Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/WgJb78vQXzU-gWpo6DEU4a6P_uk.roa
File: WgJb78vQXzU-gWpo6DEU4a6P_uk.roa (raw, json)
Hash identifier: rid0tqh7bmI+bahuFtcm9eWrV3axt0pVUvVBZL+yjSk=
Subject key identifier: 5A:02:5B:EF:CB:D0:5F:35:3E:81:6A:68:E8:31:14:E1:AE:8F:FE:E9
Certificate issuer: /CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Certificate serial: 0191FED923DF696E3984E59B0BD1FF69EA09
Authority key identifier: C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/WgJb78vQXzU-gWpo6DEU4a6P_uk.roa
Signing time: Tue 17 Sep 2024 07:18:48 +0000
ROA not before: Tue 17 Sep 2024 07:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 188.190.0.0/24 maxlen: 24
188.190.1.0/24 maxlen: 24
188.190.2.0/24 maxlen: 24
188.190.6.0/24 maxlen: 24
188.190.7.0/24 maxlen: 24
188.190.8.0/24 maxlen: 24
188.190.9.0/24 maxlen: 24
188.190.11.0/24 maxlen: 24
188.190.12.0/24 maxlen: 24
188.190.13.0/24 maxlen: 24
188.190.14.0/24 maxlen: 24
188.190.15.0/24 maxlen: 24
188.190.16.0/24 maxlen: 24
188.190.17.0/24 maxlen: 24
188.190.18.0/24 maxlen: 24
188.190.19.0/24 maxlen: 24
188.190.20.0/24 maxlen: 24
188.190.21.0/24 maxlen: 24
188.190.22.0/24 maxlen: 24
188.190.23.0/24 maxlen: 24
188.190.24.0/24 maxlen: 24
188.190.25.0/24 maxlen: 24
188.190.26.0/24 maxlen: 24
188.190.27.0/24 maxlen: 24
188.190.28.0/24 maxlen: 24
188.190.29.0/24 maxlen: 24
188.190.30.0/24 maxlen: 24
188.190.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 08:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fe:d9:23:df:69:6e:39:84:e5:9b:0b:d1:ff:69:ea:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Validity
Not Before: Sep 17 07:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a025befcbd05f353e816a68e83114e1ae8ffee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bc:9a:4c:5c:5c:19:d8:18:95:1a:12:da:30:
94:aa:cb:c3:76:83:42:ab:2b:cf:d7:e0:3e:dc:33:
2a:ea:cc:c0:06:18:96:d0:7d:b1:70:1a:d4:6b:62:
5f:39:63:d7:ab:83:6d:a2:a5:77:7e:60:59:44:ac:
da:42:fb:cb:9f:7e:7f:ad:38:fb:9a:6a:9f:47:3b:
c6:70:70:af:f6:07:46:af:d8:69:e2:b7:7c:e1:5c:
d6:27:e5:78:76:9d:54:95:95:4b:dc:55:ee:72:6d:
40:0d:4f:0f:51:48:f4:a3:8b:e8:d5:85:c3:b3:ae:
12:c4:f5:7b:69:97:ec:3e:54:34:12:e0:74:21:e3:
8f:12:32:0b:5b:2e:d0:fb:b6:d2:be:e0:41:fb:7c:
86:07:6e:98:ef:4b:9c:85:fb:c9:0f:67:c0:3c:e5:
61:0f:be:5b:c7:9a:09:fa:1b:c5:2f:93:c7:e7:7e:
ff:b2:f0:8c:a1:af:c7:f8:e4:37:44:35:8c:14:4f:
c6:c9:eb:bf:0d:a7:94:5a:b7:c9:58:a8:98:d5:60:
c6:9f:c4:25:82:96:c6:0d:8d:c1:89:32:0a:c5:49:
4f:15:60:41:de:31:04:09:f2:56:bd:37:c7:aa:4a:
62:5a:89:c4:e2:7f:b4:85:6c:70:0c:61:c1:6b:1e:
0e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:02:5B:EF:CB:D0:5F:35:3E:81:6A:68:E8:31:14:E1:AE:8F:FE:E9
X509v3 Authority Key Identifier:
keyid:C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/WgJb78vQXzU-gWpo6DEU4a6P_uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.0.0-188.190.2.255
188.190.6.0-188.190.9.255
188.190.11.0-188.190.31.255
Signature Algorithm: sha256WithRSAEncryption
60:ef:f6:9f:4c:a1:3e:f0:ec:96:70:40:81:96:f9:b7:c8:41:
aa:32:0d:dd:75:6d:7e:d3:f6:2f:76:21:62:2d:9c:c4:86:14:
3e:04:ca:04:a6:f2:79:10:11:08:03:e0:75:92:4f:ce:32:85:
11:df:fb:70:5c:c6:79:67:87:bb:7f:d0:ba:01:5a:29:50:87:
3f:05:86:2c:a9:47:a7:0f:39:e6:e3:e5:e3:94:2d:a1:5c:fe:
9d:7b:5b:10:84:27:da:d8:75:4d:92:49:57:f3:d1:02:e1:9e:
f4:e5:33:e0:e0:af:a4:65:f0:8f:b1:96:d7:be:92:4e:11:b6:
39:73:10:5f:a7:ad:04:e5:5d:7f:4f:0e:93:53:13:90:a7:b0:
aa:80:4a:cb:92:74:ff:54:cf:59:ee:4a:df:88:3c:ce:eb:af:
62:3f:bf:3c:80:d8:21:bc:18:a8:f0:68:f1:de:e7:2e:f5:58:
a3:b3:94:e3:e0:c1:e2:62:ff:27:62:14:07:b5:75:1b:0c:c3:
12:e8:ff:36:68:25:09:7c:14:46:d9:5c:86:6d:ee:f8:ed:f0:
c7:b7:2c:1f:98:13:12:b9:d7:86:10:3b:48:cc:48:59:2e:9e:
44:b3:17:0f:a4:01:61:63:0b:28:fd:95:80:a5:e6:54:54:1e:
ad:52:2a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:31:59 2025 by rpki-client