Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/QqSOcSM4Ht1jhWozY9vSrjmS_AU.roa
File: QqSOcSM4Ht1jhWozY9vSrjmS_AU.roa (raw, json)
Hash identifier: NnC58qOisEtI1wndg80IdE46vKKMyrBbM4ejIbdk13g=
Subject key identifier: 42:A4:8E:71:23:38:1E:DD:63:85:6A:33:63:DB:D2:AE:39:92:FC:05
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 0189DDB5A9901330582C9DCF61BA4AFC4040
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/QqSOcSM4Ht1jhWozY9vSrjmS_AU.roa
Signing time: Thu 10 Aug 2023 04:30:17 +0000
ROA not before: Thu 10 Aug 2023 04:30:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31313
IP address blocks: 213.177.16.0/21 maxlen: 32
213.177.24.0/21 maxlen: 32
93.113.29.0/24 maxlen: 32
203.25.143.0/24 maxlen: 24
89.42.116.0/23 maxlen: 32
193.151.28.0/22 maxlen: 32
89.35.192.0/24 maxlen: 32
91.235.4.0/23 maxlen: 23
213.177.0.0/21 maxlen: 32
86.105.108.0/22 maxlen: 32
213.177.8.0/21 maxlen: 32
193.169.21.0/24 maxlen: 32
89.41.56.0/23 maxlen: 32
89.43.190.0/23 maxlen: 32
195.242.244.0/22 maxlen: 32
89.200.246.0/23 maxlen: 32
89.200.247.0/24 maxlen: 32
86.105.216.0/22 maxlen: 32
2a00:5dc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Wed 16 Aug 2023 06:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dd:b5:a9:90:13:30:58:2c:9d:cf:61:ba:4a:fc:40:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Aug 10 04:30:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42a48e7123381edd63856a3363dbd2ae3992fc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fc:be:c5:a0:84:0c:fc:9d:06:6c:04:5c:a6:
46:c6:f2:9c:41:8c:39:76:7d:d0:da:9c:d9:56:e1:
4c:0c:62:a7:bf:5a:b7:88:54:48:6f:05:27:5b:b0:
86:9e:29:b5:30:ce:6c:77:2f:e7:67:52:55:29:2a:
01:86:59:c9:91:94:37:5b:1d:c2:11:c9:0a:8e:ac:
1f:7d:6e:17:c3:e4:8e:4f:b1:cf:24:07:80:cf:5b:
b3:e2:72:87:c9:a0:98:6e:34:56:3d:96:dc:79:bd:
de:8e:a0:34:32:7c:2c:5f:3c:ce:3b:b2:c5:d6:a0:
71:fb:14:c6:6e:a2:bc:da:b5:18:e6:bc:86:2d:ec:
a5:d6:e2:59:fd:65:3a:85:2a:0a:c4:64:5a:65:a4:
0b:68:3b:ee:75:d7:29:b0:f8:e2:e3:eb:7d:05:64:
e0:6e:5b:0c:82:d9:56:7e:4b:7b:fc:ee:a4:e3:fc:
28:d4:37:4e:08:47:05:f0:13:9f:e5:e7:73:8e:b7:
c2:d7:79:91:08:da:db:e2:08:2e:0e:68:07:4f:42:
4b:ec:28:a6:eb:24:a3:d6:b9:5e:06:46:a1:83:ce:
d5:f7:76:fe:1e:8d:e5:ca:ff:6b:a8:ec:22:64:e1:
27:cd:3a:4b:1f:87:2e:eb:2f:cd:4d:28:6f:fd:3b:
f4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A4:8E:71:23:38:1E:DD:63:85:6A:33:63:DB:D2:AE:39:92:FC:05
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/QqSOcSM4Ht1jhWozY9vSrjmS_AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.108.0/22
86.105.216.0/22
89.35.192.0/24
89.41.56.0/23
89.42.116.0/23
89.43.190.0/23
89.200.246.0/23
91.235.4.0/23
93.113.29.0/24
193.151.28.0/22
193.169.21.0/24
195.242.244.0/22
203.25.143.0/24
213.177.0.0/19
IPv6:
2a00:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
12:6d:7a:82:bd:42:56:69:4b:e2:64:e9:13:78:35:98:5d:50:
97:64:4c:46:46:0a:94:c4:f0:da:9f:6e:18:a7:27:38:b8:90:
5b:8e:10:3c:da:8f:90:8e:09:99:b1:ff:8e:31:4c:4c:a3:87:
48:fe:ab:1c:df:36:36:46:0d:ac:c0:e4:86:0b:7f:2a:0c:b2:
9b:05:8a:e2:68:83:73:a0:b5:54:87:1e:0e:a6:af:5e:86:32:
13:9d:23:58:54:d1:d7:4c:9c:75:eb:31:aa:2d:21:bd:54:51:
6e:fd:70:df:ec:09:0b:5d:81:79:b8:0b:50:a6:a3:12:d3:47:
b7:8f:16:82:c3:cb:0e:e3:78:d4:d6:18:79:bf:7a:f2:8e:fa:
50:f2:a9:d7:97:bb:31:be:48:cb:3b:36:47:39:ee:b4:31:76:
97:75:56:26:b6:32:82:a4:e2:03:0f:27:d0:c5:fe:a0:cb:d8:
ef:0a:88:0e:f9:af:b5:25:c5:f5:ae:a5:9e:0e:72:a5:de:3f:
d8:fe:5f:ad:20:61:31:3e:a4:52:0a:b2:c7:af:1a:2b:e0:5a:
ff:0d:c6:b8:4d:5e:c9:a7:ad:cd:c5:3c:22:0a:20:ae:86:43:
8b:f3:5b:d5:04:64:bf:47:3a:3f:06:47:c3:c8:b0:ad:ec:c6:
2e:cf:da:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org