Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/q5xmr-mvQ6hWyxQGfSBw_IAeYj8.roa
File: q5xmr-mvQ6hWyxQGfSBw_IAeYj8.roa (raw, json)
Hash identifier: xpX6yxSpYE+wVA2IdmzAkkImuP5UGKnSpIABjqj7u7s=
Subject key identifier: AB:9C:66:AF:E9:AF:43:A8:56:CB:14:06:7D:20:70:FC:80:1E:62:3F
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 018CC726E952765B222686C6D62E4105F9F6
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/q5xmr-mvQ6hWyxQGfSBw_IAeYj8.roa
Signing time: Mon 01 Jan 2024 22:31:05 +0000
ROA not before: Mon 01 Jan 2024 22:31:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25400
IP address blocks: 84.214.32.0/20 maxlen: 20
84.214.192.0/24 maxlen: 24
84.214.193.0/24 maxlen: 24
46.212.64.0/21 maxlen: 21
46.212.72.0/21 maxlen: 21
46.212.80.0/21 maxlen: 21
84.214.0.0/20 maxlen: 20
46.212.88.0/21 maxlen: 21
84.214.16.0/20 maxlen: 20
46.212.0.0/20 maxlen: 20
46.212.16.0/20 maxlen: 20
80.239.0.0/17 maxlen: 17
46.212.48.0/20 maxlen: 20
84.210.128.0/20 maxlen: 20
188.126.197.0/24 maxlen: 24
84.213.128.0/20 maxlen: 20
188.126.200.0/21 maxlen: 21
84.213.144.0/20 maxlen: 20
84.214.114.0/24 maxlen: 24
2a02:228::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 19 Mar 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e9:52:76:5b:22:26:86:c6:d6:2e:41:05:f9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Jan 1 22:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab9c66afe9af43a856cb14067d2070fc801e623f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:38:ea:6f:d6:46:2e:da:b6:b9:98:23:3c:70:
1d:19:61:9a:43:3c:d5:29:7f:8b:ae:a9:f2:1d:56:
73:7c:d5:fc:0c:6f:d6:b3:0c:d7:0a:b3:21:db:e6:
50:a4:13:a5:58:6e:fb:57:ba:a6:5e:3a:52:fe:6e:
56:78:fa:47:36:df:4f:db:03:b6:23:ca:83:c5:c5:
93:a3:a2:f5:56:f8:b7:e6:bd:2a:e5:b6:14:ff:bd:
37:f7:ad:c8:56:0b:a0:e5:6b:7e:11:cc:fa:7e:8f:
ba:50:f9:0e:ec:00:48:e3:f3:77:a6:46:cd:00:9b:
e4:5b:3a:c1:47:0f:eb:0f:8e:0a:c7:de:88:9e:0d:
7b:fb:f0:78:10:22:14:95:50:cd:ee:c3:68:4a:a8:
15:18:0c:fb:97:7e:2c:8a:6d:82:40:1c:b2:7f:5f:
cb:e8:1f:53:01:3b:bb:cd:bc:45:0e:0e:49:99:b9:
42:fc:e8:18:c8:67:8f:88:93:e4:df:10:d4:88:cf:
a3:08:69:23:66:f1:9f:2b:cf:19:a4:31:5a:b3:5b:
aa:25:05:49:2c:09:96:e7:5d:58:ca:d2:16:02:2a:
65:18:6f:eb:7e:4d:de:fa:65:d3:65:28:36:04:3c:
8b:c7:e4:09:3b:57:1c:6c:0c:59:bf:39:d1:5e:95:
ed:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9C:66:AF:E9:AF:43:A8:56:CB:14:06:7D:20:70:FC:80:1E:62:3F
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/q5xmr-mvQ6hWyxQGfSBw_IAeYj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.212.0.0/19
46.212.48.0-46.212.95.255
80.239.0.0/17
84.210.128.0/20
