Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QwtSnw42BjK1wgKDBo91kN1mT-0.roa
File: QwtSnw42BjK1wgKDBo91kN1mT-0.roa (raw, json)
Hash identifier: nWyeEXiB+jNdt3hCTra5NKFe6v4T/RW127iM7gc7sXo=
Subject key identifier: 43:0B:52:9F:0E:36:06:32:B5:C2:02:83:06:8F:75:90:DD:66:4F:ED
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018B18A395E2140991B6D2ACAEC6BCBB5CA0
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QwtSnw42BjK1wgKDBo91kN1mT-0.roa
Signing time: Tue 10 Oct 2023 08:10:55 +0000
ROA not before: Tue 10 Oct 2023 08:10:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.2.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.232.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.12.0/23 maxlen: 23
178.219.15.0/24 maxlen: 24
79.175.85.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 21:24:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:a3:95:e2:14:09:91:b6:d2:ac:ae:c6:bc:bb:5c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 10 08:10:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=430b529f0e360632b5c20283068f7590dd664fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:14:44:a9:0c:84:90:01:1b:e0:ca:51:83:
00:22:98:ca:83:bc:3b:1f:6d:9e:d6:09:cd:6a:f0:
4c:3a:3f:5a:e8:a9:7c:7b:cf:77:48:6c:1a:8a:60:
3d:e3:0e:e2:13:f2:b1:22:ac:8f:5e:bb:13:a6:97:
7f:dd:23:39:59:a9:4e:4c:b4:13:fb:0e:f2:61:76:
fa:f3:66:40:00:85:60:e8:77:60:fc:ad:d9:be:46:
90:df:a0:22:6b:90:88:7b:17:38:9d:c9:a9:8f:c3:
49:b9:5b:0e:57:12:14:a5:1e:48:cf:41:24:0f:98:
e4:6b:05:fa:71:83:ca:8b:bf:8e:ef:ea:cb:51:17:
04:66:26:06:8e:a6:dc:b0:3c:43:14:05:bd:db:02:
41:e0:08:ca:ce:ae:d1:7f:b4:ec:ff:a4:2e:18:bd:
05:22:d1:a8:9e:3b:1c:c5:e4:ec:c1:3b:bd:91:13:
b3:46:54:f6:e8:e2:b0:8c:6a:dc:24:d2:8b:e7:d1:
90:d6:7e:ae:b7:6a:a1:9f:46:ce:da:cd:54:14:b3:
75:1e:55:54:5c:1b:fb:0d:5e:86:62:08:28:33:05:
97:6d:3a:06:a4:16:71:37:96:57:8e:d1:4b:76:c1:
c6:8d:8a:4a:7c:2c:79:7c:1e:8e:55:98:92:cb:e6:
e6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0B:52:9F:0E:36:06:32:B5:C2:02:83:06:8F:75:90:DD:66:4F:ED
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/QwtSnw42BjK1wgKDBo91kN1mT-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.39.0/24
79.175.85.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.232.0/24
178.253.238.0/24
178.253.244.0-178.253.246.255
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.2.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
10:52:8e:83:ac:7b:9b:b0:8d:ed:98:a3:1b:0d:ba:ec:84:ec:
