Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/wYLy_xmeZp7_BqMudu8QQ05pVWc.roa
File: wYLy_xmeZp7_BqMudu8QQ05pVWc.roa (raw, json)
Hash identifier: MZfLDH/SSHqjnrbtlwXaG/P5KqGcCLU5P5Oci8uj7qs=
Subject key identifier: C1:82:F2:FF:19:9E:66:9E:FF:06:A3:2E:76:EF:10:43:4E:69:55:67
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 0185A066591BA722A5F9617BCC8CC85B59CB
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/wYLy_xmeZp7_BqMudu8QQ05pVWc.roa
Signing time: Wed 11 Jan 2023 10:35:40 +0000
ROA not before: Wed 11 Jan 2023 10:35:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41704
IP address blocks: 84.39.252.0/22 maxlen: 22
84.39.248.0/22 maxlen: 22
46.191.240.0/22 maxlen: 22
46.191.244.0/22 maxlen: 22
46.191.240.0/20 maxlen: 20
46.191.252.0/22 maxlen: 22
46.191.248.0/22 maxlen: 22
46.191.186.0/23 maxlen: 23
46.191.186.0/24 maxlen: 24
46.191.184.0/21 maxlen: 21
46.191.185.0/24 maxlen: 24
46.191.184.0/23 maxlen: 23
46.191.184.0/24 maxlen: 24
46.191.189.0/24 maxlen: 24
46.191.191.0/24 maxlen: 24
46.191.188.0/23 maxlen: 23
46.191.188.0/24 maxlen: 24
46.191.190.0/23 maxlen: 23
46.191.190.0/24 maxlen: 24
46.191.187.0/24 maxlen: 24
79.140.16.0/20 maxlen: 20
79.140.16.0/22 maxlen: 22
79.140.24.0/22 maxlen: 22
79.140.20.0/22 maxlen: 22
79.140.28.0/22 maxlen: 22
145.255.16.0/21 maxlen: 21
145.255.16.0/22 maxlen: 22
145.255.20.0/22 maxlen: 22
95.105.120.0/22 maxlen: 22
95.105.124.0/22 maxlen: 22
94.41.128.0/20 maxlen: 20
94.41.128.0/22 maxlen: 22
94.41.132.0/22 maxlen: 22
94.41.136.0/22 maxlen: 22
94.41.140.0/22 maxlen: 22
94.41.160.0/19 maxlen: 19
94.41.160.0/22 maxlen: 22
94.41.160.0/21 maxlen: 21
94.41.164.0/22 maxlen: 22
94.41.168.0/22 maxlen: 22
94.41.172.0/22 maxlen: 22
95.105.96.0/19 maxlen: 19
95.105.96.0/22 maxlen: 22
95.105.104.0/22 maxlen: 22
95.105.100.0/22 maxlen: 22
95.105.112.0/22 maxlen: 22
95.105.108.0/22 maxlen: 22
95.105.116.0/22 maxlen: 22
136.169.240.0/22 maxlen: 22
136.169.244.0/22 maxlen: 22
136.169.240.0/20 maxlen: 20
136.169.252.0/22 maxlen: 22
136.169.248.0/22 maxlen: 22
94.41.176.0/22 maxlen: 22
94.41.184.0/22 maxlen: 22
94.41.180.0/22 maxlen: 22
94.41.188.0/22 maxlen: 22
2a02:1c8:7::/48 maxlen: 48
2a02:1c8:700::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 12 Jan 2023 06:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:66:59:1b:a7:22:a5:f9:61:7b:cc:8c:c8:5b:59:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 11 10:35:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c182f2ff199e669eff06a32e76ef10434e695567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:8d:f5:72:72:10:02:2b:43:89:1e:13:23:
9c:65:91:80:11:ab:d1:77:dc:40:e3:c2:19:73:f6:
2b:51:56:53:80:84:c2:07:59:d9:9f:30:45:22:08:
c9:44:61:57:ab:10:93:8c:2d:69:37:70:39:5a:f0:
e3:34:8c:f9:46:29:c7:f0:ef:3e:02:bf:35:96:cd:
dc:73:40:17:ae:e4:a5:2d:79:c3:60:c1:99:f7:5b:
f5:6c:0f:6c:4d:49:11:e7:21:7b:58:49:bb:27:bf:
8a:8d:31:c7:b6:d0:7d:9f:bd:de:be:18:91:43:2f:
5b:3a:57:8d:44:4d:1f:bd:c3:f4:f9:e1:53:7a:cc:
12:ad:1f:26:25:98:af:a8:34:af:76:81:24:a7:3a:
46:48:2f:01:f3:d8:28:6b:1a:aa:10:c8:ae:c9:39:
59:2f:3b:15:73:1f:23:59:0d:52:88:70:b7:3e:2a:
04:d5:d9:83:e1:76:10:3b:79:99:75:fa:52:62:f8:
0c:90:0d:9b:fd:9b:52:92:71:f6:cd:73:51:bc:c9:
20:af:00:e4:2d:e2:78:e2:a3:99:25:8d:a5:b2:43:
0b:b4:7f:e4:ef:ff:94:d9:8f:41:1f:6a:ed:19:1c:
5d:58:92:cb:92:dd:86:7e:2c:d4:c3:82:1e:4b:b5:
73:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:82:F2:FF:19:9E:66:9E:FF:06:A3:2E:76:EF:10:43:4E:69:55:67
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/wYLy_xmeZp7_BqMudu8QQ05pVWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.191.184.0/21
46.191.240.0/20
79.140.16.0/20
84.39.248.0/21
94.41.128.0/20
94.41.160.0/19
95.105.96.0/19
136.169.240.0/20
145.255.16.0/21
IPv6:
2a02:1c8:7::/48
2a02:1c8:700::/40
Signature Algorithm: sha256WithRSAEncryption
32:37:3f:17:a0:6f:33:c5:17:c6:3d:18:03:e0:49:02:2f:be:
74:a7:ae:ce:93:d0:5b:23:01:b3:0e:26:8f:8b:fc:dd:16:2b:
f0:30:9b:d4:22:31:a9:64:8f:a7:fc:52:5f:1e:6a:55:a6:f5:
e3:0d:9c:fa:3c:8d:b1:08:f0:47:fd:4a:35:42:a3:84:d8:c3:
02:3a:7e:4e:e4:7a:b7:34:50:62:e0:eb:21:d1:b5:5c:59:19:
c6:ba:f2:75:80:91:f1:31:41:96:82:b8:a2:2d:bd:13:6a:79:
d9:a2:d4:49:cc:6c:d2:e1:f3:f2:b1:8a:4b:fd:15:93:5e:c5:
6a:3c:eb:d6:8b:65:47:4d:bd:70:02:ba:f8:e0:da:a9:9f:6d:
ae:f3:53:01:f7:fc:9c:5d:cf:ff:60:92:7f:a3:83:9e:a7:d0:
2e:de:5d:13:62:7e:29:3f:a0:31:99:d6:27:f6:a0:5d:f7:bc:
66:30:df:22:0b:26:51:51:09:bc:59:99:ce:86:bb:6c:11:7a:
81:14:4f:bc:e5:1a:bd:eb:f0:8b:c0:b1:30:75:e1:ae:d4:8f:
74:78:98:43:8f:65:b6:40:53:69:98:14:ce:87:16:84:4c:f9:
25:ad:79:e6:4a:65:89:98:b9:57:9d:13:d4:64:cb:14:a2:78:
6b:34:f8:f3
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgISAYWgZlkbpyKl+WF7zIzIW1nLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNmQwYWU1ZTJmYmZmY2NlMDg3NzBlYmMyMGMyMTZiOWZi
Zjk0ODUwHhcNMjMwMTExMTAzNTQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTgyZjJmZjE5OWU2NjllZmYwNmEzMmU3NmVmMTA0MzRlNjk1NTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkON9XJyEAIrQ4keEyOcZZGAEavR
d9xA48IZc/YrUVZTgITCB1nZnzBFIgjJRGFXqxCTjC1pN3A5WvDjNIz5RinH8O8+
Ar81ls3cc0AXruSlLXnDYMGZ91v1bA9sTUkR5yF7WEm7J7+KjTHHttB9n73evhiR
Qy9bOleNRE0fvcP0+eFTeswSrR8mJZivqDSvdoEkpzpGSC8B89goaxqqEMiuyTlZ
LzsVcx8jWQ1SiHC3PioE1dmD4XYQO3mZdfpSYvgMkA2b/ZtSknH2zXNRvMkgrwDk
LeJ44qOZJY2lskMLtH/k7/+U2Y9BH2rtGRxdWJLLkt2GfizUw4IeS7VzBwIDAQAB
o4ICUjCCAk4wHQYDVR0OBBYEFMGC8v8Znmae/wajLnbvEENOaVVnMB8GA1UdIwQY
MBaAFKNtCuXi+//M4Idw68IMIWufv5SFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzIwSzVlTDdfOHpnaDNEcndnd2hhNS1fbElVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84Y2FjMGMtMzQyNi00ZjA3LWFmMjAt
Y2JiOTUxODNiMjdhLzEvd1lMeV94bWVacDdfQnFNdWR1OFFRMDVwVldjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC84Y2FjMGMtMzQyNi00ZjA3LWFmMjAtY2JiOTUxODNiMjdh
LzEvbzIwSzVlTDdfOHpnaDNEcndnd2hhNS1fbElVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGgGCCsGAQUFBwEHAQH/BFkwVzA8BAIAATA2AwQDLr+4AwQE
Lr/wAwQET4wQAwQDVCf4AwQEXimAAwQFXimgAwQFX2lgAwQEiKnwAwQDkf8QMBcE
AgACMBEDBwAqAgHIAAcDBgAqAgHIBzANBgkqhkiG9w0BAQsFAAOCAQEAMjc/F6Bv
M8UXxj0YA+BJAi++dKeuzpPQWyMBsw4mj4v83RYr8DCb1CIxqWSPp/xSXx5qVab1
4w2c+jyNsQjwR/1KNUKjhNjDAjp+TuR6tzRQYuDrIdG1XFkZxrrydYCR8TFBloK4
oi29E2p52aLUScxs0uHz8rGKS/0Vk17Fajzr1otlR029cAK6+ODaqZ9trvNTAff8
nF3P/2CSf6ODnqfQLt5dE2J+KT+gMZnWJ/agXfe8ZjDfIgsmUVEJvFmZzoa7bBF6
gRRPvOUavevwi8CxMHXhrtSPdHiYQ49ltkBTaZgUzocWhEz5Ja155kpliZi5V50T
1GTLFKJ4azT48w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:41 2024 by rpki-client on console-ams.rpki-client.org