Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/_qasQLpIHuy4P47R_NWtDKwTwZ8.roa
File: _qasQLpIHuy4P47R_NWtDKwTwZ8.roa (raw, json)
Hash identifier: MOMJ9YInfNwuEEHLFTZR2xvcQ+d4bgvv/Wpo1eQ1GIY=
Subject key identifier: FE:A6:AC:40:BA:48:1E:EC:B8:3F:8E:D1:FC:D5:AD:0C:AC:13:C1:9F
Certificate issuer: /CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Certificate serial: 018BA41F4A321FDE69B2DAAE03A53713E4C7
Authority key identifier: C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/_qasQLpIHuy4P47R_NWtDKwTwZ8.roa
Signing time: Mon 06 Nov 2023 10:13:15 +0000
ROA not before: Mon 06 Nov 2023 10:13:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5410
IP address blocks: 31.32.0.0/13 maxlen: 24
213.44.0.0/16 maxlen: 24
62.201.128.0/19 maxlen: 24
80.214.248.0/21 maxlen: 24
195.36.128.0/17 maxlen: 24
80.215.0.0/16 maxlen: 24
212.194.0.0/15 maxlen: 24
62.34.0.0/15 maxlen: 24
176.128.0.0/10 maxlen: 24
80.214.192.0/19 maxlen: 24
194.158.96.0/19 maxlen: 24
5.48.0.0/14 maxlen: 24
80.214.0.0/17 maxlen: 24
164.177.0.0/17 maxlen: 24
194.117.192.0/20 maxlen: 24
89.80.0.0/12 maxlen: 24
94.238.0.0/15 maxlen: 24
128.78.0.0/15 maxlen: 24
80.214.128.0/18 maxlen: 24
2001:860::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Nov 2023 14:21:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:1f:4a:32:1f:de:69:b2:da:ae:03:a5:37:13:e4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Validity
Not Before: Nov 6 10:13:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fea6ac40ba481eecb83f8ed1fcd5ad0cac13c19f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d1:a1:2c:bb:cf:a5:fd:0a:cf:c0:c7:39:85:
0c:cf:8a:6e:95:20:f7:02:5b:13:47:16:d5:6e:75:
79:52:8c:86:99:b4:ef:65:64:81:d6:ff:89:be:73:
5d:e2:34:46:28:87:f9:af:ce:93:61:c5:8f:bd:6c:
5b:5a:30:43:bb:b8:92:20:0c:e0:fb:7f:a9:b5:c6:
9f:90:88:a0:18:aa:70:ea:19:25:40:9d:ca:76:1d:
c6:8c:e8:80:ad:91:78:b9:3d:f5:e2:a5:7e:aa:28:
12:20:64:ad:b5:d1:95:24:c7:ed:7e:b3:ff:4d:a6:
00:ee:e6:4f:dc:77:04:31:7c:03:fe:27:af:84:08:
75:04:de:da:52:1d:32:b7:91:de:b3:0f:56:db:c3:
13:26:fc:75:fc:c6:32:51:a4:5f:0c:d6:be:6c:45:
ae:0c:5a:30:fb:1e:1f:e1:81:c3:a0:61:bb:e8:d8:
6e:f8:11:15:95:e9:9e:d3:03:96:0a:12:7c:b5:32:
b0:af:77:33:b1:71:9a:78:ba:58:27:e9:1f:72:64:
25:eb:53:2a:28:e5:2a:5c:a9:73:2b:99:1b:3c:22:
c4:36:96:0d:14:aa:83:b5:28:93:0a:16:da:36:13:
f9:46:f7:7a:c7:da:36:51:a6:44:c7:30:52:16:79:
72:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A6:AC:40:BA:48:1E:EC:B8:3F:8E:D1:FC:D5:AD:0C:AC:13:C1:9F
X509v3 Authority Key Identifier:
keyid:C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/_qasQLpIHuy4P47R_NWtDKwTwZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/x8JN6ZEB-v33S8opP9bZUGDVCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.48.0.0/14
31.32.0.0/13
62.34.0.0/15
62.201.128.0/19
80.214.0.0-80.214.223.255
80.214.248.0-80.215.255.255
89.80.0.0/12
