Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/WlKT9efZLJR0Wg_F6JCxrhoV1gg.roa
File: WlKT9efZLJR0Wg_F6JCxrhoV1gg.roa (raw, json)
Hash identifier: Bxgbatjp1jHJV9Fva4I19MVDJxu3Jpmd1dYFRa6+HHY=
Subject key identifier: 5A:52:93:F5:E7:D9:2C:94:74:5A:0F:C5:E8:90:B1:AE:1A:15:D6:08
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018DEF1CF2CC5BA434897B6B6A9B4F00709D
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/WlKT9efZLJR0Wg_F6JCxrhoV1gg.roa
Signing time: Wed 28 Feb 2024 09:47:48 +0000
ROA not before: Wed 28 Feb 2024 09:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41436
IP address blocks: 5.180.180.0/24 maxlen: 24
5.180.181.0/24 maxlen: 24
5.180.182.0/24 maxlen: 24
5.180.183.0/24 maxlen: 24
45.91.168.0/24 maxlen: 24
45.91.169.0/24 maxlen: 24
63.250.56.0/24 maxlen: 24
63.250.57.0/24 maxlen: 24
83.229.82.0/24 maxlen: 24
83.229.83.0/24 maxlen: 24
103.13.210.0/24 maxlen: 24
103.45.247.0/24 maxlen: 24
185.181.8.0/24 maxlen: 24
185.220.204.0/24 maxlen: 24
185.220.205.0/24 maxlen: 24
185.227.110.0/24 maxlen: 24
185.247.117.0/24 maxlen: 24
193.168.173.0/24 maxlen: 24
193.168.174.0/24 maxlen: 24
194.37.81.0/24 maxlen: 24
194.146.38.0/24 maxlen: 24
194.146.39.0/24 maxlen: 24
195.238.121.0/24 maxlen: 24
2a06:c5c0:200::/48 maxlen: 48
2a07:3b80:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 12:20:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:1c:f2:cc:5b:a4:34:89:7b:6b:6a:9b:4f:00:70:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Feb 28 09:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a5293f5e7d92c94745a0fc5e890b1ae1a15d608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:0d:7e:71:ff:80:0a:99:ff:f8:3a:d7:2d:
bc:7f:18:f5:3a:e2:7d:db:4c:07:b8:d2:c3:51:65:
32:a6:e1:b9:00:d1:b4:e0:31:a0:e5:37:b1:c3:1c:
f4:46:10:32:b3:cc:58:10:b4:86:2c:05:5a:9e:7e:
d5:8c:fc:bf:4c:32:94:37:37:c0:bb:bd:e1:dc:96:
3e:89:aa:be:df:d5:a2:0a:e0:10:54:8f:b0:12:2c:
44:21:1e:f8:27:94:68:42:df:21:ee:73:61:a0:6f:
28:06:2d:54:ad:77:5f:00:de:c6:96:ad:cc:f0:43:
f9:59:77:eb:ac:c6:bc:83:4c:44:4e:21:2a:c4:e5:
8f:1c:41:bf:20:f9:af:07:e0:fb:b4:39:4e:24:ae:
05:8b:ae:14:3e:4a:92:de:dc:f8:e0:89:b7:15:9c:
a4:76:bc:81:db:c9:5e:fa:1e:a1:83:34:a6:e1:c1:
93:54:aa:70:22:f9:82:3a:66:48:9a:57:b4:6d:aa:
65:ba:97:b0:8a:2a:11:27:c9:09:90:a5:28:42:2b:
d6:2b:58:7e:6c:67:3f:6b:5c:e2:e7:19:cc:f8:cf:
33:0e:1c:c3:6c:6d:88:b4:d9:a3:82:e8:64:5d:30:
94:48:66:37:6e:eb:7c:e2:df:95:9c:62:58:36:72:
61:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:52:93:F5:E7:D9:2C:94:74:5A:0F:C5:E8:90:B1:AE:1A:15:D6:08
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/WlKT9efZLJR0Wg_F6JCxrhoV1gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.180.0/22
