Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/qEeLz5QQ68R8i3Hp5oUcDYvwVn8.roa
File: qEeLz5QQ68R8i3Hp5oUcDYvwVn8.roa (raw, json)
Hash identifier: LKzHOG67ZqEvv96tA/Q6rkDmMG63Ac7aNnDdIst/E0Q=
Subject key identifier: A8:47:8B:CF:94:10:EB:C4:7C:8B:71:E9:E6:85:1C:0D:8B:F0:56:7F
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 01865079EBA28610DD953B4B852861E5E895
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/qEeLz5QQ68R8i3Hp5oUcDYvwVn8.roa
Signing time: Tue 14 Feb 2023 15:10:12 +0000
ROA not before: Tue 14 Feb 2023 15:10:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 88.218.101.0/24 maxlen: 24
88.218.102.0/23 maxlen: 23
88.218.100.0/24 maxlen: 24
141.98.240.0/24 maxlen: 24
195.206.108.0/24 maxlen: 24
195.206.109.0/24 maxlen: 24
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
193.31.75.0/24 maxlen: 24
85.209.218.0/23 maxlen: 23
85.209.216.0/24 maxlen: 24
139.28.138.0/23 maxlen: 23
139.28.137.0/24 maxlen: 24
45.84.44.0/24 maxlen: 24
194.5.0.0/22 maxlen: 22
45.84.45.0/24 maxlen: 24
45.84.47.0/24 maxlen: 24
141.98.241.0/24 maxlen: 24
141.98.242.0/23 maxlen: 23
194.124.52.0/22 maxlen: 22
85.8.188.0/24 maxlen: 24
85.8.189.0/24 maxlen: 24
85.8.190.0/23 maxlen: 23
45.11.236.0/22 maxlen: 22
92.119.180.0/24 maxlen: 24
45.157.74.0/23 maxlen: 23
45.14.72.0/24 maxlen: 24
5.182.100.0/24 maxlen: 24
5.182.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:79:eb:a2:86:10:dd:95:3b:4b:85:28:61:e5:e8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Feb 14 15:10:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8478bcf9410ebc47c8b71e9e6851c0d8bf0567f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:f9:22:59:40:41:3b:d6:8b:8f:ff:ff:5d:
30:f4:50:11:99:b4:ff:78:f7:03:53:5b:28:40:b0:
47:6c:f4:9f:6d:66:82:55:96:f8:58:91:e5:77:da:
d9:a3:af:40:e9:77:3c:09:37:12:5e:70:8f:1d:1a:
91:89:78:5e:b9:07:65:cf:a4:36:6e:0d:ec:92:7f:
2f:1c:8d:24:ef:5b:fe:8d:47:78:9b:20:c0:e2:b5:
ba:54:7c:c1:02:85:58:fa:61:26:ba:cd:fa:77:83:
72:0f:aa:df:63:33:6a:45:fd:33:1e:4a:6a:a6:07:
d3:a0:50:d0:64:f4:86:87:11:f4:a5:01:2e:16:b4:
59:49:c5:02:9f:32:16:b0:3c:9f:72:3a:a4:8b:12:
12:ac:e2:39:d1:36:91:a3:e8:73:84:47:d9:ae:21:
b3:e4:cc:82:b1:53:f9:00:ee:c1:34:20:03:04:05:
b4:8a:4a:bc:e3:96:8b:fa:6a:9c:8f:75:70:b4:95:
2a:a5:b5:18:81:9c:ea:00:9b:f9:01:87:5d:13:bb:
c5:b2:ed:ea:3b:28:8a:04:7d:90:c9:ae:06:7e:a7:
7a:d2:b2:f2:3b:7a:7c:51:66:20:9b:17:b2:e4:11:
3b:1e:cb:ba:30:e3:44:9f:5a:aa:6b:3c:5c:6f:19:
20:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:47:8B:CF:94:10:EB:C4:7C:8B:71:E9:E6:85:1C:0D:8B:F0:56:7F
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/qEeLz5QQ68R8i3Hp5oUcDYvwVn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.100.0/24
5.182.103.0/24
45.11.236.0/22
45.14.72.0/24
45.84.44.0/23
45.84.47.0/24
45.157.74.0/23
85.8.188.0/22
85.209.216.0/24
85.209.218.0/23
88.218.100.0/22
92.119.180.0/24
139.28.137.0-139.28.139.255
141.98.240.0/22
193.31.72.0/23
193.31.75.0/24
194.5.0.0/22
194.124.52.0/22
195.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
34:51:3e:49:dc:dd:e4:27:22:ad:4a:0b:e8:b8:ac:c1:2a:de:
0b:cb:6a:66:82:9c:ca:fe:eb:25:1b:1e:9a:cb:d4:da:fd:f0:
21:c4:a8:73:3c:f6:6e:e4:1c:a6:b3:33:f9:0d:60:91:54:e8:
64:d7:08:ca:57:48:95:51:24:34:a7:f8:fd:d9:3c:ae:87:d6:
dc:01:e1:6e:22:cd:df:7b:06:b0:7f:f4:3f:29:48:5e:3c:13:
ad:13:9c:f5:57:1f:7f:b4:92:e5:1e:e2:10:33:e6:fa:58:15:
ca:0b:e6:83:a0:fb:3f:25:e9:1b:dc:ca:d7:1e:2f:79:5b:36:
f2:34:6e:f5:6b:1c:e5:cf:52:5e:29:37:85:14:d4:bc:5e:fc:
fc:09:36:04:12:81:e5:78:9e:c7:25:58:27:65:dc:94:fe:e4:
b0:f3:be:81:67:ca:a8:28:8d:3d:1c:09:61:34:98:f9:41:12:
5d:07:57:7b:45:64:5d:cd:f1:6b:e4:67:95:0c:f4:d6:e5:77:
4c:04:7e:a7:64:6e:63:9f:15:05:1a:2e:30:3e:f5:be:ed:23:
79:ec:d6:87:ae:c5:3b:be:8e:8c:b6:59:b2:5b:9b:92:f4:be:
14:5a:f9:ac:f9:e8:e9:fa:33:88:e8:32:eb:de:87:47:41:9e:
cd:00:0d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:06 2023 by rpki-client on console-ams.rpki-client.org