94.238.0.0/15
128.78.0.0/15
164.177.0.0/17
176.128.0.0/10
194.117.192.0/20
194.158.96.0/19
195.36.128.0/17
212.194.0.0/15
213.44.0.0/16
IPv6:
2001:860::/29
Signature Algorithm: sha256WithRSAEncryption
d2:ca:9d:c6:6a:af:67:36:d1:05:b0:d5:4e:ac:8f:92:e8:47:
c3:f7:e2:5c:f7:0c:e4:dd:13:52:6a:9c:c6:b7:71:86:e1:26:
55:69:9a:1d:f1:0c:f2:f7:1f:73:28:b8:40:ff:f1:f6:db:2c:
3e:98:64:3b:17:66:5d:91:77:d0:b5:90:89:0d:bc:48:9b:6a:
be:21:99:5f:1f:8b:9e:8c:a4:52:83:6d:80:fd:e6:a8:67:d7:
5d:56:7b:af:a8:9d:82:59:78:f4:07:26:1b:af:9a:5e:72:cd:
91:34:f8:0c:26:74:6c:e3:1d:d8:50:be:1c:08:c9:02:ac:2f:
ca:ad:aa:68:07:db:b7:26:7e:72:8a:de:6c:44:23:01:f5:d4:
06:ba:d8:98:ec:25:a2:37:7d:e6:35:70:cf:48:5d:d1:6c:39:
fa:fc:1d:4e:4b:d3:69:83:13:db:09:58:33:24:11:4a:27:f7:
77:8d:22:b9:a2:03:60:60:46:7e:ec:dc:dc:fa:6f:21:c5:31:
5f:53:22:5d:34:8d:3d:ee:6c:33:f7:a5:84:35:09:1a:1f:3f:
61:de:41:57:92:92:1b:71:df:ed:6f:3e:ed:ad:87:29:34:ce:
ee:e3:3b:f0:68:cd:f3:cd:84:54:c7:6f:54:e8:9f:90:90:2a:
b7:c3:c9:a5
-----BEGIN CERTIFICATE-----
MIIFbDCCBFSgAwIBAgISAYukH0oyH95pstquA6U3E+THMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3YzI0ZGU5OTEwMWZhZmRmNzRiY2EyOTNmZDZkOTUwNjBk
NTBhNjMwHhcNMjMxMTA2MTAxMzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWE2YWM0MGJhNDgxZWVjYjgzZjhlZDFmY2Q1YWQwY2FjMTNjMTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdGhLLvPpf0Kz8DHOYUMz4pulSD3
AlsTRxbVbnV5UoyGmbTvZWSB1v+JvnNd4jRGKIf5r86TYcWPvWxbWjBDu7iSIAzg
+3+ptcafkIigGKpw6hklQJ3Kdh3GjOiArZF4uT314qV+qigSIGSttdGVJMftfrP/
TaYA7uZP3HcEMXwD/ievhAh1BN7aUh0yt5Hesw9W28MTJvx1/MYyUaRfDNa+bEWu
DFow+x4f4YHDoGG76Nhu+BEVleme0wOWChJ8tTKwr3czsXGaeLpYJ+kfcmQl61Mq
KOUqXKlzK5kbPCLENpYNFKqDtSiTChbaNhP5Rvd6x9o2UaZExzBSFnlyXwIDAQAB
o4ICeDCCAnQwHQYDVR0OBBYEFP6mrEC6SB7suD+O0fzVrQysE8GfMB8GA1UdIwQY
MBaAFMfCTemRAfr990vKKT/W2VBg1QpjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDhKTjZaRUItdjMzUzhvcFA5YlpVR0RWQ21NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9lYjAxM2YtNTc3NC00ZTA2LWE1ZDQt
ZWQ1ZDZjZThkN2U4LzEvX3Fhc1FMcElIdXk0UDQ3Ul9OV3RES3dUd1o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9lYjAxM2YtNTc3NC00ZTA2LWE1ZDQtZWQ1ZDZjZThkN2U4
LzEveDhKTjZaRUItdjMzUzhvcFA5YlpVR0RWQ21NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwawQCAAEwZQMDAgUwAwMD
HyADAwE+IgMEBT7JgDALAwMBUNYDBAVQ1sAwCwMEA1DW+AMDA1DQAwMEWVADAwFe
7gMDAYBOAwQHpLEAAwMGsIADBATCdcADBAXCnmADBAfDJIADAwHUwgMDANUsMA0E
AgACMAcDBQMgAQhgMA0GCSqGSIb3DQEBCwUAA4IBAQDSyp3Gaq9nNtEFsNVOrI+S
6EfD9+Jc9wzk3RNSapzGt3GG4SZVaZod8Qzy9x9zKLhA//H22yw+mGQ7F2ZdkXfQ
tZCJDbxIm2q+IZlfH4uejKRSg22A/eaoZ9ddVnuvqJ2CWXj0ByYbr5pecs2RNPgM
JnRs4x3YUL4cCMkCrC/KrapoB9u3Jn5yit5sRCMB9dQGutiY7CWiN33mNXDPSF3R
bDn6/B1OS9NpgxPbCVgzJBFKJ/d3jSK5ogNgYEZ+7Nzc+m8hxTFfUyJdNI097mwz
96WENQkaHz9h3kFXkpIbcd/tbz7trYcpNM7u4zvwaM3zzYRUx29U6J+QkCq3w8ml
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:00 2024 by rpki-client on console-ams.rpki-client.org