Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/QUra8Di1HT-x9DvVy5G5VHQ21uM.roa
File: QUra8Di1HT-x9DvVy5G5VHQ21uM.roa (raw, json)
Hash identifier: wF2RuCeOUI2QQg7zNNAvuEoL5u4Uc2/DLDJxk68sMg8=
Subject key identifier: 41:4A:DA:F0:38:B5:1D:3F:B1:F4:3B:D5:CB:91:B9:54:74:36:D6:E3
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018B4CEDD251F847C09FC135C05DA504154E
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/QUra8Di1HT-x9DvVy5G5VHQ21uM.roa
Signing time: Fri 20 Oct 2023 11:52:16 +0000
ROA not before: Fri 20 Oct 2023 11:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.254.150.0/24 maxlen: 24
178.254.164.0/24 maxlen: 24
178.254.166.0/24 maxlen: 24
178.254.160.0/23 maxlen: 23
178.254.162.0/24 maxlen: 24
5.172.32.0/24 maxlen: 24
178.254.167.0/24 maxlen: 24
178.254.178.0/24 maxlen: 24
178.254.174.0/24 maxlen: 24
178.254.173.0/24 maxlen: 24
178.254.185.0/24 maxlen: 24
109.111.255.0/24 maxlen: 24
89.23.94.0/23 maxlen: 23
109.111.242.0/24 maxlen: 24
109.111.241.0/24 maxlen: 24
109.111.249.0/24 maxlen: 24
109.111.251.0/24 maxlen: 24
89.23.64.0/24 maxlen: 24
185.157.45.0/24 maxlen: 24
185.157.46.0/24 maxlen: 24
185.157.47.0/24 maxlen: 24
89.23.72.0/23 maxlen: 23
89.23.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:ed:d2:51:f8:47:c0:9f:c1:35:c0:5d:a5:04:15:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Oct 20 11:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=414adaf038b51d3fb1f43bd5cb91b9547436d6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:c3:d5:55:79:83:04:90:ae:d7:5d:75:d1:
49:e6:c4:29:d6:20:61:4d:64:fa:11:4e:ae:36:6f:
0c:85:52:ea:7d:22:23:ac:85:60:ba:05:d0:c1:78:
0d:7c:9f:2b:36:b1:96:6b:f7:ee:5d:01:b3:ff:23:
1d:3d:40:36:05:79:98:1e:82:ba:8f:ba:ff:ad:5f:
cb:6b:73:4d:b3:8e:a0:81:09:fe:8c:3d:9a:86:61:
15:12:0a:b6:71:1c:5e:14:28:0d:f2:88:3f:6e:1d:
99:72:a1:4a:84:e2:02:54:3c:a9:bc:09:73:7e:cf:
1f:36:0f:66:25:24:62:09:55:a0:b0:f3:39:13:e8:
1f:bc:6d:1d:e9:c7:9f:c0:2d:c2:01:c6:ea:df:e9:
72:78:09:5f:0b:f0:10:74:7e:60:ec:d7:db:b3:18:
90:0c:9a:ab:78:fa:b2:94:2f:ad:07:82:44:a0:c7:
c1:b0:ad:37:53:81:b2:6d:26:ff:6a:54:36:a7:0b:
cf:ec:d7:0e:e9:d9:f4:f7:58:c6:eb:54:86:34:14:
ac:7f:58:7b:b8:56:b5:35:80:e8:86:ed:e9:2f:02:
6f:0b:17:6e:f1:71:51:74:0e:22:50:9b:4e:dc:b2:
8c:0b:69:eb:3d:c4:e0:57:80:fc:98:8d:ff:7a:7b:
90:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4A:DA:F0:38:B5:1D:3F:B1:F4:3B:D5:CB:91:B9:54:74:36:D6:E3
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/QUra8Di1HT-x9DvVy5G5VHQ21uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/24
89.23.64.0/24
89.23.72.0/23
89.23.91.0/24
89.23.94.0/23
109.111.241.0-109.111.242.255
109.111.249.0/24
109.111.251.0/24
109.111.255.0/24
178.254.150.0/24
178.254.160.0-178.254.162.255
178.254.164.0/24
178.254.166.0/23
178.254.173.0-178.254.174.255
178.254.178.0/24
178.254.185.0/24
185.157.45.0-185.157.47.255
Signature Algorithm: sha256WithRSAEncryption
75:14:59:e4:25:8d:0e:0d:a2:b8:0e:90:26:f2:6b:73:0f:9f:
85:3b:db:6d:6a:b3:98:58:74:73:5b:4e:b6:f8:a0:cf:88:22:
53:a3:9e:88:af:af:f6:a6:8c:93:f3:03:94:a4:8e:f1:8c:3c:
04:70:ed:55:96:2c:70:54:f1:86:76:e1:54:f2:dc:1b:a1:9d:
4f:5b:55:b6:83:ec:01:bb:f5:51:39:a4:21:f0:2a:97:b0:2d:
78:f0:5f:20:9b:ec:23:09:38:cc:ee:84:bd:74:5e:ed:d8:9f:
5b:d6:95:3c:ac:d5:8f:0d:6f:a7:d3:e3:9d:e9:b7:3c:af:2b:
ac:b4:0f:7e:5b:75:80:b0:88:ac:f2:b5:56:46:d6:65:97:b5:
9d:14:e5:2c:90:fc:f0:e2:aa:71:1a:ad:ab:bc:da:8b:4f:b3:
a8:9a:7f:e2:99:16:4e:97:2c:a9:a9:a5:45:b5:20:68:b0:5d:
37:f9:c9:1f:83:2a:d0:4f:fd:a5:ce:80:ea:28:16:98:b9:fa:
dd:b1:94:22:4f:c4:7d:ec:e3:95:2b:98:98:31:7b:5e:94:6c:
71:4e:8d:dd:c6:ad:b4:66:a0:f2:03:23:4d:65:3a:7e:58:2a:
30:9f:07:5d:c4:f6:6a:87:cb:6a:8d:da:35:ba:b9:fb:2e:ec:
27:cc:4a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org