Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/WLMrYKEvXPdPLLkR3HEnwLl9ytg.roa
File: WLMrYKEvXPdPLLkR3HEnwLl9ytg.roa (raw, json)
Hash identifier: 2YEGa7CNuiJU1IRHhaTML+71doljcA8I3KpNkpxpN+E=
Subject key identifier: 58:B3:2B:60:A1:2F:5C:F7:4F:2C:B9:11:DC:71:27:C0:B9:7D:CA:D8
Certificate issuer: /CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Certificate serial: 0188941DA998F9BA03E0D79FC1264333F70F
Authority key identifier: 18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/WLMrYKEvXPdPLLkR3HEnwLl9ytg.roa
Signing time: Wed 07 Jun 2023 04:29:11 +0000
ROA not before: Wed 07 Jun 2023 04:29:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41230
IP address blocks: 78.109.176.0/20 maxlen: 20
31.205.192.0/18 maxlen: 18
31.205.0.0/18 maxlen: 18
31.205.0.0/16 maxlen: 16
31.205.128.0/18 maxlen: 18
45.154.248.0/22 maxlen: 22
185.198.228.0/22 maxlen: 23
185.134.138.0/24 maxlen: 24
185.134.136.0/22 maxlen: 23
45.81.120.0/22 maxlen: 22
185.134.139.0/24 maxlen: 24
31.205.64.0/18 maxlen: 18
185.134.144.0/22 maxlen: 22
213.143.0.0/19 maxlen: 19
176.119.145.0/24 maxlen: 24
81.23.48.0/20 maxlen: 20
185.134.128.0/22 maxlen: 22
2a0e:2a40::/29 maxlen: 29
2a0e:2ac0::/29 maxlen: 29
2a0f:dd00::/29 maxlen: 29
2a10:d00::/29 maxlen: 29
2a00:1a10::/29 maxlen: 29
2a07:c300::/29 maxlen: 29
2a0e:5680::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:1d:a9:98:f9:ba:03:e0:d7:9f:c1:26:43:33:f7:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Validity
Not Before: Jun 7 04:29:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58b32b60a12f5cf74f2cb911dc7127c0b97dcad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8a:65:34:df:14:41:f2:8a:67:a9:ec:7c:f7:
84:7c:db:42:88:dd:3c:79:a3:fa:ba:8c:48:aa:4b:
38:10:f7:40:99:b5:2f:8c:cd:d2:b7:69:f5:a4:92:
65:ff:3c:43:b5:6a:c6:ab:0c:9c:f4:b9:ce:3c:54:
98:c6:df:0f:a4:82:68:4b:90:cb:ba:db:14:56:c1:
fb:13:1c:91:52:8b:53:51:4d:08:52:58:54:44:bd:
c5:34:25:27:ca:28:78:11:3c:14:81:db:80:f9:7d:
dc:17:ad:8e:92:3b:b3:c4:32:bd:b4:d2:61:16:61:
27:08:f1:ba:cb:15:99:88:1d:60:6d:d1:75:9e:12:
f0:27:47:1a:bc:e3:b8:2d:27:02:2a:68:70:55:34:
fb:2f:db:00:39:2e:a4:c9:b3:8e:95:05:75:37:2b:
a7:a1:53:22:6a:1e:20:2a:0d:53:30:0e:20:d7:c3:
a9:b4:e3:51:f2:f3:f3:64:c7:40:13:61:98:e1:01:
92:01:6e:20:ab:d2:01:eb:38:8b:cf:d0:ea:e3:c2:
8c:4b:4c:f8:dc:d3:4b:13:62:89:7b:e9:b6:3a:62:
dd:71:55:ea:8f:ab:1a:7f:7b:8a:f3:b7:97:d7:65:
63:7d:7f:3a:5c:d3:57:d1:e1:ba:4a:9f:4f:69:0d:
67:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B3:2B:60:A1:2F:5C:F7:4F:2C:B9:11:DC:71:27:C0:B9:7D:CA:D8
X509v3 Authority Key Identifier:
keyid:18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/WLMrYKEvXPdPLLkR3HEnwLl9ytg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.205.0.0/16
45.81.120.0/22
45.154.248.0/22
78.109.176.0/20
81.23.48.0/20
176.119.145.0/24
185.134.128.0/22
185.134.136.0/22
185.134.144.0/22
185.198.228.0/22
