Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_Qsmkow8bFmfiQiQTTcfxnqXkak.roa
File: _Qsmkow8bFmfiQiQTTcfxnqXkak.roa (raw, json)
Hash identifier: cfDVMRZa8DmQaWWqxwik8/zTJYQ4P17RmAdw9HmUAFE=
Subject key identifier: FD:0B:26:92:8C:3C:6C:59:9F:89:08:90:4D:37:1F:C6:7A:97:91:A9
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018E094AD02A19EA9F9AD85BD8D39A1644F0
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_Qsmkow8bFmfiQiQTTcfxnqXkak.roa
Signing time: Mon 04 Mar 2024 11:48:01 +0000
ROA not before: Mon 04 Mar 2024 11:48:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44486
IP address blocks: 5.180.252.0/23 maxlen: 23
5.180.254.0/23 maxlen: 23
5.253.244.0/24 maxlen: 24
45.67.136.0/24 maxlen: 24
45.67.138.0/24 maxlen: 24
45.84.199.0/24 maxlen: 24
45.91.251.0/24 maxlen: 24
45.131.109.0/24 maxlen: 24
45.134.108.0/23 maxlen: 23
45.134.108.0/24 maxlen: 24
45.134.109.0/24 maxlen: 24
45.137.69.0/24 maxlen: 24
45.137.71.0/24 maxlen: 24
45.145.224.0/23 maxlen: 23
46.243.76.0/22 maxlen: 24
185.132.54.0/24 maxlen: 24
185.132.55.0/24 maxlen: 24
212.87.214.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 12 Apr 2024 10:24:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:4a:d0:2a:19:ea:9f:9a:d8:5b:d8:d3:9a:16:44:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 4 11:48:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd0b26928c3c6c599f8908904d371fc67a9791a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:1f:ab:c7:d6:8e:04:a3:33:4e:64:b6:b7:
6b:b4:2c:bb:33:2a:c2:8f:e0:5e:cc:65:da:2d:3e:
ed:2f:42:dc:4e:3a:9a:ce:9b:58:97:7a:41:78:9f:
fd:71:f5:49:90:c3:f5:2a:61:29:6a:27:1d:5a:f3:
ad:27:5f:1c:5f:23:d0:1d:2f:19:32:47:0f:fe:9d:
a1:d9:87:e5:46:f8:84:d2:6e:35:27:e7:cd:c9:bd:
0c:1b:54:45:2d:3e:ee:4c:61:cb:e7:7c:c4:b0:6d:
14:4c:cc:d0:ee:dc:a8:ee:22:26:88:b1:8b:c6:9b:
51:71:22:6a:75:9c:02:ca:f7:16:25:e9:2b:44:96:
4a:b9:73:44:c5:c4:65:d6:95:32:37:ff:25:bc:d6:
2c:a5:6c:6a:83:9d:99:22:4b:c0:1c:65:bc:88:ba:
12:29:c5:ad:a1:39:d7:c3:b7:7c:f8:99:87:b8:2d:
7f:21:1b:7c:51:ee:a2:13:62:db:44:01:ee:3c:a6:
b3:73:54:20:78:77:40:8f:37:95:41:2d:f8:e9:c6:
c1:c3:2f:4b:58:e0:9c:c6:41:14:10:47:e7:d4:01:
53:6c:2e:1f:85:f4:54:cd:17:dd:ec:ac:8f:eb:48:
7e:95:7e:fa:74:09:42:06:47:7c:51:c8:1b:3a:84:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0B:26:92:8C:3C:6C:59:9F:89:08:90:4D:37:1F:C6:7A:97:91:A9
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_Qsmkow8bFmfiQiQTTcfxnqXkak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.253.244.0/24
45.67.136.0/24
45.67.138.0/24
45.84.199.0/24
45.91.251.0/24
45.131.109.0/24
45.134.108.0/23
45.137.69.0/24
45.137.71.0/24
45.145.224.0/23
46.243.76.0/22
185.132.54.0/23
212.87.214.0/23
Signature Algorithm: sha256WithRSAEncryption
57:f1:b3:34:44:d3:53:4b:95:37:f0:e1:8e:0c:4a:7a:c0:e8:
0d:4b:3e:ef:b4:76:39:16:7a:09:4d:98:47:40:21:39:8a:64:
f9:81:b0:a9:9e:db:49:ee:75:64:ff:3e:45:76:e9:14:d4:71:
87:1b:14:7a:1c:a8:3f:12:43:0b:6d:ff:50:de:98:e6:a5:1f:
ac:83:48:13:b9:d2:f9:6c:bb:86:39:df:b2:be:a9:e1:7b:dd:
81:10:00:91:08:46:00:04:60:66:ad:a5:19:43:2d:08:48:16:
97:16:47:4f:f7:bb:a7:72:f1:2a:bc:6a:6f:22:da:ab:a4:7a:
89:92:5f:63:04:37:fa:f5:f3:b5:b8:9e:15:1b:ad:6f:91:af:
6e:cd:f6:d0:b5:86:e4:30:dc:92:50:44:6c:50:57:6b:e3:a7:
c3:4d:4f:fa:5e:9e:fb:50:7b:63:40:73:ee:92:b5:55:0e:b1:
44:ca:0b:33:f9:fa:36:e3:8a:59:cc:7f:89:f0:96:d8:ff:67:
17:b8:94:b9:2a:e3:a0:91:c8:ad:f1:eb:9e:7d:bf:25:a4:b9:
b7:7a:d4:8b:0a:5b:2a:51:be:29:df:e2:15:2c:71:a8:48:17:
a0:93:1d:e2:43:03:61:3b:cd:79:ab:fc:49:5e:f6:9b:68:f1:
73:a9:5c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 14:50:22 2024 by rpki-client on console-ams.rpki-client.org