Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QSn5Seu6rLaThIXeghzMxEVV90s.roa
File: QSn5Seu6rLaThIXeghzMxEVV90s.roa (raw, json)
Hash identifier: Vv3tG44yJnHRY3LxWxCoYo3qB7aHGbqSbzqt/qA2GOQ=
Subject key identifier: 41:29:F9:49:EB:BA:AC:B6:93:84:85:DE:82:1C:CC:C4:45:55:F7:4B
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018B9565262975569FF2C3BB11E5C8AC9ABE
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QSn5Seu6rLaThIXeghzMxEVV90s.roa
Signing time: Fri 03 Nov 2023 13:35:15 +0000
ROA not before: Fri 03 Nov 2023 13:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
45.130.53.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Dec 2023 11:46:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:65:26:29:75:56:9f:f2:c3:bb:11:e5:c8:ac:9a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Nov 3 13:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4129f949ebbaacb6938485de821cccc44555f74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:99:e2:8c:0e:d9:42:87:90:37:13:45:11:d9:
c4:a9:37:2b:79:5f:01:d5:48:80:64:f9:4f:f5:7c:
07:df:7d:a6:a4:8c:58:ce:96:df:2a:58:eb:e8:28:
6b:94:e4:bf:01:10:97:74:78:e0:69:cf:5a:f1:99:
62:47:d6:61:05:3a:57:39:c9:30:8e:28:d3:2f:35:
13:48:5e:64:8f:46:58:08:9a:4d:e6:95:a4:03:95:
ee:6b:59:6a:ea:d6:9f:fb:e9:74:8e:45:09:c0:77:
5e:00:bb:02:b2:61:47:10:9a:f2:d6:a4:6d:e4:1b:
db:b0:ea:22:18:6c:4c:03:d1:cc:e9:1c:91:4b:fe:
db:db:ea:08:36:8b:92:38:31:4c:ec:52:8c:51:57:
4e:1d:4c:84:f6:7f:f7:78:13:6c:f6:a5:01:4b:ce:
06:ee:c9:f6:49:7c:4a:14:32:4c:96:ec:d8:3f:0f:
58:6f:f3:ee:83:74:f2:26:86:54:5b:5d:62:98:33:
03:4c:45:ba:9d:f8:35:5e:f4:2c:6b:35:17:62:fa:
38:18:ad:32:51:ec:19:3c:8f:8f:42:06:e1:6b:aa:
52:28:b8:ac:9e:7e:82:49:98:48:87:39:0d:f9:b0:
9a:c5:b3:29:a2:34:39:f7:f8:95:ba:42:ef:a0:09:
0b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:29:F9:49:EB:BA:AC:B6:93:84:85:DE:82:1C:CC:C4:45:55:F7:4B
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/QSn5Seu6rLaThIXeghzMxEVV90s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.56.239.0/24
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
55:aa:b4:66:a0:36:3d:d3:63:9b:af:cc:5b:d8:2a:39:5a:57:
15:75:1c:d9:c2:d1:49:fe:14:89:73:32:18:5b:e9:f3:7b:32:
28:70:c2:58:d2:b0:a3:01:a7:61:57:57:72:13:98:9c:8a:9b:
83:5a:84:f7:be:be:e9:4f:75:ae:63:e1:9b:e4:79:2e:df:9f:
cb:75:1d:fc:07:cf:08:4f:7c:91:a2:b4:e9:5b:62:05:5b:be:
2b:92:a0:cd:3b:09:b2:0b:4d:30:c8:c4:68:e5:2f:c2:75:84:
01:0e:18:71:f4:c1:c7:f7:dc:4e:53:37:27:ef:b7:0d:a1:2e:
ed:73:56:17:e8:05:11:d0:0b:84:97:31:70:ec:1e:52:e1:4a:
60:44:37:ca:e9:18:59:a7:64:9f:6c:5e:a1:86:8f:47:9e:29:
5c:9f:0a:be:db:c2:83:d3:42:46:b2:d6:45:c0:33:77:f8:c9:
be:ae:ea:0a:28:4e:f0:69:55:8d:a0:bd:4d:c2:a9:81:ad:f8:
c4:d0:c9:74:60:b6:82:36:ee:d2:ac:50:76:91:d9:4b:6e:23:
84:cd:3c:b5:5e:61:2e:dc:e0:c0:9b:27:0e:ad:bb:20:7d:55:
03:3a:8a:5b:32:29:1b:98:aa:e9:8d:5c:ef:95:3f:58:ef:c8:
5e:e7:a6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org