213.143.0.0/19
IPv6:
2a00:1a10::/29
2a07:c300::/29
2a0e:2a40::/29
2a0e:2ac0::/29
2a0e:5680::/29
2a0f:dd00::/29
2a10:d00::/29
Signature Algorithm: sha256WithRSAEncryption
8b:60:94:72:45:69:46:8a:be:b3:f8:b1:a0:8a:fb:36:29:bc:
97:a6:93:66:ba:3a:7d:94:b4:3c:c2:d3:a5:39:3b:91:7b:bf:
f8:ed:80:90:8e:d3:50:71:a2:49:ff:3b:03:71:7b:c0:0a:95:
90:dd:ab:f1:39:33:ca:ed:40:ce:0a:15:e3:b9:0d:9c:8d:42:
7a:1d:12:59:69:cc:61:1f:bc:bd:b0:20:1c:a7:e3:be:ce:5a:
2e:21:c5:11:65:14:fc:a7:8d:21:51:38:8d:fe:00:b2:53:6b:
36:85:04:66:8f:28:d5:1f:08:96:13:9b:6a:ce:18:51:63:8e:
5e:37:0a:38:ca:b4:e9:fe:dc:c7:77:3d:45:ed:ce:22:f3:63:
f2:8e:71:18:a9:db:9c:7b:f4:f0:83:42:c1:91:b9:5f:cb:02:
49:1a:3d:a2:04:1b:28:66:04:99:3e:0e:8d:e1:8c:f4:7d:a5:
55:d6:7e:8f:e0:59:52:bf:bb:ea:be:a7:87:6f:01:47:85:e5:
f0:1f:fe:6d:02:a8:fa:af:c2:2b:e8:b4:f4:a3:d9:ec:7a:e0:
96:87:08:39:b2:1c:9b:ac:c2:2a:13:9e:f0:4f:a0:74:a2:76:
ea:9d:c6:a9:cc:06:be:a6:cd:da:8b:44:22:06:91:4d:01:bd:
16:0c:6d:6d
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgISAYiUHamY+boD4NefwSZDM/cPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4ZTJhZWQ5YWYzYTRiZTU2MGFhMTliOTI4NDZjNWZiZTEx
YzliMTkwHhcNMjMwNjA3MDQyOTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGIzMmI2MGExMmY1Y2Y3NGYyY2I5MTFkYzcxMjdjMGI5N2RjYWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIplNN8UQfKKZ6nsfPeEfNtCiN08
eaP6uoxIqks4EPdAmbUvjM3St2n1pJJl/zxDtWrGqwyc9LnOPFSYxt8PpIJoS5DL
utsUVsH7ExyRUotTUU0IUlhURL3FNCUnyih4ETwUgduA+X3cF62OkjuzxDK9tNJh
FmEnCPG6yxWZiB1gbdF1nhLwJ0cavOO4LScCKmhwVTT7L9sAOS6kybOOlQV1Nyun
oVMiah4gKg1TMA4g18OptONR8vPzZMdAE2GY4QGSAW4gq9IB6ziLz9Dq48KMS0z4
3NNLE2KJe+m2OmLdcVXqj6saf3uK87eX12VjfX86XNNX0eG6Sp9PaQ1n6wIDAQAB
o4ICgDCCAnwwHQYDVR0OBBYEFFizK2ChL1z3Tyy5EdxxJ8C5fcrYMB8GA1UdIwQY
MBaAFBjirtmvOkvlYKoZuShGxfvhHJsZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR09LdTJhODZTLVZncWhtNUtFYkYtLUVjbXhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yMzkxZWQtZjI4NS00Mjg2LWFmMmYt
ZDI1NTFjZGRlNGFmLzEvV0xNcllLRXZYUGRQTExrUjNIRW53TGw5eXRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi8yMzkxZWQtZjI4NS00Mjg2LWFmMmYtZDI1NTFjZGRlNGFm
LzEvR09LdTJhODZTLVZncWhtNUtFYkYtLUVjbXhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGVBggrBgEFBQcBBwEB/wSBhTCBgjBHBAIAATBBAwMAH80D
BAItUXgDBAItmvgDBARObbADBARRFzADBACwd5EDBAK5hoADBAK5hogDBAK5hpAD
BAK5xuQDBAXVjwAwNwQCAAIwMQMFAyoAGhADBQMqB8MAAwUDKg4qQAMFAyoOKsAD
BQMqDlaAAwUDKg/dAAMFAyoQDQAwDQYJKoZIhvcNAQELBQADggEBAItglHJFaUaK
vrP4saCK+zYpvJemk2a6On2UtDzC06U5O5F7v/jtgJCO01Bxokn/OwNxe8AKlZDd
q/E5M8rtQM4KFeO5DZyNQnodEllpzGEfvL2wIByn477OWi4hxRFlFPynjSFROI3+
ALJTazaFBGaPKNUfCJYTm2rOGFFjjl43CjjKtOn+3Md3PUXtziLzY/KOcRip25x7
9PCDQsGRuV/LAkkaPaIEGyhmBJk+Do3hjPR9pVXWfo/gWVK/u+q+p4dvAUeF5fAf
/m0CqPqvwivotPSj2ex64JaHCDmyHJuswioTnvBPoHSiduqdxqnMBr6mzdqLRCIG
kU0BvRYMbW0=
-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:04 2024 by rpki-client on console.sobornost.net