Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/188542-d4f7-4aa2-adc7-775a05788cf5/1/WMJstA1fMT8GOO9uz1dJxUFaK6A.roa
File: WMJstA1fMT8GOO9uz1dJxUFaK6A.roa (raw, json)
Hash identifier: VtZioA+fJ7qMNr29+ov9P5qt+ksXU5gqVNfC2GZWF+Y=
Subject key identifier: 58:C2:6C:B4:0D:5F:31:3F:06:38:EF:6E:CF:57:49:C5:41:5A:2B:A0
Certificate issuer: /CN=3a6e2e7ff2c702c8ab5149feea7175991c73409c
Certificate serial: 018CC424675856455E640B4B535A66004BC6
Authority key identifier: 3A:6E:2E:7F:F2:C7:02:C8:AB:51:49:FE:EA:71:75:99:1C:73:40:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Om4uf_LHAsirUUn-6nF1mRxzQJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/188542-d4f7-4aa2-adc7-775a05788cf5/1/WMJstA1fMT8GOO9uz1dJxUFaK6A.roa
Signing time: Mon 01 Jan 2024 08:29:29 +0000
ROA not before: Mon 01 Jan 2024 08:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203877
IP address blocks: 91.226.240.0/24 maxlen: 24
62.240.3.0/24 maxlen: 24
62.240.2.0/24 maxlen: 24
62.240.1.0/24 maxlen: 24
62.240.0.0/24 maxlen: 24
62.240.6.0/24 maxlen: 24
62.240.5.0/24 maxlen: 24
62.240.8.0/22 maxlen: 22
62.240.7.0/24 maxlen: 24
62.240.17.0/24 maxlen: 24
62.240.16.0/24 maxlen: 24
62.240.13.0/24 maxlen: 24
62.240.12.0/24 maxlen: 24
62.240.15.0/24 maxlen: 24
62.240.14.0/24 maxlen: 24
62.240.20.0/24 maxlen: 24
62.240.19.0/24 maxlen: 24
62.240.18.0/24 maxlen: 24
178.22.219.0/24 maxlen: 24
178.22.218.0/24 maxlen: 24
178.22.216.0/24 maxlen: 24
178.22.217.0/24 maxlen: 24
178.22.223.0/24 maxlen: 24
178.22.222.0/24 maxlen: 24
178.22.221.0/24 maxlen: 24
178.22.220.0/24 maxlen: 24
91.226.242.0/24 maxlen: 24
91.226.241.0/24 maxlen: 24
91.226.243.0/24 maxlen: 24
85.202.112.0/24 maxlen: 24
85.202.116.0/24 maxlen: 24
85.202.118.0/24 maxlen: 24
85.202.113.0/24 maxlen: 24
85.202.115.0/24 maxlen: 24
85.202.114.0/24 maxlen: 24
85.202.120.0/24 maxlen: 24
85.202.122.0/24 maxlen: 24
85.202.121.0/24 maxlen: 24
85.202.127.0/24 maxlen: 24
85.202.126.0/24 maxlen: 24
109.94.119.0/24 maxlen: 24
109.94.120.0/22 maxlen: 22
185.102.236.0/22 maxlen: 22
185.118.169.0/24 maxlen: 24
185.118.168.0/24 maxlen: 24
185.118.170.0/24 maxlen: 24
185.118.171.0/24 maxlen: 24
109.94.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 20 Mar 2024 13:06:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:67:58:56:45:5e:64:0b:4b:53:5a:66:00:4b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a6e2e7ff2c702c8ab5149feea7175991c73409c
Validity
Not Before: Jan 1 08:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=58c26cb40d5f313f0638ef6ecf5749c5415a2ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8a:6f:3d:73:56:b3:85:2b:11:77:4e:1d:8e:
