Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Qqj_7fbn4Jr9v1Kd_GRLmJ6sEGE.roa
File: Qqj_7fbn4Jr9v1Kd_GRLmJ6sEGE.roa (raw, json)
Hash identifier: 7/lhEWjr7v/5iYUAFBnRHKWGzxUTv/538L+SpBZPfmg=
Subject key identifier: 42:A8:FF:ED:F6:E7:E0:9A:FD:BF:52:9D:FC:64:4B:98:9E:AC:10:61
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 0186E9F0566D454E2E89EBB42FC4E8DB7991
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Qqj_7fbn4Jr9v1Kd_GRLmJ6sEGE.roa
Signing time: Thu 16 Mar 2023 10:21:27 +0000
ROA not before: Thu 16 Mar 2023 10:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12716
IP address blocks: 151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
37.63.96.0/22 maxlen: 24
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
151.251.240.0/24 maxlen: 24
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.243.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
37.63.20.0/22 maxlen: 24
62.204.154.0/23 maxlen: 23
151.251.121.0/24 maxlen: 24
85.118.64.0/22 maxlen: 22
85.118.71.0/24 maxlen: 24
85.118.68.0/23 maxlen: 24
213.226.17.0/24 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.74.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
213.226.19.0/24 maxlen: 24
185.151.156.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.80.0/22 maxlen: 22
213.226.36.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.63.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e9:f0:56:6d:45:4e:2e:89:eb:b4:2f:c4:e8:db:79:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Mar 16 10:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42a8ffedf6e7e09afdbf529dfc644b989eac1061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:27:60:ba:60:76:b3:1b:52:9b:18:bf:b2:8f:
a1:84:c7:92:ab:bf:20:3c:de:eb:5b:b9:aa:45:98:
01:76:56:f5:b4:a6:43:51:56:80:2d:eb:81:a5:6e:
32:44:a8:5f:b4:f1:b8:de:ff:06:af:f2:49:1c:c4:
89:d8:eb:db:0f:42:60:84:aa:0d:cc:b5:26:e6:6c:
f1:3d:7f:4f:76:f0:27:b7:de:85:49:49:a5:2c:ba:
59:68:da:2a:1e:55:dd:26:15:b3:d5:05:fc:55:cd:
f2:38:54:f3:06:fb:72:98:fb:04:fc:f6:3d:13:f6:
8b:58:2f:c7:ac:da:63:49:17:01:f0:02:86:53:db:
b4:39:90:0b:01:72:cd:14:de:1b:75:72:a6:e7:dd:
d7:86:cb:e5:00:6a:91:e5:e2:a3:ba:2e:e8:5c:4f:
33:59:87:f7:03:14:cb:84:9f:ed:03:ae:d5:c7:0a:
64:2f:e7:cb:dd:6f:3b:3b:5d:55:e5:61:c5:7a:c5:
8a:cb:f2:a6:94:9e:85:dc:10:24:08:60:65:61:d7:
c9:f0:88:2a:67:11:b2:c0:bf:bd:f2:f1:a3:2c:79:
58:43:02:28:d4:8b:f3:e2:c8:10:64:3d:a7:25:7c:
cb:55:f9:20:87:d1:94:b7:6d:ce:31:fa:20:fc:6b:
1e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:FF:ED:F6:E7:E0:9A:FD:BF:52:9D:FC:64:4B:98:9E:AC:10:61
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Qqj_7fbn4Jr9v1Kd_GRLmJ6sEGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0-37.63.23.255
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.238.0-151.251.255.255
185.151.156.0/22
185.224.160.0/23
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
213.226.63.0/24
Signature Algorithm: sha256WithRSAEncryption
56:b9:14:e0:74:67:48:0d:56:c4:d7:9e:38:52:0c:07:9c:7b:
48:2d:55:4d:c5:73:76:44:59:f7:02:78:90:44:64:ca:41:2b:
83:21:b0:2b:16:ee:6c:58:3a:5a:ba:7c:9f:db:24:b2:18:5a:
6e:73:5a:8e:4b:b1:1e:5a:c4:b2:fc:a6:6a:90:d2:fd:25:32:
b7:6e:13:ad:85:c6:b0:19:f5:6f:43:36:d8:78:83:6c:2b:15:
17:77:2a:16:f8:86:05:32:a0:38:f1:88:0d:c2:45:d7:7a:6b:
06:83:92:2e:c6:3f:73:78:aa:cc:83:ce:cf:05:a8:05:fe:50:
fd:86:56:cc:d6:37:8d:09:b3:d1:e1:85:13:43:ab:18:a7:c8:
33:d8:a6:ec:5e:8a:80:c2:ad:7d:79:58:28:d9:2f:cd:cc:0d:
89:8f:bf:92:4c:63:26:5e:4a:ae:99:26:3e:28:19:af:d0:91:
ea:1d:20:ae:55:cd:eb:16:59:59:0b:9a:66:3f:16:a8:cf:b0:
cc:0d:0d:d8:40:bc:f8:19:1d:b4:c0:c2:05:3a:6f:c9:c8:05:
39:5c:70:f4:49:8e:34:b1:7e:51:fe:65:bc:b2:a8:68:1c:e7:
4a:82:e3:5e:89:ac:55:e5:46:f0:61:57:d4:8e:b2:a3:79:d0:
23:fb:08:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-ams.rpki-client.org