Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/qyoXe82_E7vX6Y7egzPv8yaL4P8.roa
File: qyoXe82_E7vX6Y7egzPv8yaL4P8.roa (raw, json)
Hash identifier: Zb6uQKLCfnd6pwKxl362pwkgBpIhUAhPhdbQ3Mqr0Zs=
Subject key identifier: AB:2A:17:7B:CD:BF:13:BB:D7:E9:8E:DE:83:33:EF:F3:26:8B:E0:FF
Certificate issuer: /CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Certificate serial: 0185707071352C116883AFC4F07A5EFE695E
Authority key identifier: EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/qyoXe82_E7vX6Y7egzPv8yaL4P8.roa
Signing time: Mon 02 Jan 2023 03:04:55 +0000
ROA not before: Mon 02 Jan 2023 03:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48544
IP address blocks: 83.174.144.0/22 maxlen: 24
91.231.172.0/23 maxlen: 24
185.29.145.0/24 maxlen: 24
185.29.144.0/24 maxlen: 24
185.29.146.0/24 maxlen: 24
31.185.17.0/24 maxlen: 24
31.185.16.0/24 maxlen: 24
87.252.106.0/23 maxlen: 24
31.185.21.0/24 maxlen: 24
31.185.23.0/24 maxlen: 24
31.185.22.0/24 maxlen: 24
31.185.20.0/24 maxlen: 24
31.185.19.0/24 maxlen: 24
31.185.18.0/24 maxlen: 24
185.164.185.0/24 maxlen: 24
185.164.186.0/23 maxlen: 24
89.36.206.0/24 maxlen: 24
89.36.205.0/24 maxlen: 24
89.36.204.0/24 maxlen: 24
89.36.207.0/24 maxlen: 24
185.39.24.0/23 maxlen: 24
185.39.27.0/24 maxlen: 24
185.39.26.0/24 maxlen: 24
188.116.56.0/23 maxlen: 24
188.116.60.0/23 maxlen: 23
188.116.63.0/24 maxlen: 24
188.116.62.0/24 maxlen: 24
212.69.137.0/24 maxlen: 24
212.69.136.0/24 maxlen: 24
212.69.139.0/24 maxlen: 24
212.69.138.0/24 maxlen: 24
212.69.143.0/24 maxlen: 24
212.69.142.0/24 maxlen: 24
212.69.141.0/24 maxlen: 24
212.69.140.0/24 maxlen: 24
89.32.159.0/24 maxlen: 24
89.32.158.0/24 maxlen: 24
89.32.157.0/24 maxlen: 24
89.32.156.0/24 maxlen: 24
194.145.248.0/22 maxlen: 23
78.159.144.0/22 maxlen: 24
93.189.136.0/21 maxlen: 24
188.116.11.0/24 maxlen: 24
188.116.10.0/24 maxlen: 24
188.116.8.0/23 maxlen: 23
188.116.32.0/23 maxlen: 24
46.102.112.0/24 maxlen: 24
46.102.114.0/24 maxlen: 24
46.102.113.0/24 maxlen: 24
46.102.115.0/24 maxlen: 24
185.84.84.0/22 maxlen: 24
45.10.72.0/22 maxlen: 22
217.20.250.0/23 maxlen: 24
217.20.248.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:71:35:2c:11:68:83:af:c4:f0:7a:5e:fe:69:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Validity
Not Before: Jan 2 03:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab2a177bcdbf13bbd7e98ede8333eff3268be0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a6:a5:f2:2b:1b:d1:71:19:81:e2:f7:33:ab:
db:31:27:bc:37:0e:aa:13:ef:cf:55:b6:19:ca:a3:
a4:0a:82:23:ba:9c:e0:ff:bb:f6:a2:f6:8d:24:b2:
d1:a9:2b:2d:bc:8c:66:1f:a8:2d:3e:94:df:4e:dd:
f7:3d:9e:bd:90:96:e4:fb:2b:e2:b1:ed:06:cf:4b:
75:dd:20:3f:4b:01:cc:e2:56:ec:0d:59:3d:ec:b4:
88:4f:05:1b:8f:55:5b:ba:98:53:ba:00:3d:b4:a9:
76:d7:cb:30:ec:a2:84:51:a5:c5:28:8a:3d:d8:91:
dd:b6:00:fb:95:f1:84:3f:b4:e4:cd:1a:72:90:96:
55:04:bf:0c:53:37:03:16:ae:63:84:b6:76:5b:bd:
27:92:20:a6:89:7e:2b:91:48:f3:5f:8f:c4:6e:53:
2b:de:88:70:62:72:0a:29:95:ed:b6:59:e8:0a:fc:
01:3e:76:02:2f:02:ef:c5:6c:85:b3:b3:59:72:c0:
ab:c2:4e:d8:45:a2:20:59:06:68:02:6c:41:45:97:
4f:76:4e:56:be:2f:98:25:33:e8:81:25:25:0a:cc:
cf:a9:5f:49:4e:58:a3:66:7d:e5:54:b2:65:b4:28:
e4:4f:5e:54:d0:77:47:3f:63:30:cb:74:8e:6b:ac:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2A:17:7B:CD:BF:13:BB:D7:E9:8E:DE:83:33:EF:F3:26:8B:E0:FF
X509v3 Authority Key Identifier:
keyid:EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/qyoXe82_E7vX6Y7egzPv8yaL4P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/7jfTSGm8YLfZ54M19KMjgftyEOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.185.16.0/21
45.10.72.0/22
46.102.112.0/22
78.159.144.0/22
83.174.144.0/22
87.252.106.0/23
89.32.156.0/22
89.36.204.0/22
91.231.172.0/23
93.189.136.0/21
185.29.144.0-185.29.146.255
185.39.24.0/22
185.84.84.0/22
185.164.185.0-185.164.187.255
188.116.8.0/22
188.116.32.0/23
188.116.56.0/23
188.116.60.0/22
194.145.248.0/22
212.69.136.0/21
217.20.248.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:0b:47:83:76:cd:cc:ae:0a:45:ac:fa:57:c4:12:4b:6c:c3:
32:47:43:37:4b:f2:23:79:70:7f:3d:aa:47:e6:3c:f9:06:ac:
2a:d3:73:ce:78:10:dc:b8:b2:16:61:f4:57:17:e3:dc:b1:8a:
2d:2f:01:77:3a:a9:27:8f:b7:15:89:de:68:af:ef:43:5f:ad:
52:b1:13:fa:14:ba:16:a3:5a:80:6e:65:8d:e0:69:2f:60:00:
11:c0:17:db:42:dc:60:86:cb:f9:88:a1:53:c9:e0:90:d5:4c:
a7:02:50:74:a1:d2:d1:ee:f0:6a:94:b5:59:91:e2:d6:a2:c1:
2a:61:e4:2e:7d:48:04:31:7d:7f:54:28:94:f7:db:35:b8:de:
08:3d:bf:0b:32:9a:f8:51:4c:9c:38:62:d3:fc:d6:2f:4d:f7:
76:cf:c3:47:fa:29:01:66:de:64:03:00:4e:fe:83:84:1e:35:
8d:50:ae:43:aa:3d:9b:63:39:d8:87:64:37:fd:98:5d:bf:60:
7d:d5:a3:f0:a6:81:fb:ef:89:ba:95:72:6d:7d:96:bf:81:24:
c2:a7:54:5c:51:95:9a:48:c6:d7:7d:a1:7d:b1:8d:b5:19:85:
41:4f:cb:c6:9e:16:8b:ca:42:ad:52:43:9c:b6:6a:52:ae:82:
32:f3:36:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:14 2024 by rpki-client on console-fra.rpki-client.org