Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwso8PNxMhfDrLXtyrkDoFTRz1I.roa
File: qwso8PNxMhfDrLXtyrkDoFTRz1I.roa (raw, json)
Hash identifier: YR9z//Et18G+oRJWp2q5387nODLxKFUX7g9dgjz/eq4=
Subject key identifier: AB:0B:28:F0:F3:71:32:17:C3:AC:B5:ED:CA:B9:03:A0:54:D1:CF:52
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018CC801368494C58476CDDCDBD2F05F19ED
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwso8PNxMhfDrLXtyrkDoFTRz1I.roa
Signing time: Tue 02 Jan 2024 02:29:31 +0000
ROA not before: Tue 02 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210906
IP address blocks: 159.148.26.0/24 maxlen: 24
85.254.138.0/23 maxlen: 23
85.254.137.0/24 maxlen: 24
85.254.134.0/24 maxlen: 24
85.254.140.0/24 maxlen: 24
85.254.174.0/23 maxlen: 23
85.254.178.0/23 maxlen: 23
85.254.180.0/23 maxlen: 23
85.254.84.0/23 maxlen: 23
85.254.103.0/24 maxlen: 24
85.254.104.0/22 maxlen: 22
85.254.112.0/22 maxlen: 22
85.254.108.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.124.0/23 maxlen: 23
85.254.122.0/23 maxlen: 23
85.254.128.0/22 maxlen: 22
85.254.126.0/24 maxlen: 24
217.69.125.0/24 maxlen: 24
217.69.121.0/24 maxlen: 24
217.69.127.0/24 maxlen: 24
217.69.126.0/24 maxlen: 24
85.254.29.0/24 maxlen: 24
85.254.30.0/24 maxlen: 24
85.254.42.0/23 maxlen: 23
85.254.40.0/24 maxlen: 24
85.254.51.0/24 maxlen: 24
85.254.59.0/24 maxlen: 24
85.254.62.0/23 maxlen: 23
85.254.64.0/23 maxlen: 23
85.254.76.0/22 maxlen: 22
85.254.4.0/24 maxlen: 24
85.254.2.0/24 maxlen: 24
85.254.8.0/21 maxlen: 21
85.254.7.0/24 maxlen: 24
159.148.109.0/24 maxlen: 24
159.148.126.0/24 maxlen: 24
159.148.130.0/24 maxlen: 24
159.148.128.0/24 maxlen: 24
159.148.138.0/24 maxlen: 24
159.148.150.0/24 maxlen: 24
159.148.157.0/24 maxlen: 24
159.148.158.0/24 maxlen: 24
159.148.54.0/24 maxlen: 24
159.148.62.0/24 maxlen: 24
159.148.66.0/24 maxlen: 24
159.148.216.0/24 maxlen: 24
159.148.218.0/24 maxlen: 24
159.148.222.0/24 maxlen: 24
159.148.236.0/24 maxlen: 24
159.148.239.0/24 maxlen: 24
159.148.234.0/24 maxlen: 24
159.148.246.0/23 maxlen: 23
159.148.241.0/24 maxlen: 24
159.148.248.0/24 maxlen: 24
185.27.93.0/24 maxlen: 24
185.27.94.0/24 maxlen: 24
185.27.92.0/24 maxlen: 24
185.27.95.0/24 maxlen: 24
159.148.163.0/24 maxlen: 24
159.148.169.0/24 maxlen: 24
159.148.166.0/23 maxlen: 23
159.148.179.0/24 maxlen: 24
159.148.177.0/24 maxlen: 24
159.148.180.0/24 maxlen: 24
159.148.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:36:84:94:c5:84:76:cd:dc:db:d2:f0:5f:19:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab0b28f0f3713217c3acb5edcab903a054d1cf52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a4:cf:71:6c:96:b1:b6:f7:87:da:f4:b2:4a:
a8:2a:3f:b0:cd:3a:2b:74:1c:d6:4a:f5:6d:c4:55:
