Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/wZW6OKDmvFuy9yRw26cnJwT7qWE.roa
File: wZW6OKDmvFuy9yRw26cnJwT7qWE.roa (raw, json)
Hash identifier: DQe6pDsAh/IohEzP4v0mLYfNBY7ZKwa1uHjPm1pxjCI=
Subject key identifier: C1:95:BA:38:A0:E6:BC:5B:B2:F7:24:70:DB:A7:27:27:04:FB:A9:61
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018833EB47F24482D7FC6FF5B722D25A12F6
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/wZW6OKDmvFuy9yRw26cnJwT7qWE.roa
Signing time: Fri 19 May 2023 12:10:37 +0000
ROA not before: Fri 19 May 2023 12:10:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13097
IP address blocks: 185.178.14.0/24 maxlen: 24
185.178.15.0/24 maxlen: 24
185.178.13.0/24 maxlen: 24
185.178.12.0/24 maxlen: 24
185.178.12.0/22 maxlen: 22
80.70.116.0/24 maxlen: 24
80.70.117.0/24 maxlen: 24
80.70.118.0/24 maxlen: 24
80.70.116.0/22 maxlen: 22
80.70.119.0/24 maxlen: 24
84.234.100.0/22 maxlen: 22
84.234.103.0/24 maxlen: 24
84.234.101.0/24 maxlen: 24
84.234.102.0/24 maxlen: 24
84.234.100.0/24 maxlen: 24
82.163.32.0/22 maxlen: 22
82.163.35.0/24 maxlen: 24
82.163.33.0/24 maxlen: 24
82.163.34.0/24 maxlen: 24
82.163.32.0/24 maxlen: 24
213.178.192.0/20 maxlen: 20
213.178.192.0/24 maxlen: 24
213.178.199.0/24 maxlen: 24
213.178.197.0/24 maxlen: 24
213.178.198.0/24 maxlen: 24
213.178.195.0/24 maxlen: 24
213.178.196.0/24 maxlen: 24
213.178.194.0/24 maxlen: 24
213.178.193.0/24 maxlen: 24
46.229.84.0/24 maxlen: 24
46.229.85.0/24 maxlen: 24
213.178.202.0/24 maxlen: 24
213.178.203.0/24 maxlen: 24
46.229.83.0/24 maxlen: 24
46.229.81.0/24 maxlen: 24
46.229.82.0/24 maxlen: 24
46.229.80.0/20 maxlen: 20
213.178.201.0/24 maxlen: 24
213.178.205.0/24 maxlen: 24
213.178.206.0/24 maxlen: 24
213.178.204.0/24 maxlen: 24
213.178.200.0/24 maxlen: 24
46.229.80.0/24 maxlen: 24
46.229.91.0/24 maxlen: 24
46.229.90.0/24 maxlen: 24
46.229.88.0/24 maxlen: 24
46.229.89.0/24 maxlen: 24
46.229.86.0/24 maxlen: 24
46.229.87.0/24 maxlen: 24
213.178.207.0/24 maxlen: 24
46.229.95.0/24 maxlen: 24
46.229.93.0/24 maxlen: 24
46.229.94.0/24 maxlen: 24
46.229.92.0/24 maxlen: 24
185.138.37.0/24 maxlen: 24
185.138.38.0/24 maxlen: 24
185.138.36.0/24 maxlen: 24
185.138.36.0/23 maxlen: 23
185.138.36.0/22 maxlen: 22
185.138.39.0/24 maxlen: 24
185.138.38.0/23 maxlen: 23
89.189.32.0/20 maxlen: 20
89.189.38.0/24 maxlen: 24
89.189.36.0/24 maxlen: 24
89.189.37.0/24 maxlen: 24
89.189.34.0/24 maxlen: 24
89.189.35.0/24 maxlen: 24
89.189.32.0/24 maxlen: 24
89.189.33.0/24 maxlen: 24
89.189.44.0/24 maxlen: 24
89.189.43.0/24 maxlen: 24
89.189.41.0/24 maxlen: 24
89.189.42.0/24 maxlen: 24
89.189.39.0/24 maxlen: 24
89.189.40.0/24 maxlen: 24
89.189.46.0/24 maxlen: 24
89.189.47.0/24 maxlen: 24
