Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/WlQ7ZDB9TXQlWZXtJj_8UPf4JT4.roa
File: WlQ7ZDB9TXQlWZXtJj_8UPf4JT4.roa (raw, json)
Hash identifier: jS/PGHOURgQa759wgvoYEHROcaXiYW/L2hJSQbFRbAM=
Subject key identifier: 5A:54:3B:64:30:7D:4D:74:25:59:95:ED:26:3F:FC:50:F7:F8:25:3E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019542D706FE44710AE4EF65970ABC133BC6
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/WlQ7ZDB9TXQlWZXtJj_8UPf4JT4.roa
Signing time: Wed 26 Feb 2025 15:19:03 +0000
ROA not before: Wed 26 Feb 2025 15:19:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48803
IP address blocks: 193.183.148.0/22 maxlen: 22
193.183.192.0/22 maxlen: 24
193.183.192.0/24 maxlen: 24
193.183.194.0/24 maxlen: 24
193.183.195.0/24 maxlen: 24
193.183.212.0/22 maxlen: 24
193.183.212.0/24 maxlen: 24
193.183.213.0/24 maxlen: 24
193.183.215.0/24 maxlen: 24
193.183.250.0/23 maxlen: 23
193.234.72.0/22 maxlen: 24
193.234.72.0/24 maxlen: 24
193.234.73.0/24 maxlen: 24
193.234.74.0/24 maxlen: 24
193.234.75.0/24 maxlen: 24
193.234.108.0/22 maxlen: 24
193.234.108.0/24 maxlen: 24
193.234.109.0/24 maxlen: 24
193.234.111.0/24 maxlen: 24
194.68.117.0/24 maxlen: 24
194.132.224.0/22 maxlen: 24
194.132.224.0/24 maxlen: 24
194.132.225.0/24 maxlen: 24
194.132.226.0/24 maxlen: 24
194.132.227.0/24 maxlen: 24
194.132.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Feb 2025 08:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:d7:06:fe:44:71:0a:e4:ef:65:97:0a:bc:13:3b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Feb 26 15:19:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a543b64307d4d74255995ed263ffc50f7f8253e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d6:41:2d:bb:09:19:bc:3b:f1:1d:6c:43:0e:
28:35:20:83:c5:f0:89:5c:15:f3:a1:e8:71:c3:58:
11:43:3b:12:bb:74:19:1c:55:04:9b:ce:88:a1:a3:
dc:c0:9a:32:75:cf:d7:8f:5e:7a:55:af:5e:62:35:
d4:65:71:ea:52:9b:4c:a7:4b:b3:bb:6a:35:44:0a:
72:bf:62:47:0c:1b:0f:ef:f8:99:7e:33:70:b1:82:
04:25:fd:40:1c:3c:df:02:90:e3:d2:21:07:fb:f7:
c8:64:57:13:71:72:6a:c7:c6:e3:a9:57:2a:7c:2e:
5b:09:07:11:fb:01:b1:fb:1b:70:92:b9:78:ef:67:
1c:ab:be:af:1e:d0:5e:43:92:a1:83:b0:a8:1c:8a:
70:d6:f4:7e:fe:0f:1a:42:66:8b:53:27:d4:53:88:
de:68:c5:37:10:4e:2f:ff:71:78:a8:2c:50:b2:f9:
31:cc:cf:60:a6:30:db:70:e8:71:4a:8f:16:b7:42:
62:57:f2:bc:ad:16:f5:19:a9:1e:ed:a3:9b:a2:d8:
2c:3e:09:f4:c1:42:27:e7:29:9e:28:b6:1d:21:33:
f7:61:73:03:1e:03:50:1b:14:52:02:e1:e8:3b:7c:
41:a0:8a:b2:2b:8c:f4:e1:43:42:eb:d1:36:33:0b:
81:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:54:3B:64:30:7D:4D:74:25:59:95:ED:26:3F:FC:50:F7:F8:25:3E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/WlQ7ZDB9TXQlWZXtJj_8UPf4JT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.183.148.0/22
193.183.192.0/22
193.183.212.0/22
193.183.250.0/23
193.234.72.0/22
193.234.108.0/22
194.68.117.0/24
194.132.224.0/21
Signature Algorithm: sha256WithRSAEncryption
89:73:b1:91:3c:49:99:be:67:e1:00:f6:c2:a8:a3:77:b2:44:
34:d2:94:7a:38:5c:80:38:a5:c8:51:99:57:73:72:de:e8:7d:
3d:98:4d:a8:8f:90:5b:92:d5:4a:57:d1:ca:b3:ab:59:ff:70:
da:9d:51:f5:86:01:b1:25:a0:d9:25:2f:97:30:00:63:7d:3c:
e9:b6:37:9f:0e:c3:86:34:00:2b:73:f3:62:99:6c:98:9f:82:
fc:80:89:a8:7e:c4:69:4f:e7:93:85:0e:90:0f:33:55:4c:ec:
ee:b7:15:ae:ab:df:e1:18:d6:1f:00:2e:ff:07:ae:d0:f7:f7:
a5:d2:25:11:b4:9e:bc:13:90:69:a5:72:37:d2:fe:d4:e8:ca:
ab:cc:ed:87:9a:9a:0b:92:83:00:84:23:84:ae:b2:04:ef:15:
9f:48:dd:66:f4:f0:11:6f:e1:11:f4:59:ce:b0:8d:a2:b9:c8:
8d:8c:d0:00:c7:d7:4f:bd:d7:1e:2f:6f:23:ba:dc:85:65:70:
db:a7:09:d2:60:1b:2c:ab:c8:75:a3:a1:6e:d9:1c:96:58:65:
72:63:94:3b:8e:72:75:85:66:a3:9f:8e:02:97:65:9c:80:f8:
48:eb:57:c7:89:84:f4:0b:be:65:bd:1a:1b:ca:10:51:0f:ba:
97:3c:cd:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:01:14 2025 by rpki-client