Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/WALEvYTZpHZ3PSbC06DyuujTGmU.roa
File: WALEvYTZpHZ3PSbC06DyuujTGmU.roa (raw, json)
Hash identifier: IasOL4PGOPgzNfNdiVZjXMn3YRDHT1AhAnrm1AnuEoA=
Subject key identifier: 58:02:C4:BD:84:D9:A4:76:77:3D:26:C2:D3:A0:F2:BA:E8:D3:1A:65
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 01856BAEE2F4B6E9EFFF2361CD21DB91E83B
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/WALEvYTZpHZ3PSbC06DyuujTGmU.roa
Signing time: Sun 01 Jan 2023 04:55:01 +0000
ROA not before: Sun 01 Jan 2023 04:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57128
IP address blocks: 84.39.244.0/24 maxlen: 24
84.39.244.0/23 maxlen: 23
84.39.246.0/24 maxlen: 24
84.39.246.0/23 maxlen: 23
84.39.244.0/22 maxlen: 22
84.39.245.0/24 maxlen: 24
84.39.247.0/24 maxlen: 24
46.191.224.0/22 maxlen: 22
46.191.225.0/24 maxlen: 24
46.191.224.0/24 maxlen: 24
46.191.224.0/23 maxlen: 23
46.191.226.0/24 maxlen: 24
46.191.226.0/23 maxlen: 23
46.191.227.0/24 maxlen: 24
93.157.250.0/23 maxlen: 23
93.157.250.0/24 maxlen: 24
93.157.251.0/24 maxlen: 24
93.157.248.0/23 maxlen: 23
93.157.248.0/24 maxlen: 24
93.157.249.0/24 maxlen: 24
93.157.248.0/22 maxlen: 22
95.105.68.0/22 maxlen: 22
95.105.66.0/23 maxlen: 23
95.105.69.0/24 maxlen: 24
95.105.66.0/24 maxlen: 24
95.105.67.0/24 maxlen: 24
95.105.70.0/23 maxlen: 23
95.105.71.0/24 maxlen: 24
95.105.65.0/24 maxlen: 24
95.105.68.0/23 maxlen: 23
95.105.68.0/24 maxlen: 24
95.105.70.0/24 maxlen: 24
95.105.74.0/23 maxlen: 23
95.105.77.0/24 maxlen: 24
95.105.76.0/22 maxlen: 22
95.105.74.0/24 maxlen: 24
95.105.76.0/23 maxlen: 23
95.105.76.0/24 maxlen: 24
95.105.72.0/23 maxlen: 23
95.105.75.0/24 maxlen: 24
95.105.72.0/22 maxlen: 22
95.105.72.0/24 maxlen: 24
95.105.78.0/23 maxlen: 23
95.105.78.0/24 maxlen: 24
95.105.73.0/24 maxlen: 24
95.105.79.0/24 maxlen: 24
95.105.64.0/23 maxlen: 23
95.105.64.0/20 maxlen: 20
95.105.64.0/24 maxlen: 24
95.105.64.0/22 maxlen: 22
2a02:1c8:9::/48 maxlen: 48
2a02:1c8:30::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:e2:f4:b6:e9:ef:ff:23:61:cd:21:db:91:e8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 1 04:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5802c4bd84d9a476773d26c2d3a0f2bae8d31a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1b:80:23:2e:65:6a:79:78:03:c9:17:a1:4e:
be:30:7d:f0:e2:50:58:f1:08:d8:96:2b:93:e9:70:
7f:22:8a:73:f7:b3:95:7e:cc:a4:75:21:5e:3c:de:
54:bb:c2:96:e3:28:1b:71:6a:fc:40:3a:f4:4c:12:
86:ed:da:b7:a7:b1:6d:f9:7e:d7:fa:3a:a2:2b:09:
d8:ec:33:27:95:b0:38:f9:39:2d:e4:c9:d2:82:d4:
6e:89:64:5c:58:69:77:62:e6:66:a5:91:e3:62:49:
af:80:a8:67:12:86:18:b9:e5:8f:f4:f0:32:d8:eb:
08:e8:b0:b3:5d:ca:de:24:df:b0:5e:da:03:7a:46:
c0:68:04:53:a5:ad:65:a1:2f:bc:1f:f7:cb:f6:1f:
0d:53:ca:64:5b:ce:6c:02:54:c9:43:27:b8:47:36:
cf:ff:f9:aa:32:46:95:3c:45:00:a7:00:9e:d7:34:
db:6a:69:3d:a1:68:ca:60:7d:e9:ff:3d:ce:5b:01:
6e:0f:99:f4:da:a2:3b:25:70:35:bb:3e:29:82:55:
6c:d3:ec:79:57:99:39:ea:aa:17:92:ff:ca:ec:7b:
5b:7e:3e:96:00:cb:98:6c:60:0e:4c:29:bb:8e:27:
88:70:a0:61:2f:7e:b2:92:45:42:9a:bc:13:c8:fa:
d5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:02:C4:BD:84:D9:A4:76:77:3D:26:C2:D3:A0:F2:BA:E8:D3:1A:65
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/WALEvYTZpHZ3PSbC06DyuujTGmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.191.224.0/22
84.39.244.0/22
93.157.248.0/22
95.105.64.0/20
IPv6:
2a02:1c8:9::/48
2a02:1c8:30::/44
Signature Algorithm: sha256WithRSAEncryption
40:ce:d3:ac:0f:7e:7d:2d:6e:1f:54:59:12:0f:ef:34:e8:05:
50:17:84:76:d7:e4:76:f6:ef:99:c1:5f:05:af:a3:0a:8b:a3:
ea:7a:ce:3b:95:1f:fb:0d:63:f0:5c:4c:bd:8a:0f:68:70:5d:
21:cb:59:03:5e:29:29:dc:3f:84:e3:fd:af:65:df:9b:a4:eb:
74:4d:04:fd:ed:2f:73:11:7c:bc:70:31:00:d4:df:bb:95:e8:
c0:e2:cd:87:e6:49:b2:4c:c5:8f:95:bc:7a:54:e5:a7:4c:0a:
fe:25:23:84:c4:ff:e6:f0:ae:39:73:a9:b9:77:55:3d:da:93:
31:f9:e0:08:af:94:e2:20:00:96:0d:60:6a:c3:63:47:da:6b:
f0:bc:48:6f:e8:0c:69:8f:2b:5c:b1:f5:a4:31:5c:0f:95:c9:
76:f3:0f:8e:5a:b5:4e:f1:e5:d7:f6:af:16:38:25:c9:54:b0:
b0:bc:b5:85:28:8a:57:26:eb:13:1b:bf:59:dd:61:05:25:77:
18:e7:62:79:6f:ff:01:89:78:03:9a:a5:60:e7:1c:fb:32:8a:
fb:3c:d8:fc:6c:b5:8f:3b:15:1a:b7:e1:57:6f:bd:90:96:53:
81:ce:1b:48:9f:97:6c:f8:79:b5:8a:9b:c6:e8:71:5b:a6:df:
4c:63:e3:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org