Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/qLTXDOnbfdcSkW-OZ3QgAyualyM.roa
File: qLTXDOnbfdcSkW-OZ3QgAyualyM.roa (raw, json)
Hash identifier: 3LRLJn8pIGGxSrh8MnKBUEpTWufiW3q6EyatF0liUW8=
Subject key identifier: A8:B4:D7:0C:E9:DB:7D:D7:12:91:6F:8E:67:74:20:03:2B:9A:97:23
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 0186CCBB0118A9ED384335B7B508BB3577C1
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/qLTXDOnbfdcSkW-OZ3QgAyualyM.roa
Signing time: Fri 10 Mar 2023 18:14:12 +0000
ROA not before: Fri 10 Mar 2023 18:14:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43927
IP address blocks: 77.81.240.0/21 maxlen: 24
185.250.105.0/24 maxlen: 24
185.250.104.0/24 maxlen: 24
185.250.107.0/24 maxlen: 24
185.250.106.0/24 maxlen: 24
93.113.174.0/24 maxlen: 24
185.199.172.0/24 maxlen: 24
185.199.174.0/24 maxlen: 24
185.199.173.0/24 maxlen: 24
185.199.175.0/24 maxlen: 24
188.240.47.0/24 maxlen: 24
92.114.98.0/24 maxlen: 24
46.102.240.0/21 maxlen: 24
91.188.224.0/24 maxlen: 24
91.188.226.0/24 maxlen: 24
91.188.225.0/24 maxlen: 24
91.188.227.0/24 maxlen: 24
89.33.197.0/24 maxlen: 24
185.105.32.0/22 maxlen: 22
185.125.109.0/24 maxlen: 24
185.125.108.0/24 maxlen: 24
185.125.110.0/23 maxlen: 24
89.45.248.0/21 maxlen: 24
89.32.144.0/21 maxlen: 21
188.241.112.0/21 maxlen: 24
2a06:cd40:3::/48 maxlen: 48
2a06:cd40:cafe::/48 maxlen: 48
2a06:cd40:2::/48 maxlen: 48
2a06:cd40:300::/48 maxlen: 64
2a06:cd40:200::/48 maxlen: 48
2a06:cd40:100::/48 maxlen: 48
2a06:cd40:400::/48 maxlen: 48
2a06:cd40:4::/48 maxlen: 48
2a06:cd40:caff::/48 maxlen: 48
2a06:cd40:1::/48 maxlen: 48
2a06:cd40:301::/48 maxlen: 64
2a06:cd40:101::/48 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:bb:01:18:a9:ed:38:43:35:b7:b5:08:bb:35:77:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Mar 10 18:14:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8b4d70ce9db7dd712916f8e677420032b9a9723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b3:d9:2f:60:e7:b1:51:b7:92:76:1f:33:47:
49:7d:6a:a0:cb:d4:07:da:13:81:f0:df:e7:df:ed:
bf:ad:89:ff:48:1d:5e:11:58:90:84:66:f6:2b:70:
58:d9:40:61:8b:35:f1:4d:11:47:77:1d:f9:7d:13:
5c:04:9a:1e:2f:9b:d8:e8:ee:eb:de:cb:dc:6c:06:
d8:68:bc:a2:30:4a:1f:da:c2:ac:79:f3:0e:db:da:
37:63:e7:94:aa:05:35:97:18:35:87:a8:c0:72:c3:
c6:4a:05:ac:bb:f9:70:19:5b:df:9a:6f:de:d0:98:
d0:79:60:41:38:7e:43:4d:43:19:e5:ba:af:86:c3:
dc:6e:13:88:cf:fe:e5:4f:0c:ee:cf:b4:c1:dd:aa:
c1:3e:52:56:66:f8:12:9c:bb:b4:9f:b5:45:55:d4:
11:45:bd:3b:e2:3b:58:23:12:e2:a4:fb:b3:9a:90:
fc:8f:15:05:74:85:45:c1:7a:6e:4a:38:8b:65:29:
f6:c6:8f:e8:f3:19:3b:68:c5:17:0a:e6:6a:e2:ba:
ed:87:58:14:57:3e:8e:f0:d6:fb:30:5d:01:74:ce:
3a:7c:f8:10:74:c7:09:4f:bc:ac:76:52:f8:e8:70:
3a:e0:71:fc:4a:41:ed:41:74:af:2b:16:2f:0c:bb:
76:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B4:D7:0C:E9:DB:7D:D7:12:91:6F:8E:67:74:20:03:2B:9A:97:23
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/qLTXDOnbfdcSkW-OZ3QgAyualyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.240.0/21
77.81.240.0/21
89.32.144.0/21
89.33.197.0/24
89.45.248.0/21
91.188.224.0/22
92.114.98.0/24
93.113.174.0/24
185.105.32.0/22
185.125.108.0/22
185.199.172.0/22
185.250.104.0/22
188.240.47.0/24
188.241.112.0/21
IPv6:
2a06:cd40:1::-2a06:cd40:4:ffff:ffff:ffff:ffff:ffff
2a06:cd40:100::/47
2a06:cd40:200::/48
2a06:cd40:300::/47
2a06:cd40:400::/48
2a06:cd40:cafe::/47
Signature Algorithm: sha256WithRSAEncryption
9d:cc:7d:d6:cd:e2:f2:fa:8b:fa:88:92:fe:08:36:be:bd:44:
c0:a3:05:7d:e8:a7:0b:62:89:5a:99:f0:6a:c4:cc:42:18:ff:
54:81:dd:e6:53:ac:2b:ab:17:6a:4d:0f:ad:5d:39:13:d5:04:
72:8c:cf:bf:ac:58:f1:61:b1:54:3c:09:4e:26:f6:b0:68:3a:
a9:3e:a2:51:8c:25:54:55:0a:a0:6a:c1:ed:34:8c:e4:c0:1e:
3f:01:10:5a:f3:f9:fb:f3:39:6e:2c:4b:12:e1:fa:d5:a4:08:
d5:5c:1a:1f:49:08:8b:82:92:5c:2b:f9:07:a1:35:95:20:bf:
00:4f:6c:2a:b0:dd:60:b5:e9:6f:32:62:cb:c2:91:42:43:78:
84:2b:9f:16:37:3d:c7:94:47:0b:ee:53:3b:f1:8e:c3:c0:12:
de:20:6d:13:3d:c6:d6:aa:99:cc:ff:14:db:4d:26:c7:bc:47:
ed:98:91:9d:16:9a:59:bd:db:00:80:c7:6f:77:35:e6:28:19:
0f:92:10:42:20:9d:d9:9e:69:32:e6:e4:47:f7:43:fd:09:3c:
77:ab:1d:48:ca:c1:56:9d:68:f1:ee:39:b9:de:02:35:93:e4:
7e:93:28:c7:e4:9e:79:bb:2b:6f:b7:bd:61:b8:4f:6b:e0:a1:
17:2d:9a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 14:41:25 2023 by rpki-client on console-ams.rpki-client.org