Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qZhNNWlOj_FCbJfIUz2DD6Vp7Qc.roa
File: qZhNNWlOj_FCbJfIUz2DD6Vp7Qc.roa (raw, json)
Hash identifier: NR4u3NV3uF12r5ar/+nEvjPlc+eNwUW0gyCrGw6mfAI=
Subject key identifier: A9:98:4D:35:69:4E:8F:F1:42:6C:97:C8:53:3D:83:0F:A5:69:ED:07
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01927BAFCDECC588F621A067D38219C3726F
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qZhNNWlOj_FCbJfIUz2DD6Vp7Qc.roa
Signing time: Fri 11 Oct 2024 13:06:11 +0000
ROA not before: Fri 11 Oct 2024 13:06:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62206
IP address blocks: 2.56.109.0/24 maxlen: 24
5.181.84.0/24 maxlen: 24
5.181.87.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
45.13.189.0/24 maxlen: 24
45.13.190.0/24 maxlen: 24
45.81.115.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
45.132.180.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.144.212.0/24 maxlen: 24
45.151.3.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
146.19.125.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
194.242.96.0/24 maxlen: 24
194.242.98.0/24 maxlen: 24
194.242.99.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.188.0/24 maxlen: 24
195.211.189.0/24 maxlen: 24
195.211.190.0/24 maxlen: 24
2a01:7120::/32 maxlen: 32
2a01:7120:7::/48 maxlen: 48
2a07:9200::/29 maxlen: 29
2a07:9201::/32 maxlen: 32
2a07:9206::/32 maxlen: 32
2a07:9207::/32 maxlen: 32
2a09:340::/32 maxlen: 32
2a09:342::/32 maxlen: 32
2a09:346::/32 maxlen: 32
2a09:c440::/32 maxlen: 32
2a0c:5d40::/32 maxlen: 32
2a0c:a580::/29 maxlen: 29
2a0c:a580::/32 maxlen: 32
2a0c:a581::/32 maxlen: 32
2a0c:a584::/32 maxlen: 32
2a0c:a586::/32 maxlen: 32
2a10:dfc0::/29 maxlen: 29
2a10:dfc0::/32 maxlen: 32
2a10:fac0::/32 maxlen: 32
2a11:580::/29 maxlen: 29
2a11:580::/32 maxlen: 32
2a11:1600::/32 maxlen: 32
2a11:2a80::/32 maxlen: 32
2a11:3900::/32 maxlen: 32
2a11:d680::/32 maxlen: 32
2a12:9f00::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 16 Oct 2024 23:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7b:af:cd:ec:c5:88:f6:21:a0:67:d3:82:19:c3:72:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 11 13:06:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9984d35694e8ff1426c97c8533d830fa569ed07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:99:c7:13:e2:2b:ae:ec:db:6b:41:2c:d5:f3:
a7:65:62:9b:3f:47:4b:c8:36:bd:c2:bf:04:d1:7c:
8a:fa:3f:48:6e:af:36:ef:cf:77:b1:e6:1f:26:ec:
b6:67:72:3e:ba:c9:4c:b0:13:f0:36:54:97:a8:8b:
c7:81:a6:d3:43:3c:9f:83:27:00:35:fb:db:af:4c:
02:41:99:75:5b:9b:34:0d:50:2c:c6:f4:03:08:22:
2b:da:36:64:3d:94:e6:6f:90:fa:c9:20:88:0d:67:
d9:ad:0f:ef:7a:8d:31:54:ff:e1:77:6d:eb:4e:fb:
6f:8c:7f:d2:93:86:d7:4f:09:ca:04:1c:34:0c:4b:
d9:ec:c6:fa:1f:08:39:d3:93:b6:14:5c:00:bc:b7:
1f:46:b2:f7:55:85:1a:a8:6a:6b:26:33:0a:fe:e3:
16:eb:3d:00:74:f8:2a:40:3e:e5:85:76:59:c9:03:
6c:f4:12:89:d8:ad:e7:2a:4d:ed:2b:10:49:0a:49:
2a:ed:60:1e:54:6f:95:38:2d:13:b1:fc:f3:31:2e:
3b:10:a6:23:ed:43:0a:57:5c:57:8b:92:e4:ae:87:
f2:b8:45:b4:d8:f5:c8:58:6c:38:f8:d7:f6:31:86:
44:dd:48:50:7c:bf:d0:48:e2:80:d3:75:2c:a4:14:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:98:4D:35:69:4E:8F:F1:42:6C:97:C8:53:3D:83:0F:A5:69:ED:07
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/qZhNNWlOj_FCbJfIUz2DD6Vp7Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.109.0/24
5.181.84.0/24
5.181.87.0/24
45.9.29.0/24
45.13.189.0-45.13.190.255
45.81.115.0/24
45.88.136.0/24
45.88.138.0/24
45.94.171.0/24
45.132.180.0/22
45.144.212.0/24
45.151.3.0/24
77.83.37.0/24
146.19.125.0/24
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/24
194.242.98.0/23
195.177.93.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a09:340::/32
2a09:342::/32
2a09:346::/32
2a09:c440::/32
2a0c:5d40::/32
2a0c:a580::/29
2a10:dfc0::/29
2a10:fac0::/32
2a11:580::/29
2a11:1600::/32
2a11:2a80::/32
2a11:3900::/32
2a11:d680::/32
2a12:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
94:ae:16:e7:42:0c:f8:6e:e9:a7:2d:3b:c6:81:1a:52:7e:96:
9d:fb:04:aa:5c:5c:8f:48:84:48:2f:b0:99:be:58:08:85:08:
22:32:9f:7c:c1:75:6e:66:f7:ac:75:46:b0:99:51:ea:35:3b:
cc:bf:31:30:bd:6f:40:54:dc:52:ea:7e:64:62:52:8f:53:62:
f1:d8:b2:0e:a0:7b:82:6c:6e:83:c1:b2:5c:46:58:c9:bc:25:
d0:46:6f:1d:c4:e0:4b:3f:cb:79:c6:7b:fc:26:f2:34:8d:f4:
08:6d:84:c1:ea:4e:77:a8:ff:89:5e:81:5a:1f:17:57:4c:99:
5b:c4:bd:fa:73:6f:d1:43:b6:5d:0b:8e:0f:92:f8:a1:fb:5b:
73:7a:2c:d5:de:05:31:53:17:d0:53:47:c4:b6:9a:a7:ed:6a:
f7:43:7b:66:ca:95:6b:71:45:c6:b1:87:16:e3:68:76:1b:1c:
cb:4a:57:92:ce:5c:2d:39:e1:af:4c:a0:e6:00:ec:8a:ce:8a:
50:fb:28:1f:d2:aa:bd:1d:64:d2:4b:9f:22:76:41:b4:40:15:
31:fa:b0:62:7d:c6:a0:e7:d3:8f:f0:91:ac:32:ba:53:b6:6a:
50:37:54:a7:5c:75:39:8e:b6:d9:10:22:dd:58:b2:3f:d5:45:
3e:6c:63:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 00:27:57 2024 by rpki-client on console-ams.rpki-client.org