45.91.168.0/23
63.250.56.0/23
83.229.82.0/23
103.13.210.0/24
103.45.247.0/24
185.181.8.0/24
185.220.204.0/23
185.227.110.0/24
185.247.117.0/24
193.168.173.0-193.168.174.255
194.37.81.0/24
194.146.38.0/23
195.238.121.0/24
IPv6:
2a06:c5c0:200::/48
2a07:3b80:3::/48
Signature Algorithm: sha256WithRSAEncryption
20:88:33:01:4c:33:44:41:f5:1d:52:89:31:08:20:35:25:57:
28:73:54:19:4a:5d:4d:3d:10:eb:91:e3:e3:02:1e:4b:ee:2b:
fa:44:05:7a:02:fb:b1:a8:e6:78:b1:65:52:dd:d1:a5:b9:2b:
a2:70:6d:19:57:aa:10:fb:ab:1d:72:d6:3b:f4:78:8d:39:01:
89:d2:95:9c:9b:2b:3b:d5:a0:95:69:1b:ae:fd:c3:0c:4d:7f:
e6:8d:b6:56:d7:45:eb:d3:09:cb:80:dd:1f:0e:b0:62:f5:d6:
99:ca:70:36:04:50:e1:e8:f7:65:d1:08:71:3d:54:48:91:f8:
1b:97:76:1d:ab:99:f9:33:b4:38:1c:65:1a:d9:79:88:de:ca:
3a:42:0f:57:9d:94:45:b2:f0:16:52:a4:1b:af:61:4b:a6:c7:
6e:98:8f:f1:fc:6e:43:44:a6:92:81:58:e5:95:7e:4e:20:24:
fe:f0:c1:fd:86:71:b7:5c:8c:7b:8a:dc:92:0d:bb:f2:1d:d9:
1d:10:9c:95:fd:86:d9:d8:82:bd:bb:7a:5f:a7:44:3a:a4:13:
fa:e0:4b:72:f3:f5:1a:fc:81:81:49:1e:16:07:47:e0:29:61:
33:30:83:93:bc:4e:d0:ff:02:35:b4:44:72:63:7a:f9:b9:19:
d6:28:d7:f3
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAY3vHPLMW6Q0iXtraptPAHCdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwMjI4MDk0NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTUyOTNmNWU3ZDkyYzk0NzQ1YTBmYzVlODkwYjFhZTFhMTVkNjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjANfnH/gAqZ//g61y28fxj1OuJ9
20wHuNLDUWUypuG5ANG04DGg5Texwxz0RhAys8xYELSGLAVann7VjPy/TDKUNzfA
u73h3JY+iaq+39WiCuAQVI+wEixEIR74J5RoQt8h7nNhoG8oBi1UrXdfAN7Glq3M
8EP5WXfrrMa8g0xETiEqxOWPHEG/IPmvB+D7tDlOJK4Fi64UPkqS3tz44Im3FZyk
dryB28le+h6hgzSm4cGTVKpwIvmCOmZImle0baplupewiioRJ8kJkKUoQivWK1h+
bGc/a1zi5xnM+M8zDhzDbG2ItNmjguhkXTCUSGY3but84t+VnGJYNnJh5wIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFFpSk/Xn2SyUdFoPxeiQsa4aFdYIMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvV2xLVDllZlpMSlIwV2dfRjZKQ3hyaG9WMWdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MGIEAgABMFwDBAIFtLQD
BAEtW6gDBAE/+jgDBAFT5VIDBABnDdIDBABnLfcDBAC5tQgDBAG53MwDBAC5424D
BAC593UwDAMEAMGorQMEAMGorgMEAMIlUQMEAcKSJgMEAMPueTAYBAIAAjASAwcA
KgbFwAIAAwcAKgc7gAADMA0GCSqGSIb3DQEBCwUAA4IBAQAgiDMBTDNEQfUdUokx
CCA1JVcoc1QZSl1NPRDrkePjAh5L7iv6RAV6AvuxqOZ4sWVS3dGluSuicG0ZV6oQ
+6sdctY79HiNOQGJ0pWcmys71aCVaRuu/cMMTX/mjbZW10Xr0wnLgN0fDrBi9daZ
ynA2BFDh6Pdl0QhxPVRIkfgbl3Ydq5n5M7Q4HGUa2XmI3so6Qg9XnZRFsvAWUqQb
r2FLpsdumI/x/G5DRKaSgVjllX5OICT+8MH9hnG3XIx7itySDbvyHdkdEJyV/YbZ
2IK9u3pfp0Q6pBP64Ety8/Ua/IGBSR4WB0fgKWEzMIOTvE7Q/wI1tERyY3r5uRnW
KNfz
-----END CERTIFICATE-----
Generated at Wed Apr 10 16:53:40 2024 by rpki-client on console-fra.rpki-client.org