Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jQWMFp4bvUx5t1Jvads_OgII3kk.roa
File: jQWMFp4bvUx5t1Jvads_OgII3kk.roa (raw, json)
Hash identifier: 2rI3v1QFOaNI7MT5t0kGtL0YwIutJLcAJuDwyXKQnjk=
Subject key identifier: 8D:05:8C:16:9E:1B:BD:4C:79:B7:52:6F:69:DB:3F:3A:02:08:DE:49
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 018B76E5882EAAF355849FCA0DE3FF0203B7
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jQWMFp4bvUx5t1Jvads_OgII3kk.roa
Signing time: Sat 28 Oct 2023 15:27:15 +0000
ROA not before: Sat 28 Oct 2023 15:27:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
5.181.198.0/24 maxlen: 24
5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.223.0/24 maxlen: 24
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
212.95.128.0/24 maxlen: 24
212.95.129.0/24 maxlen: 24
212.95.130.0/24 maxlen: 24
212.95.131.0/24 maxlen: 24
212.95.132.0/24 maxlen: 24
212.95.138.0/24 maxlen: 24
212.95.139.0/24 maxlen: 24
212.95.135.0/24 maxlen: 24
212.95.137.0/24 maxlen: 24
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
212.95.141.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
212.95.140.0/24 maxlen: 24
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:76:e5:88:2e:aa:f3:55:84:9f:ca:0d:e3:ff:02:03:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Oct 28 15:27:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d058c169e1bbd4c79b7526f69db3f3a0208de49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:5a:73:3c:0f:f7:aa:ea:56:ea:b6:ce:e7:51:
a4:dd:fb:8c:d8:e9:c6:f0:39:2b:76:29:0e:26:c7:
07:37:83:d8:9e:50:cb:06:1c:6c:b0:5c:eb:e3:a0:
a5:66:d7:e7:d8:b8:0d:a3:07:47:48:c4:c6:45:42:
a0:58:57:98:00:bc:13:db:f2:45:74:0b:ef:90:da:
05:66:35:8b:3a:c1:0b:b4:07:f0:5c:8f:7e:1b:10:
ac:e2:29:b3:ac:a7:c0:ac:6d:7e:33:a1:eb:2e:55:
a6:dd:42:56:49:ae:61:7d:86:88:4b:ef:6d:02:2b:
ff:ed:8f:97:00:e0:f2:ae:b0:4c:49:8e:6f:1a:c4:
8d:2b:0f:24:1c:20:d8:35:e2:58:98:af:10:b9:14:
93:2a:fb:36:01:ce:81:74:5e:8b:dc:59:f0:cd:08:
eb:80:77:4a:01:da:07:08:2d:1c:43:64:f1:9b:14:
f0:ca:6f:fd:0d:04:43:2b:dc:69:93:de:de:f8:9f:
5d:bf:32:7b:dc:71:37:08:65:07:07:a5:9f:cc:b0:
2e:2c:ba:ea:26:3d:21:a6:dd:df:9a:83:9f:8e:6a:
b1:2b:b5:29:23:bc:ad:58:65:af:65:f6:00:26:a1:
5d:24:a1:3a:d7:60:1a:a4:92:2f:9c:dd:67:d5:c4:
83:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:05:8C:16:9E:1B:BD:4C:79:B7:52:6F:69:DB:3F:3A:02:08:DE:49
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jQWMFp4bvUx5t1Jvads_OgII3kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0-5.181.198.255
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
212.95.128.0-212.95.132.255
212.95.135.0/24
212.95.137.0-212.95.141.255
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
32:70:b6:d1:5f:8d:34:29:d3:a5:89:6f:ec:53:3d:d3:d0:59:
06:4b:55:c0:c5:bf:0b:08:aa:5b:c2:dd:4f:61:96:2a:01:c0:
03:9f:88:b2:62:73:a3:42:e8:ce:5e:9f:30:ee:2d:8d:5e:cf:
c6:c4:03:3e:73:0f:82:c3:8c:fc:ee:4a:ca:87:ce:e5:e3:3e:
d1:31:26:fa:ad:58:1b:7e:83:6a:6f:b6:77:73:e8:8c:cf:65:
93:8c:cc:56:9d:45:01:28:e2:eb:a9:4d:bb:99:e7:cd:c7:1f:
ea:26:4e:f6:ac:de:e2:b8:8a:f4:b0:f6:23:f7:17:a6:16:70:
0d:a1:07:a2:cf:91:35:d4:13:29:b8:1d:dd:b5:64:7f:6a:ce:
3e:6b:ea:de:d5:67:33:1f:08:41:8b:b8:3c:f0:b0:cd:e4:0d:
c1:2a:d0:41:59:7f:27:04:11:89:53:50:03:ce:d7:f5:5e:2c:
60:35:2c:10:c5:41:6e:ab:23:c5:40:81:4e:e1:dc:7c:ef:2c:
08:2d:26:59:8c:af:19:d6:38:6b:db:de:a6:2a:da:0c:c1:06:
86:3a:07:5a:84:0a:8a:6a:8b:54:56:7b:8d:7c:31:e7:b0:71:
83:30:3f:d2:bc:d6:dc:3b:e9:7b:f0:47:4e:df:d3:69:d7:a9:
ad:86:de:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 14 08:29:42 2023 by rpki-client on console-fra.rpki-client.org