Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tqh6lBsX0g_w0aigi5ix17J9qTA.roa
File: tqh6lBsX0g_w0aigi5ix17J9qTA.roa (raw, json)
Hash identifier: FZu+FCuLVYlHTlWu6CQcxWhyGHh6J5LL1cQNlxNdteI=
Subject key identifier: B6:A8:7A:94:1B:17:D2:0F:F0:D1:A8:A0:8B:98:B1:D7:B2:7D:A9:30
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018B9CFA10F6A43298946022DFCDDEF908C4
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tqh6lBsX0g_w0aigi5ix17J9qTA.roa
Signing time: Sun 05 Nov 2023 00:55:15 +0000
ROA not before: Sun 05 Nov 2023 00:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.144.182.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9c:fa:10:f6:a4:32:98:94:60:22:df:cd:de:f9:08:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 5 00:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6a87a941b17d20ff0d1a8a08b98b1d7b27da930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:46:48:40:44:26:45:2f:df:a3:a7:92:f4:7a:
b2:ba:a2:e2:ea:38:3b:64:b5:6f:fa:55:ae:e8:8a:
af:c5:da:fa:75:b3:dd:58:a3:c4:51:78:31:46:65:
2a:f8:9a:43:00:9e:d1:46:20:8c:22:1f:ee:44:5e:
99:d9:14:86:e8:14:af:d3:d1:b4:6a:8b:91:fd:a9:
9a:e6:3d:a9:a3:d0:03:d7:d2:2b:fb:47:26:5b:17:
cd:2a:c4:88:08:d4:52:32:ab:ba:d0:0d:c1:49:5f:
70:3f:1d:2f:36:d7:8c:89:d2:0d:0a:c2:5d:0f:14:
28:15:97:56:a0:ec:c5:3e:6e:28:1b:95:ea:48:66:
33:4f:62:e4:86:5b:aa:ce:36:26:a1:ce:84:56:f3:
62:45:17:2a:d0:26:3c:e7:85:8b:7d:0c:d7:14:4e:
92:08:fc:1d:a4:76:33:9a:f7:35:12:d1:fc:b0:b7:
6f:d3:e7:65:a3:ba:46:08:31:ab:2a:42:f9:a4:bc:
b0:dd:d9:aa:48:00:40:e3:a0:41:40:6b:2c:4d:0a:
de:02:4d:f0:45:1f:13:87:da:b4:36:c9:9a:ac:ce:
1e:db:f7:29:8c:46:8f:06:76:c0:4b:21:1b:0f:0a:
1a:d8:1f:c6:66:ff:7b:85:d2:b4:60:73:20:dd:23:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A8:7A:94:1B:17:D2:0F:F0:D1:A8:A0:8B:98:B1:D7:B2:7D:A9:30
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/tqh6lBsX0g_w0aigi5ix17J9qTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.182.0/23
5.178.96.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.109.0-5.178.110.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:4c:9a:1a:36:70:39:18:67:0f:f7:4c:71:cf:1d:1f:8b:3f:
ec:f4:b2:eb:a8:d2:70:f0:30:83:07:fa:4c:3f:1f:45:ac:7f:
fa:d2:b8:73:cc:7b:d1:46:0d:8b:df:9c:94:5d:bc:9c:c1:a2:
08:c2:47:0c:c7:a6:e3:ac:09:d8:d7:08:d1:ff:c8:a4:a2:96:
18:9e:75:d1:b4:9f:df:4f:5e:ff:c4:44:9b:05:d5:cc:c1:0e:
a6:9d:97:1a:39:23:12:4e:82:aa:06:c0:ed:b8:bf:c0:01:c8:
a7:2e:dc:44:aa:51:d5:7a:5d:bd:1d:41:eb:e7:c9:e8:69:fa:
95:0d:1f:ff:ef:b4:69:e8:35:32:44:b6:95:c8:29:e0:d4:f2:
1c:da:ea:53:8f:a8:03:d9:f6:90:ef:9c:47:12:6b:df:c3:55:
85:28:18:c0:f7:5f:8a:9c:d9:09:3c:5f:dd:4a:07:11:d5:04:
da:fe:97:ba:b0:fa:a6:5d:56:9d:37:b2:92:c2:da:b6:0e:d6:
5b:6f:3f:1e:9d:23:90:91:38:bb:55:fb:b4:c8:35:96:29:63:
33:39:cc:a4:44:20:57:3d:c1:51:b3:24:19:02:50:5b:f6:7d:
e6:b0:23:a1:8c:e9:1c:d3:5d:2d:09:83:ab:0b:77:13:ca:ff:
63:17:fa:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 18:22:37 2023 by rpki-client on console-fra.rpki-client.org