65:ba:9a:70:65:20:8e:8c:82:d8:67:89:ee:d5:43:
2c:28:75:b7:9b:40:6a:aa:88:59:b3:ca:79:4f:51:
42:34:3f:15:d8:0b:47:6a:a1:ec:5f:e4:cc:f2:56:
ca:b9:1f:d7:82:fb:75:67:ca:44:13:08:0e:3f:8c:
48:e5:97:dc:8a:93:09:c9:d9:a8:59:d4:c0:04:17:
a6:2c:f5:9a:ed:3c:4d:61:45:d0:63:53:99:f9:c2:
fc:d8:4f:e0:30:ac:bb:28:59:5e:cc:5b:97:9d:1e:
e2:8f:d0:e7:c9:11:c8:9e:cd:fe:9b:5a:d0:c8:dd:
c4:b2:4e:fb:c6:be:af:5b:d6:5c:5b:99:8f:99:80:
c0:ea:27:10:1c:31:0e:cc:52:05:3b:61:6a:6c:79:
3e:f6:ba:3c:41:11:1e:05:0e:d0:a7:03:c4:55:ce:
cf:cb:5f:05:38:87:d6:bd:28:01:78:df:30:d9:30:
a1:d4:c5:dc:cf:9d:87:f4:95:bb:02:0b:c1:3b:3f:
9b:fd:67:68:48:66:83:ee:ae:e1:10:2e:76:36:c6:
bd:55:e0:7b:62:c6:ba:79:39:0c:86:46:be:0e:5c:
a7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0B:28:F0:F3:71:32:17:C3:AC:B5:ED:CA:B9:03:A0:54:D1:CF:52
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwso8PNxMhfDrLXtyrkDoFTRz1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.2.0/24
85.254.4.0/24
85.254.7.0-85.254.15.255
85.254.29.0-85.254.30.255
85.254.40.0/24
85.254.42.0/23
85.254.51.0/24
85.254.59.0/24
85.254.62.0-85.254.65.255
85.254.76.0/22
85.254.84.0/23
85.254.103.0-85.254.119.255
85.254.122.0-85.254.126.255
85.254.128.0/22
85.254.134.0/24
85.254.137.0-85.254.140.255
85.254.174.0/23
85.254.178.0-85.254.181.255
159.148.26.0/24
159.148.54.0/24
159.148.62.0/24
159.148.66.0/24
159.148.109.0/24
159.148.126.0/24
159.148.128.0/24
159.148.130.0/24
159.148.138.0/24
159.148.150.0/24
159.148.157.0-159.148.158.255
159.148.163.0/24
159.148.166.0/23
159.148.169.0/24
159.148.177.0/24
159.148.179.0-159.148.180.255
159.148.204.0/24
159.148.216.0/24
159.148.218.0/24
159.148.222.0/24
159.148.234.0/24
159.148.236.0/24
159.148.239.0/24
159.148.241.0/24
159.148.246.0-159.148.248.255
185.27.92.0/22
217.69.121.0/24
217.69.125.0-217.69.127.255
Signature Algorithm: sha256WithRSAEncryption
62:54:3c:ff:53:1f:bb:5f:ad:99:a2:4d:41:8c:03:50:bf:d9:
52:9e:89:4c:72:cc:60:45:d8:ff:aa:bd:47:74:eb:c6:a6:6c:
5c:18:45:e0:a1:aa:5f:ca:b5:2b:8f:27:59:53:14:d5:6c:73:
01:e6:b2:68:e2:1c:15:92:42:b2:31:06:a4:5d:a7:3d:aa:95:
40:96:6d:5f:5c:0b:0e:a6:e6:80:19:49:a0:b0:d7:a0:9b:fc:
5b:09:20:92:0f:7e:3b:62:95:1c:62:11:02:3a:ae:17:d0:32:
19:a8:b8:65:ee:d1:f9:da:a9:6d:78:fc:f1:da:ed:af:1f:f7:
8b:ee:f7:0e:d6:bb:c0:18:cd:96:60:70:8a:e3:f3:12:52:fd:
f5:3a:b5:0b:ec:d4:81:77:db:c4:7a:dd:71:1e:6d:ca:07:50:
21:aa:36:07:c9:6c:61:56:a0:1d:73:80:e3:21:0d:ae:1a:88:
09:07:56:1c:59:65:34:83:12:5b:75:3e:53:f5:38:de:1e:08:
2c:78:40:0e:ce:29:11:4e:18:73:b4:3a:76:02:77:4e:fa:dc:
56:d5:8f:c9:8a:8a:8c:31:9f:25:7a:c3:43:50:23:50:36:d8:
8e:3c:14:51:5d:5a:25:03:7b:7a:68:0b:88:29:1b:44:b7:04:
87:01:09:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 11:41:27 2024 by rpki-client on console-fra.rpki-client.org