Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/fce675-bf53-4787-93e7-81f566185b06/1/qk9O1g4q7O1cEfeex-Ua0o5BpZg.roa
File: qk9O1g4q7O1cEfeex-Ua0o5BpZg.roa (raw, json)
Hash identifier: swcflmTg5SB1Is/0q3ZMtob5HkB0AkxVAhj3tKoTRDk=
Subject key identifier: AA:4F:4E:D6:0E:2A:EC:ED:5C:11:F7:9E:C7:E5:1A:D2:8E:41:A5:98
Certificate issuer: /CN=2b0be226230d4099ceea0a4a6cf4ed8b90201350
Certificate serial: 018CC501027DDF4F879952F8B71E09A0E418
Authority key identifier: 2B:0B:E2:26:23:0D:40:99:CE:EA:0A:4A:6C:F4:ED:8B:90:20:13:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwviJiMNQJnO6gpKbPTti5AgE1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/fce675-bf53-4787-93e7-81f566185b06/1/qk9O1g4q7O1cEfeex-Ua0o5BpZg.roa
Signing time: Mon 01 Jan 2024 12:30:26 +0000
ROA not before: Mon 01 Jan 2024 12:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28787
IP address blocks: 188.253.224.0/21 maxlen: 21
37.61.120.0/22 maxlen: 22
37.61.124.0/22 maxlen: 22
194.135.152.0/23 maxlen: 23
188.253.128.0/19 maxlen: 19
194.135.154.0/23 maxlen: 23
194.135.166.0/23 maxlen: 23
194.135.168.0/23 maxlen: 23
194.135.170.0/24 maxlen: 24
194.135.171.0/24 maxlen: 24
194.135.172.0/24 maxlen: 24
194.135.173.0/24 maxlen: 24
194.135.174.0/24 maxlen: 24
194.135.176.0/24 maxlen: 24
194.135.177.0/24 maxlen: 24
194.135.178.0/24 maxlen: 24
194.135.179.0/24 maxlen: 24
188.253.232.0/21 maxlen: 21
188.253.254.0/24 maxlen: 24
188.253.255.0/24 maxlen: 24
37.61.0.0/17 maxlen: 17
185.30.88.0/23 maxlen: 23
185.30.90.0/23 maxlen: 23
217.64.16.0/20 maxlen: 20
217.64.16.0/24 maxlen: 24
37.61.77.0/24 maxlen: 24
37.61.78.0/24 maxlen: 24
37.61.79.0/24 maxlen: 24
213.154.0.0/19 maxlen: 19
37.61.112.0/22 maxlen: 22
37.61.116.0/22 maxlen: 22
81.17.80.0/20 maxlen: 20
81.17.82.0/24 maxlen: 24
37.61.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 22 Jan 2024 08:21:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:02:7d:df:4f:87:99:52:f8:b7:1e:09:a0:e4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0be226230d4099ceea0a4a6cf4ed8b90201350
Validity
Not Before: Jan 1 12:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa4f4ed60e2aeced5c11f79ec7e51ad28e41a598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ab:fd:0b:c3:d4:8e:d0:0b:ab:91:d6:f0:98:
32:12:1c:1e:62:8c:ec:5e:33:49:d2:79:5e:c7:15:
74:5c:92:7e:ad:6a:2c:5b:19:f6:41:6c:bf:c2:41:
68:2f:0f:7a:75:c9:5c:e5:62:75:0c:b5:27:e6:a1:
33:e2:f8:e7:10:b5:7a:28:41:e5:e9:ae:eb:4d:ae:
d7:db:3d:55:45:31:d8:81:53:42:14:81:00:b2:c1:
f9:7d:7e:d5:60:b6:eb:91:ff:0e:9f:3c:52:ce:0a:
a6:15:36:4c:61:66:b6:26:7b:f5:53:7b:b2:10:ad:
9d:86:f7:ee:19:2b:00:c7:04:ee:b4:80:21:b5:09:
d7:ba:49:f4:4c:89:c4:90:16:ee:74:bd:96:f1:ae:
4e:97:1d:d6:1f:28:7b:ba:af:b4:06:16:63:6c:d4:
29:50:fc:c9:f6:f8:8b:d8:44:5d:91:ec:a5:ac:ce:
fe:18:40:a0:59:c1:9e:2c:25:ff:bb:37:58:5f:0e:
b2:90:2b:19:4d:d4:66:f5:8d:18:e6:eb:73:46:fa:
b1:23:a1:c2:f5:e0:80:4d:27:fc:3c:b9:4f:9a:23:
e9:05:6e:e1:e1:f5:db:80:e5:e7:9b:5b:b8:9e:1c:
73:0d:65:14:52:65:c1:2d:24:ef:be:3e:58:ee:bc:
6c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4F:4E:D6:0E:2A:EC:ED:5C:11:F7:9E:C7:E5:1A:D2:8E:41:A5:98
X509v3 Authority Key Identifier:
keyid:2B:0B:E2:26:23:0D:40:99:CE:EA:0A:4A:6C:F4:ED:8B:90:20:13:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwviJiMNQJnO6gpKbPTti5AgE1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/fce675-bf53-4787-93e7-81f566185b06/1/qk9O1g4q7O1cEfeex-Ua0o5BpZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/fce675-bf53-4787-93e7-81f566185b06/1/KwviJiMNQJnO6gpKbPTti5AgE1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.0.0/17
81.17.80.0/20
185.30.88.0/22
188.253.128.0/19
188.253.224.0/20
188.253.254.0/23
194.135.152.0/22
194.135.166.0-194.135.174.255
194.135.176.0/22
213.154.0.0/19
217.64.16.0/20
Signature Algorithm: sha256WithRSAEncryption
03:e9:42:e1:28:57:ec:a6:9c:2c:4c:59:03:98:5d:0f:68:c1:
e2:af:b6:c6:33:e6:2d:20:c7:70:b9:d6:85:cb:04:3d:18:41:
16:7d:aa:9d:c6:9e:6c:8f:7a:08:33:f8:3d:40:71:ec:86:16:
9e:d8:01:f7:cd:3d:1a:69:a7:3b:bd:e4:77:62:a6:1a:dd:bd:
a9:2f:9f:26:f1:2c:b9:d5:38:4b:40:ea:f8:e8:dd:a7:3a:02:
1f:a9:62:25:65:a0:f7:3b:23:24:16:f4:1b:88:cc:31:19:c2:
5d:4a:20:80:0c:40:fc:22:bf:1a:35:23:f5:79:bc:32:66:0e:
50:11:39:68:16:f3:d9:3f:40:7f:98:29:c2:9d:29:5b:b8:f7:
07:23:d7:60:1f:c8:f4:a0:98:35:73:e8:ec:60:00:f6:54:a8:
99:78:78:95:91:e8:37:6d:79:80:41:b7:7a:6a:2e:d6:e6:30:
fb:8c:0b:40:00:4f:f9:7f:86:5e:97:02:d6:ab:b9:ec:ac:7b:
ba:a7:09:e9:48:13:81:15:d4:55:91:a3:28:df:dc:79:58:3e:
64:5c:a2:54:e0:35:f4:3c:8d:69:43:98:f0:6e:07:98:8b:c3:
47:41:cd:c4:c9:6c:10:ba:79:0d:68:95:01:04:1e:31:e7:12:
bf:81:39:77
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAYzFAQJ930+HmVL4tx4JoOQYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMGJlMjI2MjMwZDQwOTljZWVhMGE0YTZjZjRlZDhiOTAy
MDEzNTAwHhcNMjQwMTAxMTIzMDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTRmNGVkNjBlMmFlY2VkNWMxMWY3OWVjN2U1MWFkMjhlNDFhNTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6v9C8PUjtALq5HW8JgyEhweYozs
XjNJ0nlexxV0XJJ+rWosWxn2QWy/wkFoLw96dclc5WJ1DLUn5qEz4vjnELV6KEHl
6a7rTa7X2z1VRTHYgVNCFIEAssH5fX7VYLbrkf8OnzxSzgqmFTZMYWa2Jnv1U3uy
EK2dhvfuGSsAxwTutIAhtQnXukn0TInEkBbudL2W8a5Olx3WHyh7uq+0BhZjbNQp
UPzJ9viL2ERdkeylrM7+GECgWcGeLCX/uzdYXw6ykCsZTdRm9Y0Y5utzRvqxI6HC
9eCATSf8PLlPmiPpBW7h4fXbgOXnm1u4nhxzDWUUUmXBLSTvvj5Y7rxsFwIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFKpPTtYOKuztXBH3nsflGtKOQaWYMB8GA1UdIwQY
MBaAFCsL4iYjDUCZzuoKSmz07YuQIBNQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3d2aUppTU5RSm5PNmdwS2JQVHRpNUFnRTFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9mY2U2NzUtYmY1My00Nzg3LTkzZTct
ODFmNTY2MTg1YjA2LzEvcWs5TzFnNHE3TzFjRWZlZXgtVWEwbzVCcFpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9mY2U2NzUtYmY1My00Nzg3LTkzZTctODFmNTY2MTg1YjA2
LzEvS3d2aUppTU5RSm5PNmdwS2JQVHRpNUFnRTFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQHJT0AAwQE
URFQAwQCuR5YAwQFvP2AAwQEvP3gAwQBvP3+AwQCwoeYMAwDBAHCh6YDBADCh64D
BALCh7ADBAXVmgADBATZQBAwDQYJKoZIhvcNAQELBQADggEBAAPpQuEoV+ymnCxM
WQOYXQ9oweKvtsYz5i0gx3C51oXLBD0YQRZ9qp3GnmyPeggz+D1AceyGFp7YAffN
PRpppzu95HdiphrdvakvnybxLLnVOEtA6vjo3ac6Ah+pYiVloPc7IyQW9BuIzDEZ
wl1KIIAMQPwivxo1I/V5vDJmDlAROWgW89k/QH+YKcKdKVu49wcj12AfyPSgmDVz
6OxgAPZUqJl4eJWR6DdteYBBt3pqLtbmMPuMC0AAT/l/hl6XAtarueyse7qnCelI
E4EV1FWRoyjf3HlYPmRcolTgNfQ8jWlDmPBuB5iLw0dBzcTJbBC6eQ1olQEEHjHn
Er+BOXc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:11 2024 by rpki-client on console-ams.rpki-client.org