85:af:34:45:a6:44:d0:d2:86:26:9e:76:46:73:62:7c:1b:9b:
fb:b8:b4:1b:14:bb:f5:06:8c:45:15:47:f1:8b:15:71:58:0b:
61:96:cc:b1:0d:06:86:56:b9:fe:64:56:dd:54:0e:b1:6a:db:
19:cf:64:dc:98:67:96:28:9a:eb:5c:c7:dc:35:6e:55:11:ed:
05:d5:f4:e7:ef:80:2f:4c:29:63:70:13:56:b7:de:ac:89:60:
63:dd:21:22:d1:1c:b0:9a:53:0f:8a:fd:2b:de:3d:e9:39:de:
07:17:dd:1b:09:c4:9d:97:f7:66:1f:72:90:e3:6d:96:57:cd:
39:7a:75:cd:18:db:e3:c3:3b:25:be:f2:c6:6c:60:4d:70:d1:
a5:18:dc:b2:91:88:d2:9e:85:31:43:87:01:fe:b7:15:07:00:
9b:fe:f7:3a:e9:13:6b:3f:57:a8:e3:e8:5a:07:9f:a2:75:8b:
eb:35:97:90:5c:d4:5f:76:c4:ca:94:ed:b9:28:46:43:73:8a:
b2:e5:76:c6:28:c6:cd:67:82:85:b6:39:e5:05:61:a0:b0:84:
14:bc:72:bb:dc:9b:47:ec:97:58:05:2f:eb:9f:a0:bb:01:d3:
09:04:94:17
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgISAYsYo5XiFAmRttKsrsa8u1ygMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMxMDEwMDgxMDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzBiNTI5ZjBlMzYwNjMyYjVjMjAyODMwNjhmNzU5MGRkNjY0ZmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAicQURKkMhJABG+DKUYMAIpjKg7w7
H22e1gnNavBMOj9a6Kl8e893SGwaimA94w7iE/KxIqyPXrsTppd/3SM5WalOTLQT
+w7yYXb682ZAAIVg6Hdg/K3ZvkaQ36Aia5CIexc4ncmpj8NJuVsOVxIUpR5Iz0Ek
D5jkawX6cYPKi7+O7+rLURcEZiYGjqbcsDxDFAW92wJB4AjKzq7Rf7Ts/6QuGL0F
ItGonjscxeTswTu9kROzRlT26OKwjGrcJNKL59GQ1n6ut2qhn0bO2s1UFLN1HlVU
XBv7DV6GYggoMwWXbToGpBZxN5ZXjtFLdsHGjYpKfCx5fB6OVZiSy+bmnQIDAQAB
o4IDBjCCAwIwHQYDVR0OBBYEFEMLUp8ONgYytcICgwaPdZDdZk/tMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvUXd0U253NDJCaksxd2dLREJvOTFrTjFtVC0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBGgYIKwYBBQUHAQcBAf8EggEJMIIBBTCCAQEEAgABMIH6
AwQATWknAwQAT69VAwQAT694AwQAURIzMAwDBANREjgDBABREjoDBABREj8DBABd
ukEDBABduk0DBAFteTADBABteTUDBABteTcDBABt6bwDBACy2wIDBAKy2wQDBAGy
2wwDBACy2w8DBACy/dQwDAMEA7L92AMEALL92gMEAbL93AMEALL96AMEALL97jAM
AwQCsv30AwQAsv32AwQAvP+zAwQAvP++AwQBvP/AMAwDBAC8/8MDBAO8/8ADBAC8
/88DBAC8/9kDBAC8/+QDBAG8/+YDBAC8//0wDAMEAdRFAgMEAdRFBAMEANRFEwME
ANRFFQMEANRFHjANBgkqhkiG9w0BAQsFAAOCAQEAEFKOg6x7m7CN7ZijGw267ITs
ha80RaZE0NKGJp52RnNifBub+7i0GxS79QaMRRVH8YsVcVgLYZbMsQ0Ghla5/mRW
3VQOsWrbGc9k3Jhnliia61zH3DVuVRHtBdX05++AL0wpY3ATVrferIlgY90hItEc
sJpTD4r9K9496TneBxfdGwnEnZf3Zh9ykONtllfNOXp1zRjb48M7Jb7yxmxgTXDR
pRjcspGI0p6FMUOHAf63FQcAm/73OukTaz9XqOPoWgefonWL6zWXkFzUX3bEypTt
uShGQ3OKsuV2xijGzWeChbY55QVhoLCEFLxyu9ybR+yXWAUv65+guwHTCQSUFw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org