Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/qmR75ioR9m7FofszvHMe_bdGDv4.roa
File: qmR75ioR9m7FofszvHMe_bdGDv4.roa (raw, json)
Hash identifier: VeHYG5Fog68iy1Mz3zRS53aywxpDeI5/CQvAxE3Sr28=
Subject key identifier: AA:64:7B:E6:2A:11:F6:6E:C5:A1:FB:33:BC:73:1E:FD:B7:46:0E:FE
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018D0DD27A342B0830233755EB1A77F7222A
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/qmR75ioR9m7FofszvHMe_bdGDv4.roa
Signing time: Mon 15 Jan 2024 15:51:54 +0000
ROA not before: Mon 15 Jan 2024 15:51:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200736
IP address blocks: 95.164.176.0/20 maxlen: 24
94.131.151.0/24 maxlen: 24
94.131.150.0/24 maxlen: 24
94.131.149.0/24 maxlen: 24
94.131.148.0/24 maxlen: 24
94.131.152.0/24 maxlen: 24
94.131.147.0/24 maxlen: 24
94.131.146.0/24 maxlen: 24
94.131.157.0/24 maxlen: 24
94.131.156.0/24 maxlen: 24
94.131.155.0/24 maxlen: 24
94.131.159.0/24 maxlen: 24
94.131.158.0/24 maxlen: 24
94.131.154.0/24 maxlen: 24
94.131.153.0/24 maxlen: 24
94.131.161.0/24 maxlen: 24
94.131.160.0/24 maxlen: 24
94.131.163.0/24 maxlen: 24
94.131.162.0/24 maxlen: 24
94.131.166.0/24 maxlen: 24
94.131.165.0/24 maxlen: 24
94.131.170.0/24 maxlen: 24
94.131.172.0/24 maxlen: 24
94.131.167.0/24 maxlen: 24
94.131.173.0/24 maxlen: 24
94.131.128.0/19 maxlen: 24
94.131.130.0/24 maxlen: 24
94.131.132.0/24 maxlen: 24
94.131.131.0/24 maxlen: 24
94.131.133.0/24 maxlen: 24
94.131.137.0/24 maxlen: 24
94.131.136.0/24 maxlen: 24
94.131.135.0/24 maxlen: 24
94.131.134.0/24 maxlen: 24
94.131.139.0/24 maxlen: 24
94.131.138.0/24 maxlen: 24
94.131.144.0/23 maxlen: 23
94.131.144.0/24 maxlen: 24
94.131.143.0/24 maxlen: 24
94.131.142.0/24 maxlen: 24
94.131.141.0/24 maxlen: 24
94.131.145.0/24 maxlen: 24
94.131.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jan 2024 23:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:d2:7a:34:2b:08:30:23:37:55:eb:1a:77:f7:22:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 15 15:51:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa647be62a11f66ec5a1fb33bc731efdb7460efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3a:5a:ca:c4:db:bf:23:66:7c:c1:ca:5b:14:
88:0c:47:08:6a:4b:5f:07:bd:f2:47:e3:7b:8c:58:
47:3b:71:d8:ea:96:06:fb:6e:57:d2:d0:47:a9:83:
c1:e2:2c:31:b2:4f:f0:e5:b4:10:3f:d4:7e:ed:94:
a4:11:c3:4f:c3:63:6c:b5:35:33:ab:4b:98:38:69:
17:ef:d4:08:d2:00:ab:f6:80:65:8e:6a:15:ef:fd:
0a:3a:cf:98:1f:31:70:66:c2:96:c9:3b:60:b7:57:
b2:69:81:57:a3:45:fc:5a:d9:8a:66:20:28:0b:44:
15:78:7d:2a:39:a3:b6:3f:30:e5:45:40:63:7b:1a:
7f:b1:5e:d4:1b:57:6a:7d:75:49:7d:83:2f:4c:5c:
31:3e:4e:75:87:70:4e:1f:09:2e:99:dc:e0:b6:5a:
bd:f5:7e:e2:16:e2:da:54:25:23:45:8d:ba:47:4d:
b8:9d:d9:2f:51:a6:80:7d:e6:f0:50:34:49:57:e2:
79:20:c6:22:c1:64:d5:65:dd:d4:bf:d5:1f:67:d9:
9c:84:d0:66:59:97:4c:52:b4:87:24:08:7c:48:14:
fd:7b:7f:2f:98:51:63:5f:e9:c7:1f:63:8a:5c:51:
73:0d:c5:ba:c4:8a:4e:91:a3:e7:1e:b0:53:e2:6c:
2d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:64:7B:E6:2A:11:F6:6E:C5:A1:FB:33:BC:73:1E:FD:B7:46:0E:FE
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/qmR75ioR9m7FofszvHMe_bdGDv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.128.0-94.131.163.255
94.131.165.0-94.131.167.255
94.131.170.0/24
94.131.172.0/23
95.164.176.0/20
Signature Algorithm: sha256WithRSAEncryption
33:33:b1:89:e2:7f:87:33:ae:2e:6e:63:bc:a8:65:4b:74:8c:
be:60:34:67:35:59:d2:65:d5:ce:2a:90:64:b0:84:7a:38:a1:
67:3d:bf:7c:13:81:16:ca:aa:2c:14:a6:20:5f:c4:e2:11:32:
d7:85:c8:7a:9a:53:04:50:94:38:b1:73:d8:16:7b:65:44:8c:
9c:5e:1a:a4:ef:7d:d5:e3:a2:41:d4:01:22:53:44:e6:e0:12:
b3:b3:87:69:3c:db:90:ff:ec:ee:cc:dd:a5:f5:78:6b:9b:02:
95:92:ee:e4:77:ff:72:b4:41:46:22:f9:7c:d2:bd:79:87:cf:
07:9c:51:d7:e3:b4:c2:61:91:ba:d3:28:77:4e:bc:ef:27:4a:
f7:b6:12:36:ff:69:67:cc:59:6b:61:c7:c9:5c:f6:24:0c:fe:
1c:e1:63:8a:8a:08:56:e4:54:fb:00:5a:3b:78:c8:b8:94:f7:
97:3e:8f:60:04:52:3d:b5:79:19:b3:0d:d6:d4:02:ac:38:dd:
eb:4e:22:97:5f:06:06:88:cf:cf:e7:93:8f:0e:9d:3d:a5:70:
c6:10:c9:a5:ee:3e:f2:3a:ff:4c:63:df:9d:2c:07:97:61:ef:
eb:b3:c5:11:5f:98:d5:b1:b7:bb:07:6f:32:38:bf:33:cc:46:
c5:16:99:6b
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAY0N0no0KwgwIzdV6xp39yIqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjQwMTE1MTU1MTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTY0N2JlNjJhMTFmNjZlYzVhMWZiMzNiYzczMWVmZGI3NDYwZWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jpaysTbvyNmfMHKWxSIDEcIaktf
B73yR+N7jFhHO3HY6pYG+25X0tBHqYPB4iwxsk/w5bQQP9R+7ZSkEcNPw2NstTUz
q0uYOGkX79QI0gCr9oBljmoV7/0KOs+YHzFwZsKWyTtgt1eyaYFXo0X8WtmKZiAo
C0QVeH0qOaO2PzDlRUBjexp/sV7UG1dqfXVJfYMvTFwxPk51h3BOHwkumdzgtlq9
9X7iFuLaVCUjRY26R024ndkvUaaAfebwUDRJV+J5IMYiwWTVZd3Uv9UfZ9mchNBm
WZdMUrSHJAh8SBT9e38vmFFjX+nHH2OKXFFzDcW6xIpOkaPnHrBT4mwtrwIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFKpke+YqEfZuxaH7M7xzHv23Rg7+MB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvcW1SNzVpb1I5bTdGb2ZzenZITWVfYmRHRHY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAdeg4AD
BAJeg6AwDAMEAF6DpQMEA16DoAMEAF6DqgMEAV6DrAMEBF+ksDANBgkqhkiG9w0B
AQsFAAOCAQEAMzOxieJ/hzOuLm5jvKhlS3SMvmA0ZzVZ0mXVziqQZLCEejihZz2/
fBOBFsqqLBSmIF/E4hEy14XIeppTBFCUOLFz2BZ7ZUSMnF4apO991eOiQdQBIlNE
5uASs7OHaTzbkP/s7szdpfV4a5sClZLu5Hf/crRBRiL5fNK9eYfPB5xR1+O0wmGR
utMod0687ydK97YSNv9pZ8xZa2HHyVz2JAz+HOFjiooIVuRU+wBaO3jIuJT3lz6P
YARSPbV5GbMN1tQCrDjd604il18GBojPz+eTjw6dPaVwxhDJpe4+8jr/TGPfnSwH
l2Hv67PFEV+Y1bG3uwdvMji/M8xGxRaZaw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org