Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/wbxAb3ZBOSeM96J5dqkjYVgblQU.roa
File: wbxAb3ZBOSeM96J5dqkjYVgblQU.roa (raw, json)
Hash identifier: uL/gnO6O14P2aFjHluLGTq/azMKb4ssgo6j+ZMWD8lk=
Subject key identifier: C1:BC:40:6F:76:41:39:27:8C:F7:A2:79:76:A9:23:61:58:1B:95:05
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 0189F2D3918932A891AD255928D2862B45E1
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/wbxAb3ZBOSeM96J5dqkjYVgblQU.roa
Signing time: Mon 14 Aug 2023 06:54:58 +0000
ROA not before: Mon 14 Aug 2023 06:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 45.144.88.0/22 maxlen: 24
87.239.254.0/24 maxlen: 32
45.149.28.0/22 maxlen: 24
89.44.205.0/24 maxlen: 32
185.147.140.0/22 maxlen: 32
91.228.216.0/24 maxlen: 24
185.36.254.0/24 maxlen: 32
185.217.64.0/22 maxlen: 22
185.166.84.0/24 maxlen: 32
86.105.183.0/24 maxlen: 32
185.188.61.0/24 maxlen: 24
94.46.206.0/24 maxlen: 32
185.184.228.0/24 maxlen: 32
185.201.188.0/24 maxlen: 24
89.40.24.0/24 maxlen: 32
185.152.248.0/22 maxlen: 32
5.154.174.0/24 maxlen: 24
80.246.30.0/24 maxlen: 32
45.156.224.0/22 maxlen: 32
185.153.151.0/24 maxlen: 32
188.119.154.0/24 maxlen: 32
185.160.44.0/22 maxlen: 32
185.96.162.0/24 maxlen: 32
45.95.24.0/22 maxlen: 32
185.152.36.0/22 maxlen: 32
89.35.249.0/24 maxlen: 32
185.108.104.0/24 maxlen: 32
185.108.105.0/24 maxlen: 32
195.47.194.0/24 maxlen: 32
2a06:4a00::/29 maxlen: 32
2a05:28c0::/29 maxlen: 32
2a06:5700::/29 maxlen: 32
2a01:4740::/32 maxlen: 32
2a06:46c0::/29 maxlen: 32
2a06:5000::/29 maxlen: 32
2a05:f4c0::/29 maxlen: 29
2a06:3040::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Aug 2023 04:59:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f2:d3:91:89:32:a8:91:ad:25:59:28:d2:86:2b:45:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Aug 14 06:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1bc406f764139278cf7a27976a92361581b9505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:95:bd:a0:8d:16:a6:c1:32:db:11:0b:25:df:
ec:44:69:c0:85:b2:a7:d6:98:bf:85:6f:e3:f5:8a:
25:de:d5:96:38:51:25:6e:83:5f:68:3b:c5:44:de:
96:0a:7f:d9:eb:af:dd:eb:0b:29:f9:a7:4b:63:1d:
6a:08:7b:f5:09:71:9e:7e:49:be:ed:ec:ad:91:bd:
db:08:fd:91:eb:ee:25:c9:80:23:e7:a5:fb:5a:db:
02:f0:e5:c4:e7:9c:dc:f3:0e:7a:1e:44:d9:c4:fb:
cf:57:00:7b:9d:b5:c2:df:cb:af:6b:9e:cd:e0:8d:
d3:b8:ce:05:c6:65:74:3a:af:18:3d:c1:c6:1e:02:
f6:4e:59:ab:4b:e0:52:d6:d7:bd:21:82:36:a0:17:
3d:08:00:28:f0:85:7d:16:ae:45:51:2b:2f:7f:25:
ef:d9:d1:0f:52:02:51:a3:79:b0:dd:33:c4:e4:b2:
bc:26:f4:36:dc:ed:aa:a1:10:05:c5:e4:2f:8c:83:
9e:40:1d:f3:ed:59:33:23:82:cd:83:e7:97:ac:f9:
6d:7f:ca:5c:b6:d6:42:ef:71:bd:ab:84:8d:36:8c:
6a:e1:9f:ad:f2:27:0c:9a:45:8d:e6:34:d4:09:37:
f6:a0:d6:06:b4:42:a3:b9:f8:42:e0:38:a9:c0:61:
bf:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BC:40:6F:76:41:39:27:8C:F7:A2:79:76:A9:23:61:58:1B:95:05
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/wbxAb3ZBOSeM96J5dqkjYVgblQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.174.0/24
45.95.24.0/22
45.144.88.0/22
45.149.28.0/22
45.156.224.0/22
80.246.30.0/24
86.105.183.0/24
87.239.254.0/24
89.35.249.0/24
89.40.24.0/24
89.44.205.0/24
91.228.216.0/24
94.46.206.0/24
185.36.254.0/24
185.96.162.0/24
185.108.104.0/23
185.147.140.0/22
185.152.36.0/22
185.152.248.0/22
185.153.151.0/24
185.160.44.0/22
185.166.84.0/24
185.184.228.0/24
185.188.61.0/24
185.201.188.0/24
185.217.64.0/22
188.119.154.0/24
195.47.194.0/24
IPv6:
2a01:4740::/32
2a05:28c0::/29
2a05:f4c0::/29
2a06:3040::/29
2a06:46c0::/29
2a06:4a00::/29
2a06:5000::/29
2a06:5700::/29
Signature Algorithm: sha256WithRSAEncryption
c2:6a:3a:12:e1:26:52:1e:67:91:57:1b:ee:0e:ec:75:a8:cc:
4b:6a:2f:42:33:f0:37:0f:13:b4:c1:63:77:e3:f7:cc:d2:6e:
c1:e5:51:a5:0a:35:cc:52:9d:1d:48:b9:d9:1b:7a:64:9a:4c:
b7:f6:d3:39:06:61:93:23:61:bd:b3:68:56:88:71:d2:b5:0d:
ec:57:2e:53:17:bf:47:be:05:92:d2:63:c2:25:12:19:38:8e:
b0:51:6e:28:e4:c0:a8:ee:69:b0:80:01:6f:7b:37:04:ec:10:
cb:3b:2e:b7:e7:8e:dd:47:fc:bc:17:b7:1f:72:1d:c5:c4:05:
8e:3a:ba:b0:aa:23:d1:73:1d:3b:7c:84:62:d6:7c:d4:dc:e7:
eb:65:1b:75:f7:ca:f6:c4:b6:54:48:7d:c4:d6:5c:c7:27:cd:
78:78:0b:21:08:16:92:a8:05:b6:b1:29:39:5d:e3:19:49:d2:
93:41:4d:da:40:85:06:34:06:06:09:f1:b0:8f:d8:59:07:80:
30:31:aa:f1:79:cd:65:bc:09:a6:dc:0c:68:e1:ec:9c:a4:27:
19:02:aa:f0:07:1b:bf:ac:c3:51:ef:dd:9f:40:53:51:b7:e8:
ae:15:18:fe:bc:9b:f0:1c:76:fe:b6:69:30:f9:fc:2c:4c:28:
11:21:b3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:47 2024 by rpki-client on console-ams.rpki-client.org