Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4QBDx-1eSi0jczm6EJQRA8hjoNo.roa
File: 4QBDx-1eSi0jczm6EJQRA8hjoNo.roa (raw, json)
Hash identifier: DiZ6eXihg254lTfAzqxjxnXrOyIw/oHLkxxCiSU7lUU=
Subject key identifier: E1:00:43:C7:ED:5E:4A:2D:23:73:39:BA:10:94:11:03:C8:63:A0:DA
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01880C027C24CEA0E22255DFE599EA57D82C
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4QBDx-1eSi0jczm6EJQRA8hjoNo.roa
Signing time: Thu 11 May 2023 18:11:09 +0000
ROA not before: Thu 11 May 2023 18:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
91.246.192.0/22 maxlen: 24
77.36.57.0/24 maxlen: 24
77.36.60.0/24 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
77.36.65.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
91.246.217.0/24 maxlen: 24
81.161.8.0/22 maxlen: 22
37.97.121.0/24 maxlen: 24
37.97.120.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
64.43.120.0/22 maxlen: 24
91.233.200.0/24 maxlen: 24
176.115.236.0/22 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
91.200.132.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
91.238.39.0/24 maxlen: 24
176.116.228.0/24 maxlen: 24
91.239.222.0/23 maxlen: 23
176.116.236.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.224.212.0/24 maxlen: 24
91.232.226.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
91.236.76.0/24 maxlen: 24
46.173.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 07 Jun 2023 12:53:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0c:02:7c:24:ce:a0:e2:22:55:df:e5:99:ea:57:d8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 11 18:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e10043c7ed5e4a2d237339ba10941103c863a0da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ad:a5:2c:a9:37:80:cb:80:ad:f8:54:33:a4:
3c:53:95:0c:14:3b:c6:ef:26:7e:0d:6f:58:a9:88:
a4:ac:fb:64:ae:9f:aa:a5:1d:fb:39:e3:a0:8e:a2:
cf:5b:9c:21:e5:6a:0f:5c:2f:2a:31:6c:8d:29:2b:
bd:a4:67:ba:b0:11:7d:b1:9c:b3:5b:0c:c6:f2:57:
59:27:a9:2f:81:10:29:9b:18:b8:cf:d3:92:dc:d5:
fe:5a:aa:ca:8c:d2:05:e1:bd:f6:c4:01:01:f4:b5:
9f:f6:f7:68:38:db:bb:21:b4:8b:7c:f7:5b:8c:13:
64:77:dd:62:68:ea:85:7f:25:4e:e7:28:bf:ac:f0:
a2:bb:34:69:9a:e1:35:db:68:29:de:06:8c:94:0d:
69:25:b7:ed:a2:ed:ba:cb:c2:32:19:e2:dd:d8:e7:
32:6b:1a:53:8d:22:be:f6:dc:1c:d7:a9:f2:8a:dc:
6f:39:7f:75:7d:51:61:ad:88:97:33:b4:02:e4:b7:
07:eb:3c:40:4f:a9:fc:00:42:9d:99:d7:66:f5:7b:
da:bf:6f:69:67:d3:b9:33:c4:bc:66:84:4a:3d:a1:
41:31:76:ae:b7:21:d3:39:f0:65:9d:f2:f6:f0:10:
b7:8a:ac:a4:37:f3:03:e3:cc:3a:13:d0:46:28:b2:
18:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:00:43:C7:ED:5E:4A:2D:23:73:39:BA:10:94:11:03:C8:63:A0:DA
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4QBDx-1eSi0jczm6EJQRA8hjoNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
77.36.57.0/24
77.36.60.0/24
77.36.65.0/24
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.132.0/24
91.200.134.0/23
91.224.212.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.222.0/23
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
91.246.217.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
04:d6:0a:41:92:09:aa:e3:7f:73:1f:b8:c8:61:bc:8a:c2:8d:
80:ab:18:bf:bb:25:73:78:a1:d0:de:80:42:96:5e:57:cb:0b:
ff:d6:b4:50:87:05:32:84:2d:33:51:19:6f:a3:92:f2:f9:83:
6f:48:58:f9:40:92:f9:9d:6e:b8:00:31:a5:6e:2d:7c:5a:69:
4e:82:50:12:d9:7f:e4:10:de:8a:22:a4:95:17:98:fb:34:3c:
5f:5a:5a:c0:99:1d:a4:df:a5:e6:2f:75:5c:d3:6f:c1:2c:e5:
65:75:70:5e:16:0a:83:cd:87:b2:e5:95:50:86:4f:ea:a5:7b:
35:08:c5:ab:78:8e:ba:36:c5:e3:c7:60:ff:55:8c:23:ec:14:
e8:ca:2d:95:67:59:9d:d1:2e:13:09:ee:63:3d:93:d1:59:0c:
d6:6f:7d:2f:cd:07:eb:9c:82:dd:b4:62:71:c3:47:0f:39:8d:
24:20:3e:16:6d:2c:82:09:16:18:ce:fd:7a:0e:00:5b:cf:65:
26:e2:34:3d:74:17:5c:31:66:a4:e3:65:89:1e:cc:9f:a6:53:
83:fc:e9:35:81:ed:d0:43:62:d8:ee:4c:96:9c:e9:d4:1c:92:
9a:56:10:46:f2:4a:e2:28:8f:40:49:14:14:8d:c0:bb:f1:fe:
34:5d:97:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org