Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/QVkvmrBOHYXsGWHQBjARH3bSviw.roa
File: QVkvmrBOHYXsGWHQBjARH3bSviw.roa (raw, json)
Hash identifier: RUvxtesxn411kZQ70ps45Atx88911IPwTgx3Zof0wYw=
Subject key identifier: 41:59:2F:9A:B0:4E:1D:85:EC:19:61:D0:06:30:11:1F:76:D2:BE:2C
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 018679A49EFAC24632365279385F9D5BA293
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/QVkvmrBOHYXsGWHQBjARH3bSviw.roa
Signing time: Wed 22 Feb 2023 15:01:17 +0000
ROA not before: Wed 22 Feb 2023 15:01:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 88.218.101.0/24 maxlen: 24
88.218.102.0/23 maxlen: 23
88.218.100.0/24 maxlen: 24
141.98.240.0/24 maxlen: 24
195.206.108.0/24 maxlen: 24
195.206.109.0/24 maxlen: 24
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
193.31.75.0/24 maxlen: 24
85.209.218.0/23 maxlen: 23
85.209.216.0/24 maxlen: 24
139.28.138.0/23 maxlen: 23
139.28.137.0/24 maxlen: 24
45.84.44.0/24 maxlen: 24
194.5.0.0/22 maxlen: 22
45.84.45.0/24 maxlen: 24
45.84.47.0/24 maxlen: 24
141.98.241.0/24 maxlen: 24
141.98.242.0/23 maxlen: 23
194.124.52.0/22 maxlen: 22
85.8.188.0/24 maxlen: 24
85.8.189.0/24 maxlen: 24
85.8.190.0/23 maxlen: 23
45.11.236.0/22 maxlen: 22
92.119.180.0/24 maxlen: 24
92.119.181.0/24 maxlen: 24
45.157.74.0/23 maxlen: 23
45.14.72.0/24 maxlen: 24
5.182.100.0/24 maxlen: 24
5.182.101.0/24 maxlen: 24
5.182.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:a4:9e:fa:c2:46:32:36:52:79:38:5f:9d:5b:a2:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Feb 22 15:01:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41592f9ab04e1d85ec1961d00630111f76d2be2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fc:dd:9c:cc:30:63:6c:ab:c2:02:06:0b:e4:
fd:10:fa:e8:aa:f3:d0:c7:77:7b:ae:f1:90:b5:bf:
89:d8:12:04:bf:79:68:b6:cd:74:2d:18:ad:b9:39:
6f:03:d5:45:d9:76:3d:b0:d0:f3:b0:e0:bf:34:9c:
95:cb:be:b8:38:fc:94:5e:f3:64:ca:8d:3b:9d:8f:
9e:32:d7:25:d4:c8:cb:6e:72:bb:8a:99:35:94:d3:
4e:6d:d2:60:27:93:a8:6e:75:e5:53:7b:62:d7:ab:
96:9d:55:53:75:0f:9a:ef:9f:f2:1c:83:a9:48:58:
c0:32:ac:74:57:e1:2e:e1:34:4d:42:59:fd:90:21:
af:77:ac:63:28:19:5d:7d:2c:03:3c:df:4f:3d:e9:
df:a7:6a:f4:dd:fa:49:6e:a2:16:88:d1:61:bb:5e:
0f:9f:5e:e9:ea:13:5c:68:e3:69:eb:6c:6a:ba:92:
cb:bd:5a:24:81:96:f6:2c:a9:f1:c9:d6:68:32:cf:
d7:b8:39:fb:af:e2:8d:0c:e9:03:27:d1:8a:44:68:
1b:48:7e:be:49:4c:15:9f:10:82:4a:70:e3:dc:c4:
64:25:fb:10:7b:73:a9:b1:f3:ca:08:38:8e:0a:d1:
96:e8:3f:c9:6e:b9:78:5b:de:bc:53:20:ae:4f:de:
f1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:59:2F:9A:B0:4E:1D:85:EC:19:61:D0:06:30:11:1F:76:D2:BE:2C
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/QVkvmrBOHYXsGWHQBjARH3bSviw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.100.0/23
5.182.103.0/24
45.11.236.0/22
45.14.72.0/24
45.84.44.0/23
45.84.47.0/24
45.157.74.0/23
85.8.188.0/22
85.209.216.0/24
85.209.218.0/23
88.218.100.0/22
92.119.180.0/23
139.28.137.0-139.28.139.255
141.98.240.0/22
193.31.72.0/23
193.31.75.0/24
194.5.0.0/22
194.124.52.0/22
195.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
63:45:46:37:ac:bb:2b:9c:68:fe:b7:8d:ee:21:6e:4c:f4:6d:
a2:6a:ab:31:f7:39:bf:11:e1:60:e9:45:61:1a:9c:47:16:2e:
19:eb:cb:a5:66:fc:fb:cd:24:29:38:1e:45:11:09:42:f6:d3:
57:3e:1e:e7:ee:ae:2e:85:32:16:f0:87:b0:44:d8:46:44:91:
78:20:3d:8a:05:c3:78:02:fa:47:c0:26:90:77:81:10:c8:7f:
73:6b:c0:2f:a4:ef:0a:48:00:68:4b:36:cd:3e:de:ae:bc:e2:
81:e2:ae:17:5f:e4:96:57:bf:cd:ba:47:8e:4a:e1:53:79:75:
fd:5a:b9:8e:d3:d0:c4:01:eb:14:8a:79:8f:0d:41:b4:d4:c0:
66:f6:12:2c:c4:a2:cb:44:3d:31:e8:44:c9:b1:a3:43:2f:db:
c0:13:22:19:aa:14:32:ca:5f:57:a6:4b:51:7f:18:00:59:66:
c7:e6:70:52:7c:b1:34:c6:0a:b0:da:33:85:46:47:8f:fc:06:
38:7d:6a:01:8f:f3:c2:b1:41:20:8b:6e:34:11:eb:8d:d4:2a:
25:33:18:3a:4d:95:c6:30:ce:96:aa:40:4e:50:92:52:88:2f:
5e:ef:78:63:80:a5:9f:b6:10:01:8c:b9:9e:eb:4c:d6:df:dc:
05:47:11:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org