Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/qGZDmHrHdspzF1-vMynXI5ptslQ.roa
File: qGZDmHrHdspzF1-vMynXI5ptslQ.roa (raw, json)
Hash identifier: ktMJ1eeWGWar1m/ERm/qfQl8Bah1aP/nryDnmj1EinM=
Subject key identifier: A8:66:43:98:7A:C7:76:CA:73:17:5F:AF:33:29:D7:23:9A:6D:B2:54
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018B8FC15C8C0E7E9C31B116DBF3BA28A29F
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/qGZDmHrHdspzF1-vMynXI5ptslQ.roa
Signing time: Thu 02 Nov 2023 11:18:15 +0000
ROA not before: Thu 02 Nov 2023 11:18:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 194.156.1.0/24 maxlen: 24
2.57.148.0/24 maxlen: 24
5.133.110.0/24 maxlen: 24
45.143.140.0/24 maxlen: 24
192.144.16.0/24 maxlen: 24
194.59.12.0/24 maxlen: 24
45.91.161.0/24 maxlen: 24
45.88.83.0/24 maxlen: 24
45.88.82.0/24 maxlen: 24
87.247.143.0/24 maxlen: 24
45.138.145.0/24 maxlen: 24
109.94.217.0/24 maxlen: 24
109.94.216.0/24 maxlen: 24
109.94.219.0/24 maxlen: 24
109.94.218.0/24 maxlen: 24
45.136.248.0/24 maxlen: 24
80.242.62.0/24 maxlen: 24
80.242.61.0/24 maxlen: 24
80.242.63.0/24 maxlen: 24
45.147.244.0/24 maxlen: 24
45.147.245.0/24 maxlen: 24
45.132.207.0/24 maxlen: 24
45.147.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 13:54:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:c1:5c:8c:0e:7e:9c:31:b1:16:db:f3:ba:28:a2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Nov 2 11:18:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a86643987ac776ca73175faf3329d7239a6db254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:1c:b3:72:ab:84:e3:9a:3a:17:30:ee:4d:
ca:15:7d:dc:16:66:9f:51:1b:3b:10:43:8d:82:9a:
71:0d:6b:89:ea:84:0c:48:b7:2c:9f:27:30:4c:ec:
36:1d:87:02:8f:b5:04:74:a7:29:f6:25:59:e7:1d:
52:71:12:f3:9c:ab:72:eb:ad:58:94:24:6a:fc:ae:
78:1d:f6:8f:76:19:12:3c:29:76:6a:54:71:96:0d:
a3:28:91:bb:6f:ab:85:6f:5a:7d:01:d5:7e:12:ff:
ef:40:dd:3b:a3:be:77:bf:0f:a6:6c:75:ed:64:55:
1d:0e:98:00:5c:a9:ce:54:5b:4d:2b:39:e8:f4:64:
a5:a3:1a:d8:2c:ee:5c:4a:e6:33:20:db:6a:f3:ff:
44:35:cd:17:24:74:3a:15:31:ca:da:71:04:fd:9d:
48:2a:38:c8:f0:22:fa:8c:61:9e:ec:1b:d2:45:f6:
c8:a9:55:7c:0c:58:96:59:1b:b9:6d:27:51:f7:ec:
04:e8:98:b5:68:76:5e:b6:d7:ab:90:d1:0c:bd:50:
53:3f:14:39:a3:76:1c:3d:15:88:8a:ed:f3:3d:a6:
12:8d:36:e4:c7:d0:3d:d9:f0:a4:18:d6:b8:19:19:
43:98:c0:72:03:ae:b8:ae:40:c1:69:8b:0a:6f:0e:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:66:43:98:7A:C7:76:CA:73:17:5F:AF:33:29:D7:23:9A:6D:B2:54
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/qGZDmHrHdspzF1-vMynXI5ptslQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.148.0/24
5.133.110.0/24
45.88.82.0/23
45.91.161.0/24
45.132.207.0/24
45.136.248.0/24
45.138.145.0/24
45.143.140.0/24
45.147.244.0/23
45.147.247.0/24
80.242.61.0-80.242.63.255
87.247.143.0/24
109.94.216.0/22
192.144.16.0/24
194.59.12.0/24
194.156.1.0/24
Signature Algorithm: sha256WithRSAEncryption
79:83:0d:5d:2c:2f:56:9e:e6:bf:38:8a:ff:84:1f:a2:e7:0d:
cd:ee:a7:53:3e:fa:29:d8:9b:25:12:91:1f:9e:08:e5:e6:36:
93:cd:e0:55:68:e8:e7:06:54:4a:4a:aa:31:fd:99:6f:04:c2:
98:68:90:9c:32:19:f5:7c:6e:b5:ab:62:8b:0b:17:77:90:23:
5c:cc:df:7c:b8:5b:70:01:eb:0b:69:31:1b:27:d4:b0:7c:18:
96:15:da:4d:2d:61:ae:96:1d:c0:66:7e:eb:55:2e:b8:91:e7:
3b:2a:e6:48:ce:c0:d2:a3:54:e4:d2:ba:5f:9b:c0:85:de:5c:
84:58:a7:6f:af:1b:cc:ba:68:f0:d3:02:3a:36:47:85:72:b5:
de:35:3d:31:df:ba:21:37:fa:26:79:58:f5:de:1a:6b:02:38:
95:56:ce:b4:f9:62:c7:a5:f6:08:03:97:d9:20:5d:52:30:3e:
5e:c7:ea:16:79:5c:d5:3a:73:01:ae:1b:30:06:ee:7c:d5:80:
d9:8d:74:e2:5a:8b:e2:dd:f0:ae:3a:ef:4f:7c:87:2a:76:8e:
58:f9:de:f0:3d:a9:08:01:30:9c:53:e7:df:16:98:c2:4a:ce:
48:0f:95:ff:e3:3d:c4:86:b6:d1:f9:6b:a8:5c:72:72:78:39:
a4:5e:0b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org