Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/_woStceLFVKyGtD0Mku2zI-1bCU.roa
File: _woStceLFVKyGtD0Mku2zI-1bCU.roa (raw, json)
Hash identifier: q5PJX9OEl1eucTTHJHhOgCGTq3VwX+EVae2oUEvKSgQ=
Subject key identifier: FF:0A:12:B5:C7:8B:15:52:B2:1A:D0:F4:32:4B:B6:CC:8F:B5:6C:25
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 01870D870B0C1C5A6F445771815CFFEEB692
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/_woStceLFVKyGtD0Mku2zI-1bCU.roa
Signing time: Thu 23 Mar 2023 08:12:46 +0000
ROA not before: Thu 23 Mar 2023 08:12:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31115
IP address blocks: 62.97.32.0/19 maxlen: 19
62.97.32.0/20 maxlen: 20
62.97.45.0/24 maxlen: 24
62.97.48.0/20 maxlen: 20
130.255.144.0/21 maxlen: 21
130.255.144.0/22 maxlen: 22
130.255.144.0/24 maxlen: 24
91.187.201.0/24 maxlen: 24
91.187.208.0/20 maxlen: 20
91.187.217.0/24 maxlen: 24
178.19.144.0/20 maxlen: 24
94.126.56.0/21 maxlen: 21
94.126.56.0/22 maxlen: 22
94.126.60.0/22 maxlen: 22
185.11.192.0/22 maxlen: 24
195.134.176.0/21 maxlen: 24
130.255.150.0/24 maxlen: 24
130.255.148.0/22 maxlen: 24
130.255.149.0/24 maxlen: 24
31.171.136.0/21 maxlen: 21
31.171.136.0/22 maxlen: 22
31.171.140.0/24 maxlen: 24
31.171.140.0/22 maxlen: 22
194.150.162.0/23 maxlen: 23
91.187.192.0/20 maxlen: 20
91.187.192.0/19 maxlen: 19
91.187.199.0/24 maxlen: 24
5.172.64.0/19 maxlen: 19
2a01:9840::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 Mar 2023 08:13:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:87:0b:0c:1c:5a:6f:44:57:71:81:5c:ff:ee:b6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: Mar 23 08:12:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff0a12b5c78b1552b21ad0f4324bb6cc8fb56c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:50:04:46:09:90:05:be:94:d7:8b:6c:72:78:
4d:93:06:17:fb:51:46:8c:58:31:14:49:58:ef:53:
e3:ab:d0:37:0b:d9:07:60:08:71:54:21:ba:0a:9b:
cf:47:21:16:8a:b5:21:18:b8:0c:97:f5:02:c1:45:
f6:4e:db:a6:2a:f2:b8:ae:f4:b8:58:a0:84:d0:c2:
b8:4e:c3:34:02:eb:88:25:1b:d2:91:ca:99:56:39:
15:ca:f6:e3:3b:77:8d:38:77:d2:26:a7:cc:ec:8e:
3e:04:3b:d8:ea:27:77:4e:be:94:5e:14:6a:ec:95:
37:5b:c0:35:fd:19:0b:60:5c:a9:e6:8c:7a:92:fd:
a6:54:0b:d3:05:7e:fd:cd:b0:a8:13:56:38:26:36:
83:16:a0:f9:8e:40:e2:a1:a5:7c:bd:ae:8d:70:9d:
7b:74:7c:3f:61:d3:f6:10:88:28:9f:a8:5c:28:7d:
2a:3f:ae:bf:4d:7b:3a:9f:43:26:61:ef:8c:3b:7c:
71:0f:a1:15:8c:94:39:df:82:2d:d0:7a:6c:d5:9c:
05:6c:45:23:8b:d8:1a:83:3c:cd:1f:83:69:7f:35:
f2:cb:a7:45:5f:9b:ab:50:c5:8f:ae:50:0c:86:c0:
6e:f9:9b:64:98:97:4f:1e:08:0e:ac:8c:af:fe:f3:
49:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:0A:12:B5:C7:8B:15:52:B2:1A:D0:F4:32:4B:B6:CC:8F:B5:6C:25
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/_woStceLFVKyGtD0Mku2zI-1bCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.64.0/19
31.171.136.0/21
62.97.32.0/19
91.187.192.0/19
94.126.56.0/21
130.255.144.0/21
178.19.144.0/20
185.11.192.0/22
194.150.162.0/23
195.134.176.0/21
IPv6:
2a01:9840::/32
Signature Algorithm: sha256WithRSAEncryption
a5:55:7e:b2:c4:66:63:a8:e8:c4:f5:b0:86:3c:e9:11:17:63:
28:3a:ed:25:80:4c:a8:bf:65:ac:ad:88:92:00:27:06:cb:43:
ac:31:23:92:a8:37:20:e3:fb:ed:b2:c9:92:04:04:cf:49:04:
da:c1:37:a4:3c:77:73:b1:c2:7d:6b:95:af:c7:46:59:12:ae:
f1:52:98:2f:ef:4e:d7:8b:e2:f1:1f:29:a2:b2:85:ce:19:79:
9c:d1:e9:7f:7a:64:bc:74:7c:c8:0f:8b:51:8f:83:1d:ad:c9:
f0:da:a4:b1:32:8c:4e:42:69:56:d2:e9:cf:e6:1f:35:1a:7c:
9e:c3:03:42:46:f8:95:80:5c:dd:db:23:88:31:27:93:a4:ea:
5b:54:54:31:c7:71:18:39:cb:9d:ad:5c:ed:ae:18:77:04:ba:
f8:0a:3d:85:be:f5:e3:bd:f6:5a:49:8c:c5:18:f6:a3:08:fc:
a5:66:79:04:14:22:4e:c1:bf:8d:76:c2:75:e4:a8:16:29:f4:
8a:73:07:e8:9c:ee:de:4a:87:a6:c1:ed:c1:8a:ae:29:a3:5e:
d0:36:4d:b9:40:0c:6b:95:19:ed:72:16:d3:24:91:6f:d2:6a:
e6:b7:5f:3a:7e:aa:aa:8b:75:a5:55:96:80:34:cd:ca:c0:2f:
e1:b4:fc:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:40 2024 by rpki-client on console-fra.rpki-client.org