5d:71:97:2f:30:46:01:51:da:c7:86:89:b7:24:e4:
dc:00:1f:bb:75:84:9f:f2:5f:99:70:71:33:bc:57:
42:47:59:cb:e5:83:af:04:88:5d:96:09:a9:46:62:
af:ea:e9:3a:da:62:97:33:0d:a1:9b:52:1a:65:e0:
94:47:0e:83:3e:a5:e3:13:96:05:25:75:df:78:3d:
73:cd:6c:0f:d5:82:5a:c9:f7:a5:87:c7:d5:c1:1d:
5f:ca:41:d7:19:a6:c8:bb:30:c7:42:e3:0d:f2:86:
52:87:7a:96:a5:d7:bb:86:00:cc:38:a3:f1:1b:07:
11:61:28:0a:ba:6d:72:fb:de:6f:c9:76:88:93:28:
4d:45:06:c6:a4:3d:9a:c6:0c:3f:f9:3d:0c:0b:2c:
27:b1:b5:80:7e:80:09:09:ce:e2:69:9b:28:a1:57:
ef:f4:5c:ea:ba:fa:2e:d8:23:d0:0f:68:fd:47:05:
ac:48:74:af:d8:eb:e4:48:0b:ac:b0:0f:64:5f:7b:
c1:7d:7c:f9:7e:7c:51:5f:75:e6:30:1d:c1:df:a5:
a5:a0:e6:1d:a8:7e:93:fe:3e:d1:a9:f8:b0:11:dc:
b8:67:ed:8b:5b:ee:1f:3f:9f:e6:b5:ae:7f:c7:73:
77:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C2:6C:B4:0D:5F:31:3F:06:38:EF:6E:CF:57:49:C5:41:5A:2B:A0
X509v3 Authority Key Identifier:
keyid:3A:6E:2E:7F:F2:C7:02:C8:AB:51:49:FE:EA:71:75:99:1C:73:40:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Om4uf_LHAsirUUn-6nF1mRxzQJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/188542-d4f7-4aa2-adc7-775a05788cf5/1/WMJstA1fMT8GOO9uz1dJxUFaK6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/188542-d4f7-4aa2-adc7-775a05788cf5/1/Om4uf_LHAsirUUn-6nF1mRxzQJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.240.0.0/22
62.240.5.0-62.240.20.255
85.202.112.0-85.202.116.255
85.202.118.0/24
85.202.120.0-85.202.122.255
85.202.126.0/23
91.226.240.0/22
109.94.119.0-109.94.123.255
109.94.224.0/22
178.22.216.0/21
185.102.236.0/22
185.118.168.0/22
Signature Algorithm: sha256WithRSAEncryption
08:64:d6:17:c3:8e:c1:3d:7e:d1:b1:7e:c1:7b:f8:37:42:70:
60:0f:c0:66:9f:17:a5:c7:a5:59:f1:28:d9:b1:4a:b1:b9:f9:
eb:30:11:47:5f:cf:d6:10:ea:10:ce:93:e7:9b:a2:37:dd:cf:
01:a1:49:c9:45:3a:83:76:65:b1:ad:b4:d6:fd:c2:5f:bf:ad:
aa:eb:5f:c9:c6:c6:ab:bd:13:7f:d3:a5:ad:10:ab:07:02:eb:
f0:b3:e5:fc:b3:b7:d4:48:96:e8:bb:6b:95:c6:12:fd:27:10:
bb:f8:69:8d:a7:31:f7:33:ae:7e:87:0d:50:fb:06:83:ce:ad:
bc:9c:66:8f:cd:ed:c3:59:8d:63:64:fd:71:72:b6:ca:73:11:
47:ed:57:08:78:dc:39:6e:9c:72:1e:98:d6:1e:61:d5:01:73:
fd:c6:cd:bc:50:6b:9c:42:05:96:86:ea:73:20:0b:3d:59:be:
40:87:14:60:71:87:d3:45:b3:85:f3:b2:39:da:13:78:7b:61:
65:42:f9:a8:08:52:c7:d4:08:60:22:ee:16:d2:d3:bb:46:a3:
94:79:82:03:1b:17:09:f5:0a:c6:96:fc:29:71:64:9f:32:d5:
12:cc:72:cb:8a:8a:be:b0:03:e0:16:e5:1c:9b:37:10:f6:46:
ec:e2:8e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 19:24:12 2024 by rpki-client on console.sobornost.net