Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/wsLrb2MrcF6JaUl5VNRlIX9RAQI.roa
File: wsLrb2MrcF6JaUl5VNRlIX9RAQI.roa (raw, json)
Hash identifier: YIcmyIoEdCZ0n6dk0LFRGKDXHXMlrnMP1w7Odi5HmHo=
Subject key identifier: C2:C2:EB:6F:63:2B:70:5E:89:69:49:79:54:D4:65:21:7F:51:01:02
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018D58B9100F8D642CC9CDB3B0BDFE471728
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/wsLrb2MrcF6JaUl5VNRlIX9RAQI.roa
Signing time: Tue 30 Jan 2024 04:55:39 +0000
ROA not before: Tue 30 Jan 2024 04:55:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203
IP address blocks: 45.94.14.0/24 maxlen: 24
45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/24 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/24 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/24 maxlen: 24
212.26.48.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/24 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 25
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 25
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 24
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 25
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.192.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1497:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 31 Jan 2024 05:11:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:58:b9:10:0f:8d:64:2c:c9:cd:b3:b0:bd:fe:47:17:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Jan 30 04:55:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2c2eb6f632b705e8969497954d465217f510102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:51:12:c0:16:6d:bf:9a:f1:00:7f:c2:da:
d1:4e:43:e2:a3:63:d7:1c:12:ed:6b:fb:a3:4d:c5:
03:2d:8e:41:b3:d5:86:0e:5d:31:2b:c4:02:32:31:
24:fc:31:4b:89:a9:fd:03:8a:f1:bb:de:7c:82:c9:
19:4f:b7:22:37:4b:9e:49:6d:3f:53:03:f6:b7:ff:
74:12:fb:46:8a:f1:35:c1:76:1b:fa:fd:08:3c:ea:
94:92:6d:1b:fd:e5:52:5d:ab:98:dc:fa:a6:e1:9f:
8c:23:c5:07:ff:e0:62:99:9a:54:90:a1:86:85:9d:
99:34:ee:69:7e:90:7c:33:80:c0:5e:7c:20:69:c8:
56:89:20:19:a3:61:c2:3d:a7:fe:64:92:06:c0:36:
50:e5:0f:91:0f:4f:3b:1a:b2:62:cc:37:4b:72:b6:
e7:92:05:4b:21:78:c1:9e:00:48:eb:8b:cb:e9:ce:
b7:fc:9a:af:ff:36:26:1f:0e:51:15:4b:dd:fe:b8:
20:89:b3:3e:07:15:2a:29:37:2f:a2:1b:86:6c:2b:
8d:c5:b2:81:ab:85:63:a3:f0:9a:b7:49:c7:8b:35:
f9:12:94:c4:42:d3:99:8e:00:b0:5d:2a:73:c4:91:
c2:ab:2c:10:34:ba:0f:c2:27:bf:08:fb:28:05:2a:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C2:EB:6F:63:2B:70:5E:89:69:49:79:54:D4:65:21:7F:51:01:02
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/wsLrb2MrcF6JaUl5VNRlIX9RAQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/47
2001:1490:103::/48
2001:1490:106::/47
2001:1490:110::/47
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
1f:20:9b:c5:64:f9:9f:19:dd:15:dd:54:f6:44:22:2f:eb:81:
17:e3:ff:da:8d:e4:7c:16:78:01:50:8f:a3:99:97:de:21:b3:
ae:54:9d:d3:e1:57:b6:cd:98:75:db:fd:4a:c3:b1:66:18:ee:
a4:62:b4:10:0d:5b:52:76:83:d5:bc:1b:ad:e3:e6:3a:db:b3:
a2:a5:80:51:c3:3b:61:1c:3f:bb:10:71:be:a0:55:1f:2a:37:
f8:51:fc:56:3e:08:d9:d3:15:89:9a:16:b1:c8:98:fd:2f:1c:
d6:53:77:05:b9:07:c0:58:fd:0a:18:36:73:94:ad:2e:e5:ac:
ce:50:b4:86:33:39:86:be:fe:08:68:c2:9c:50:50:a9:85:a2:
67:94:4a:ef:b0:26:7f:f8:db:c7:9b:e1:e5:b8:16:a1:f6:1f:
0c:8a:c2:78:0a:40:18:39:47:cd:6c:9a:94:91:44:dc:cc:8a:
e2:6e:e2:f3:dd:9d:29:70:4b:df:41:30:a4:88:91:0c:b0:8b:
6f:d7:55:f8:12:d6:9a:12:7d:70:2a:1c:6a:f4:f7:8e:63:e0:
e7:06:73:f5:bc:d3:fb:1d:f2:6b:f3:ed:d4:9c:f5:d5:57:bc:
58:ff:c8:27:03:6d:1e:ab:2b:04:e5:14:c4:df:ab:d3:36:e5:
8e:ac:96:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org