Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/W2CP5_OiPXvo1zXlwEnxkDHL9vM.roa
File: W2CP5_OiPXvo1zXlwEnxkDHL9vM.roa (raw, json)
Hash identifier: UU+TUA11lMO9m23uwru3mC1S19DfF1DetmxC+qfTcPU=
Subject key identifier: 5B:60:8F:E7:F3:A2:3D:7B:E8:D7:35:E5:C0:49:F1:90:31:CB:F6:F3
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 01930B3A1B82997FBEF18CB6AF6E044257D5
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/W2CP5_OiPXvo1zXlwEnxkDHL9vM.roa
Signing time: Fri 08 Nov 2024 10:02:57 +0000
ROA not before: Fri 08 Nov 2024 10:02:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44534
IP address blocks: 5.45.209.0/24 maxlen: 24
5.255.232.0/24 maxlen: 24
5.255.234.0/23 maxlen: 23
37.140.168.0/24 maxlen: 24
77.88.42.0/23 maxlen: 23
77.88.61.0/24 maxlen: 24
87.250.232.0/24 maxlen: 24
87.250.238.0/24 maxlen: 24
90.156.176.0/20 maxlen: 24
90.156.176.0/24 maxlen: 24
93.158.155.0/24 maxlen: 24
93.158.184.0/24 maxlen: 24
93.158.185.0/24 maxlen: 24
93.158.186.0/24 maxlen: 24
93.158.187.0/24 maxlen: 24
95.108.168.0/22 maxlen: 22
95.108.170.0/24 maxlen: 24
178.154.152.0/24 maxlen: 24
2a02:6bf:8004::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Nov 2024 11:10:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0b:3a:1b:82:99:7f:be:f1:8c:b6:af:6e:04:42:57:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Nov 8 10:02:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b608fe7f3a23d7be8d735e5c049f19031cbf6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b8:6a:ed:65:af:43:90:dc:ee:08:77:24:75:
53:4a:77:e5:b3:b8:c6:a8:d4:da:67:cb:30:82:ff:
e9:9c:55:e9:62:54:6e:a0:74:94:31:5a:62:0a:b9:
7d:62:85:1b:bd:a9:62:8c:0e:de:cf:a5:71:c4:30:
a9:21:4f:f4:d3:33:f7:57:9e:2a:d9:dc:75:ab:97:
bc:d2:3e:1f:9f:0a:db:1e:b2:12:93:f2:87:8b:ef:
aa:ce:84:cb:02:8d:ad:b5:8b:8f:bc:2b:a0:90:e3:
eb:b9:3a:6e:fe:eb:ec:45:80:70:88:c2:f6:9b:d2:
2e:68:49:79:a3:81:bf:9b:21:54:51:2b:70:10:a2:
4f:c8:17:fe:25:52:70:fa:7a:13:36:27:49:5a:51:
37:1d:d5:da:85:de:ba:9c:29:70:56:6f:8d:98:2e:
35:f5:14:ad:b6:bb:19:22:1b:3c:06:a4:c3:0b:a5:
c0:91:80:5c:08:38:07:a4:28:c8:99:78:9d:39:f4:
fd:9f:e5:fa:96:2a:96:ba:36:f9:af:27:b2:05:6c:
ef:c7:8d:bb:91:37:a8:95:c0:46:e0:bb:f7:f3:67:
60:26:63:55:59:8c:2b:b8:84:00:32:c6:af:5e:17:
80:01:3b:d8:55:e3:7d:5e:74:32:87:13:8c:91:33:
92:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:60:8F:E7:F3:A2:3D:7B:E8:D7:35:E5:C0:49:F1:90:31:CB:F6:F3
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/W2CP5_OiPXvo1zXlwEnxkDHL9vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.209.0/24
5.255.232.0/24
5.255.234.0/23
37.140.168.0/24
77.88.42.0/23
77.88.61.0/24
87.250.232.0/24
87.250.238.0/24
90.156.176.0/20
93.158.155.0/24
93.158.184.0/22
95.108.168.0/22
178.154.152.0/24
IPv6:
2a02:6bf:8004::/48
Signature Algorithm: sha256WithRSAEncryption
88:de:3c:7b:6a:cb:dc:3e:c5:5d:29:10:29:0c:59:3c:fa:39:
50:c3:f4:de:cd:b4:ef:6c:c3:45:f3:07:e1:b2:8b:d2:5d:c7:
54:1e:ba:e9:7b:00:30:aa:6b:a0:c7:59:69:01:79:69:06:97:
dc:ca:22:c1:90:39:97:dc:3a:82:f8:92:08:8e:d4:e1:db:43:
8a:96:a9:2d:a3:31:ef:73:d5:d6:e7:3f:3b:ef:0c:cb:86:b8:
54:b4:26:ad:11:ab:55:4f:dd:e1:13:f6:fd:6b:82:ef:80:e1:
0e:7c:31:7d:c2:dc:26:3b:57:4f:5c:88:ce:d0:89:11:34:0d:
1b:01:de:04:e4:5a:18:74:7b:6d:ea:10:b9:89:2a:c7:3b:26:
d7:f1:fd:23:8b:65:24:a3:22:7f:e4:59:fc:72:6b:1d:99:5b:
69:e6:dc:6a:89:ff:93:ec:3c:a0:2a:49:6b:4d:b8:d6:87:01:
85:95:d3:da:21:c9:32:23:57:20:91:ed:c0:a7:03:11:a4:a2:
e1:d7:a7:4d:8e:74:ff:c1:11:3e:48:a8:f7:62:27:c7:3f:5d:
72:fe:fe:20:87:48:25:48:f8:df:06:b3:29:fb:0e:ad:4d:cc:
00:a3:54:cb:67:89:fc:37:4a:f8:2d:3f:55:4b:d6:6d:47:ee:
9a:01:07:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 14:54:58 2024 by rpki-client on console-fra.rpki-client.org