Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WaNAdkwz5Zo_KFoFV5ypethkB38.roa
File: WaNAdkwz5Zo_KFoFV5ypethkB38.roa (raw, json)
Hash identifier: wKogQPD8gp9nQIhc7EcHeCLjeh/WPGjPUf+lef3KGm8=
Subject key identifier: 59:A3:40:76:4C:33:E5:9A:3F:28:5A:05:57:9C:A9:7A:D8:64:07:7F
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EEFB787FF359C810D6C304D3A247A9B0B
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WaNAdkwz5Zo_KFoFV5ypethkB38.roa
Signing time: Thu 18 Apr 2024 05:39:26 +0000
ROA not before: Thu 18 Apr 2024 05:39:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24810
IP address blocks: 81.22.200.0/24 maxlen: 24
81.22.201.0/24 maxlen: 24
81.22.202.0/24 maxlen: 24
81.23.144.0/24 maxlen: 24
81.23.145.0/24 maxlen: 24
81.23.147.0/24 maxlen: 24
81.23.148.0/24 maxlen: 24
81.23.149.0/24 maxlen: 24
81.23.156.0/24 maxlen: 24
81.23.158.0/24 maxlen: 24
81.23.159.0/24 maxlen: 24
87.117.160.0/24 maxlen: 24
87.117.161.0/24 maxlen: 24
87.117.162.0/24 maxlen: 24
87.117.164.0/24 maxlen: 24
87.117.165.0/24 maxlen: 24
87.117.166.0/24 maxlen: 24
87.117.167.0/24 maxlen: 24
87.117.168.0/24 maxlen: 24
87.117.170.0/24 maxlen: 24
87.117.171.0/24 maxlen: 24
87.117.177.0/24 maxlen: 24
87.117.183.0/24 maxlen: 24
87.117.184.0/24 maxlen: 24
87.117.188.0/24 maxlen: 24
87.117.190.0/24 maxlen: 24
89.248.112.0/24 maxlen: 24
89.248.122.0/24 maxlen: 24
89.248.123.0/24 maxlen: 24
89.248.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 05:58:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:b7:87:ff:35:9c:81:0d:6c:30:4d:3a:24:7a:9b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 18 05:39:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59a340764c33e59a3f285a05579ca97ad864077f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:10:64:dd:8d:46:18:0f:93:a5:e0:5b:7c:db:
83:2e:f2:3f:a0:38:b3:3d:94:8e:45:01:be:8d:5f:
dc:ce:e1:e1:7c:f5:51:04:dc:68:c0:51:c7:ee:d6:
f3:db:5b:22:a9:eb:77:9d:63:37:7e:1f:de:37:64:
1e:65:35:88:dc:30:e3:db:95:f7:9f:e2:9b:03:aa:
8d:35:ed:86:ba:97:91:2f:65:6e:28:fd:63:18:e8:
e4:25:ff:ef:b1:d6:d8:91:a1:05:9a:f3:1b:78:dc:
4e:0e:e6:72:71:76:97:d4:26:d4:1d:56:60:71:60:
ad:2a:6b:a2:cd:be:d7:a9:5d:d6:2d:25:8a:a5:b8:
93:5a:79:5b:3e:e3:24:e0:99:fc:bd:cc:d7:41:bb:
a7:6a:a1:78:7e:cb:bd:b0:f7:c1:b2:7f:93:31:dd:
1a:c8:cd:48:3d:f8:b8:c5:b2:84:b8:80:a7:7a:41:
ab:91:59:c1:28:a2:20:80:a7:cc:63:b6:17:51:08:
66:96:cc:f7:53:ba:7f:ed:ed:28:99:15:d1:f9:b0:
e4:19:2c:49:5a:b7:02:e0:cb:6a:36:87:e0:e6:c8:
bb:14:78:9f:5d:e3:f7:a4:0c:32:e0:c4:d3:8b:14:
8e:9a:82:cd:e6:c4:23:59:5e:db:d8:56:11:b7:49:
65:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A3:40:76:4C:33:E5:9A:3F:28:5A:05:57:9C:A9:7A:D8:64:07:7F
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WaNAdkwz5Zo_KFoFV5ypethkB38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.200.0-81.22.202.255
81.23.144.0/23
81.23.147.0-81.23.149.255
81.23.156.0/24
81.23.158.0/23
87.117.160.0-87.117.162.255
87.117.164.0-87.117.168.255
87.117.170.0/23
87.117.177.0/24
87.117.183.0-87.117.184.255
87.117.188.0/24
87.117.190.0/24
89.248.112.0/24
89.248.122.0-89.248.124.255
Signature Algorithm: sha256WithRSAEncryption
0e:25:7d:ef:b0:2b:12:a7:0a:a9:d8:4f:0c:fc:b4:9e:ba:94:
fa:af:a4:79:46:3a:cb:ef:58:63:57:97:a2:59:63:29:61:3f:
1e:e9:ed:b9:0c:24:bf:e7:95:89:28:d4:5e:71:d7:a4:91:c1:
f4:9a:4a:3d:1f:cd:fe:1f:e5:32:9e:dc:d5:37:9c:e1:bb:d5:
5e:bc:2f:40:e3:44:6a:f4:34:9c:bd:ac:71:49:2b:a3:88:c2:
07:fc:3c:5c:46:ce:69:c9:26:a5:7f:63:7e:7a:bf:af:e4:83:
27:48:08:cf:07:20:82:50:af:31:2e:eb:82:86:ae:12:f1:f4:
3d:b8:55:ad:c9:e4:69:24:e6:72:7c:2e:bd:1c:f9:af:69:de:
ec:26:8b:fb:06:26:d6:6f:33:9a:ee:25:c2:0c:83:74:0f:6f:
37:20:ad:a8:37:ed:81:0a:0e:d1:c8:a2:f7:98:9e:b3:80:90:
52:d6:2d:5e:43:d5:46:99:60:83:20:16:d7:a3:4b:1c:5a:01:
a4:2e:53:cd:06:ef:71:5b:ef:0e:9d:28:0a:6f:07:ed:99:04:
0f:e8:c2:56:dd:db:a6:82:fd:6f:68:8b:05:cd:bd:72:2b:d0:
ae:41:f8:3a:53:37:fa:e3:2b:0f:62:c3:bf:65:51:24:c1:33:
ef:fb:cf:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:55:12 2025 by rpki-client