Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/Qipnb4xxWyhItWUwDmcuqS9y8-Y.roa
File: Qipnb4xxWyhItWUwDmcuqS9y8-Y.roa (raw, json)
Hash identifier: 2idnjEVuWmAMR/qqibn9YPagl4oDGBTEM0XT4iNvq+U=
Subject key identifier: 42:2A:67:6F:8C:71:5B:28:48:B5:65:30:0E:67:2E:A9:2F:72:F3:E6
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0191DD48EAB20AB243750BE82A0168D5FE4B
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/Qipnb4xxWyhItWUwDmcuqS9y8-Y.roa
Signing time: Tue 10 Sep 2024 18:53:49 +0000
ROA not before: Tue 10 Sep 2024 18:53:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.156.0/22 maxlen: 22
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 11 Sep 2024 13:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:48:ea:b2:0a:b2:43:75:0b:e8:2a:01:68:d5:fe:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Sep 10 18:53:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=422a676f8c715b2848b565300e672ea92f72f3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:8f:0c:98:8a:a7:c7:df:90:7f:b4:d0:1f:
33:76:cd:68:ba:3e:b0:be:e0:fc:1c:b3:09:7e:35:
20:f1:02:34:5c:fe:e9:b6:a2:f7:a8:ed:6f:e5:3c:
e1:ff:de:77:14:20:23:03:e1:88:93:f3:8d:2a:86:
64:93:dd:73:ce:7e:c9:23:7b:54:a3:ef:2c:f6:af:
73:a3:f6:8e:ab:e9:46:6c:95:79:17:06:e8:9e:42:
be:35:49:2c:00:db:c5:67:dc:38:d7:ca:1c:dd:7a:
19:8d:f3:ec:d8:15:82:ab:19:b9:0e:9f:0f:f3:da:
8a:94:b7:da:93:e8:e0:69:d2:31:76:f0:a4:c1:c9:
54:7f:00:e1:a8:0e:27:92:66:25:f8:43:2d:a9:70:
2c:98:2f:e1:8a:c5:fa:f5:a9:68:6e:29:5f:9b:e3:
86:e9:4e:ce:8c:1c:57:e0:f6:f5:0c:a1:59:5d:56:
f0:cb:40:f1:dc:02:6f:17:01:da:c0:b2:2f:c5:ab:
3c:ac:e1:0c:ab:4f:8b:2f:66:20:d9:67:c7:25:84:
85:2b:68:b8:90:a7:52:55:86:2c:74:7a:b2:15:27:
36:5f:1b:1f:d2:01:38:40:11:7d:69:60:6c:ce:82:
b1:ef:bb:03:e0:53:91:33:7e:6b:da:d7:8f:de:a6:
02:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:2A:67:6F:8C:71:5B:28:48:B5:65:30:0E:67:2E:A9:2F:72:F3:E6
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/Qipnb4xxWyhItWUwDmcuqS9y8-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.156.0/22
217.27.4.0/24
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
30:5d:57:bf:23:78:b1:cc:bd:75:87:85:3c:68:94:70:7f:e6:
3d:76:38:8f:54:b2:6d:bd:47:69:3b:8a:a6:09:44:db:23:0b:
8a:60:a6:46:cc:ab:84:41:3d:de:e6:4b:e9:0d:e1:8f:5d:68:
05:ea:ce:5d:69:56:47:12:d0:8f:74:f5:1c:e0:c5:83:94:53:
4b:73:9a:17:3b:f6:53:28:25:72:56:fc:0c:d9:6a:50:be:69:
ec:39:7b:87:0f:16:7e:a5:2a:e0:06:32:74:d0:f3:9e:6e:05:
10:dd:eb:f0:62:db:3c:48:95:68:0c:85:6b:1e:81:b1:47:fc:
42:b2:4b:b3:5b:89:83:66:45:59:0e:cf:5b:01:01:1c:3e:ea:
b8:ed:fd:92:5c:27:99:b6:03:59:ce:d0:2a:11:d5:e8:24:96:
21:f2:32:6c:e4:ee:7c:8a:1a:9a:e8:d6:07:a1:b1:fd:49:e0:
c7:cf:33:28:58:47:3b:37:70:d4:26:83:ee:fb:29:e1:7a:15:
00:c5:62:ef:18:4b:eb:7e:b4:b2:17:05:8c:aa:dc:50:7d:3c:
f5:74:20:f8:6c:5f:da:44:f9:8c:37:3f:6d:da:71:87:26:ef:
bf:87:a0:fc:15:b2:1e:ff:5f:09:5a:2b:f4:5e:b3:3d:7e:94:
b4:e1:61:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 15:34:14 2024 by rpki-client on console-fra.rpki-client.org