89.189.45.0/24 maxlen: 24
89.189.56.0/21 maxlen: 21
89.189.56.0/24 maxlen: 24
89.189.58.0/24 maxlen: 24
89.189.57.0/24 maxlen: 24
89.189.62.0/24 maxlen: 24
89.189.63.0/24 maxlen: 24
89.189.60.0/24 maxlen: 24
89.189.61.0/24 maxlen: 24
89.189.59.0/24 maxlen: 24
2a01:7540::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:eb:47:f2:44:82:d7:fc:6f:f5:b7:22:d2:5a:12:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: May 19 12:10:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c195ba38a0e6bc5bb2f72470dba7272704fba961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f7:96:26:9a:0a:1a:41:fe:b0:44:6b:aa:74:
21:39:e6:11:7b:42:40:96:16:7a:d9:9d:1c:4b:7e:
49:50:81:68:49:8d:8d:15:27:97:9e:32:5f:20:0b:
02:ca:55:2e:fc:9e:3f:07:fc:ac:3a:d3:8d:a3:5c:
c3:6b:64:c2:bf:b7:24:22:dd:86:45:0f:d0:1d:b5:
a0:b6:80:f1:83:0f:c2:0c:3f:33:34:11:ea:d7:c7:
99:a6:b1:ff:9a:6d:85:1c:36:c0:cf:60:56:b8:9f:
6f:f8:35:71:4f:26:c2:fb:30:9a:9e:51:d8:1f:e9:
49:aa:68:c3:7d:ec:a8:c1:09:b8:b9:33:6c:0e:43:
4e:07:b7:72:9e:7b:02:c5:b9:8d:71:c6:7f:cf:25:
58:63:9e:83:4d:24:db:5c:63:8c:cb:5b:5c:91:5d:
a8:40:c7:11:17:13:69:d4:b2:b8:47:27:fe:9d:5b:
96:03:66:da:e1:e9:03:e8:b1:f1:61:df:e4:b6:76:
79:20:6e:d4:4d:e2:fc:f5:65:e3:44:54:35:98:96:
d7:86:3d:6b:50:ee:61:53:4e:d1:ca:43:d8:99:32:
fe:e1:e4:06:de:3f:11:15:41:06:4f:9d:02:b9:c3:
59:bc:66:91:37:9a:61:20:93:21:89:9b:6e:cf:a8:
10:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:95:BA:38:A0:E6:BC:5B:B2:F7:24:70:DB:A7:27:27:04:FB:A9:61
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/wZW6OKDmvFuy9yRw26cnJwT7qWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.80.0/20
80.70.116.0/22
82.163.32.0/22
84.234.100.0/22
89.189.32.0/20
89.189.56.0/21
185.138.36.0/22
185.178.12.0/22
213.178.192.0/20
IPv6:
2a01:7540::/32
Signature Algorithm: sha256WithRSAEncryption
0c:f0:0c:8d:21:d3:75:f0:91:88:f5:8c:1d:42:67:d3:3a:7e:
1d:1d:ca:c0:c0:63:d6:48:fe:8a:11:0f:14:aa:c4:1b:56:50:
6e:2b:50:20:b9:1f:84:fc:43:18:cb:30:01:2a:7e:b9:c4:bf:
d7:00:68:87:dd:88:02:c7:c8:7e:ed:e4:75:af:1d:45:7b:4c:
e6:51:51:5a:e2:41:7d:26:b1:09:41:e5:56:81:3a:5b:cd:41:
45:6c:76:a9:c7:62:44:1b:b2:2f:8c:c1:b5:04:03:4e:84:27:
78:0e:70:ed:14:12:fe:89:75:69:f5:f4:dc:f8:df:d0:66:f9:
f8:3b:60:6f:da:cb:ed:8c:e1:e2:47:ca:ac:c9:3d:25:93:c6:
cc:05:ff:2d:33:0b:92:8e:30:a0:b9:7f:89:55:ea:43:19:da:
08:a6:34:9f:b2:57:70:c4:09:4b:f3:d1:ea:e2:fa:63:25:6b:
5c:81:64:29:c2:7a:4e:a7:00:78:10:82:6d:f9:7c:12:1f:7d:
dd:31:13:a1:d6:3b:d0:2e:5e:18:cf:cf:3b:d8:f4:cb:75:85:
b2:11:ef:2f:ab:c5:28:10:b9:f9:60:b2:2f:dd:88:3a:f7:cd:
3d:e7:45:e9:2a:18:e7:a6:6d:ad:a9:41:ff:b8:1d:d1:0b:09:
24:2c:21:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:06 2024 by rpki-client on console-fra.rpki-client.org