:61:56:6d:4f:34:cb:39:b7:7f:ef:74:a3:
3c:15:1f:5b:b5:73:5a:18:0b:32:a0:7f:af:43:1f:47:32:36:
35:50:52:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:16 2025 by rpki-client