84.213.128.0/19
84.214.0.0-84.214.47.255
84.214.114.0/24
84.214.192.0/23
188.126.197.0/24
188.126.200.0/21
IPv6:
2a02:228::/29
Signature Algorithm: sha256WithRSAEncryption
0d:5a:4d:c8:98:8c:36:e2:5c:a7:c1:2e:5c:a3:3e:87:65:c8:
1f:55:9d:88:ba:09:b5:ee:ab:80:fd:2a:0e:63:49:fb:80:70:
29:87:57:af:6b:56:48:99:2b:46:14:41:02:8b:b8:36:23:bd:
9d:d3:f2:1e:4c:d6:db:5b:11:76:f1:a3:73:ab:d5:9f:da:96:
f9:5a:d6:a3:76:6c:54:f8:4d:67:87:72:31:94:fc:07:ee:53:
9d:2c:ce:a0:df:47:38:6b:cf:2a:d5:5c:45:04:09:9e:c4:62:
cf:73:04:8b:b0:c3:2d:99:c4:c0:e1:30:6a:a3:0b:bb:1c:39:
98:76:95:be:ab:31:0c:b4:86:e3:4b:09:d4:b6:c8:89:93:3f:
f2:ad:7e:fc:3d:ae:a5:c8:c5:85:0f:71:45:06:ee:d8:66:8f:
41:af:ed:9c:3a:36:08:65:6f:88:3d:af:bd:23:39:a0:10:86:
53:ae:e0:b5:9a:2c:db:d4:73:09:c4:e4:46:1c:70:f4:43:38:
d0:69:c5:19:c2:85:4d:25:2b:ef:01:10:db:04:c3:ee:b1:70:
f7:e8:17:3f:6a:a2:3e:bf:18:aa:15:ea:c7:66:82:73:99:22:
26:7a:a4:09:cc:5d:41:46:78:37:e2:3c:bd:f5:c7:40:30:99:
63:02:0e:cf
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYzHJulSdlsiJobG1i5BBfn2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMjQzZGNmZjBjYjM4MjExZjdmZTdkYjNmOTEzMTY5YjQ0
Y2Y0NTYwHhcNMjQwMTAxMjIzMTA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjljNjZhZmU5YWY0M2E4NTZjYjE0MDY3ZDIwNzBmYzgwMWU2MjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zjqb9ZGLtq2uZgjPHAdGWGaQzzV
KX+LrqnyHVZzfNX8DG/WswzXCrMh2+ZQpBOlWG77V7qmXjpS/m5WePpHNt9P2wO2
I8qDxcWTo6L1Vvi35r0q5bYU/703963IVgug5Wt+Ecz6fo+6UPkO7ABI4/N3pkbN
AJvkWzrBRw/rD44Kx96Ing17+/B4ECIUlVDN7sNoSqgVGAz7l34sim2CQByyf1/L
6B9TATu7zbxFDg5JmblC/OgYyGePiJPk3xDUiM+jCGkjZvGfK88ZpDFas1uqJQVJ
LAmW511YytIWAiplGG/rfk3e+mXTZSg2BDyLx+QJO1ccbAxZvznRXpXt1wIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFKucZq/pr0OoVssUBn0gcPyAHmI/MB8GA1UdIwQY
MBaAFK0kPc/wyzghH3/n2z+RMWm0TPRWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMt
YjlmMjk4YTc5OGU0LzEvcTV4bXItbXZRNmhXeXhRR2ZTQndfSUFlWWo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMtYjlmMjk4YTc5OGU0
LzEvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBRBAIAATBLAwQFLtQAMAwD
BAQu1DADBAUu1EADBAdQ7wADBARU0oADBAVU1YAwCwMDAVTWAwQEVNYgAwQAVNZy
AwQBVNbAAwQAvH7FAwQDvH7IMA0EAgACMAcDBQMqAgIoMA0GCSqGSIb3DQEBCwUA
A4IBAQANWk3ImIw24lynwS5coz6HZcgfVZ2Iugm17quA/SoOY0n7gHAph1eva1ZI
mStGFEECi7g2I72d0/IeTNbbWxF28aNzq9Wf2pb5WtajdmxU+E1nh3IxlPwH7lOd
LM6g30c4a88q1VxFBAmexGLPcwSLsMMtmcTA4TBqowu7HDmYdpW+qzEMtIbjSwnU
tsiJkz/yrX78Pa6lyMWFD3FFBu7YZo9Br+2cOjYIZW+IPa+9IzmgEIZTruC1mizb
1HMJxORGHHD0QzjQacUZwoVNJSvvARDbBMPusXD36Bc/aqI+vxiqFerHZoJzmSIm
eqQJzF1BRng34jy99cdAMJljAg7P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org