Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/QxEJgQEQBz1IAgqvLkje5_kY2y0.roa
File: QxEJgQEQBz1IAgqvLkje5_kY2y0.roa (raw, json)
Hash identifier: kjrfYCsp3ZJVOda/6ZInoZ8VEidIQtYF7vjFXfxq8J4=
Subject key identifier: 43:11:09:81:01:10:07:3D:48:02:0A:AF:2E:48:DE:E7:F9:18:DB:2D
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0188DD44A7E3EBD045D53900EA674E6E8C6E
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/QxEJgQEQBz1IAgqvLkje5_kY2y0.roa
Signing time: Wed 21 Jun 2023 09:24:04 +0000
ROA not before: Wed 21 Jun 2023 09:24:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:44:a7:e3:eb:d0:45:d5:39:00:ea:67:4e:6e:8c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jun 21 09:24:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=431109810110073d48020aaf2e48dee7f918db2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7a:0b:f8:33:61:82:a6:2a:83:7f:45:74:9b:
27:97:12:41:33:d8:1e:49:a9:74:f2:1d:3b:04:e7:
1e:b8:6c:f6:64:6e:65:c0:4b:3c:10:a6:b4:9c:7f:
ea:19:79:02:06:b5:a9:38:c2:1b:43:60:66:55:3f:
7e:93:4a:31:66:da:fd:28:89:08:ad:1c:a0:51:1b:
2f:a6:50:7f:44:67:ec:c7:ea:24:a0:58:ea:e1:09:
63:f5:2c:5a:7a:e6:a2:d3:13:3a:97:9d:58:06:4a:
ae:4d:4d:08:e7:11:b6:1a:fe:e4:8c:ef:43:56:7c:
63:4a:7b:17:9a:c8:d0:74:d2:67:00:65:21:cb:41:
77:18:ac:8f:1e:4c:7a:9e:21:93:40:05:5f:38:a1:
f5:b6:7a:54:00:36:89:90:3f:02:49:17:a7:b3:7c:
24:5f:5e:7a:00:06:b8:0f:07:28:2e:0d:23:83:64:
ed:06:aa:d4:9e:a8:b4:e3:1f:e5:87:54:5c:23:d5:
4a:9f:09:65:4d:f9:bc:8d:6f:90:0e:e1:96:16:a5:
36:99:4b:93:58:13:22:45:62:97:6f:8b:0a:7f:e7:
1b:1a:96:27:2c:2e:19:7e:06:01:17:0c:97:d8:53:
ed:5e:fb:f8:c1:29:29:5c:3e:80:2d:67:87:35:1d:
4e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:11:09:81:01:10:07:3D:48:02:0A:AF:2E:48:DE:E7:F9:18:DB:2D
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/QxEJgQEQBz1IAgqvLkje5_kY2y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/24
45.89.54.0/23
45.93.8.0/22
45.159.248.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.123.255
193.43.147.0/24
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:da:f3:37:cc:bf:f4:6b:40:61:a9:fd:12:c6:6c:38:a6:cb:
c6:ed:c9:86:a5:e0:39:a5:00:88:15:cd:0f:83:d5:19:2e:7b:
81:35:a5:76:36:88:2f:45:b8:00:9a:d8:43:47:7b:d5:6d:dd:
24:06:cf:dd:41:bc:b1:66:4f:e3:c1:2e:3c:76:c6:53:05:65:
0d:66:8f:8d:79:24:52:9e:16:fe:fa:32:36:b7:6a:3c:75:62:
2c:5d:b9:74:21:12:1e:e8:d7:9b:fa:15:01:00:19:ef:ca:52:
42:bc:da:78:8c:3f:fb:e5:27:f2:6f:17:f1:c4:65:70:a6:89:
e6:f0:3b:a0:36:39:17:32:87:22:31:4e:32:ec:ad:b6:be:2b:
db:e6:32:dd:d9:27:5d:6f:92:b5:46:80:74:a5:9e:11:61:b1:
2d:5a:02:ef:31:e4:00:26:20:68:5c:32:f0:bc:3c:e0:8c:93:
53:1a:10:77:8a:22:6d:60:98:72:49:dc:86:38:59:13:17:25:
81:e6:38:6c:8b:b9:83:45:db:e5:95:5b:46:47:8b:e6:32:5a:
68:22:58:a7:86:89:77:85:9f:5d:5f:c2:6d:4f:11:ad:04:8e:
7c:33:7d:4e:38:d4:6a:32:ed:91:53:37:04:8c:b7:01:6d:78:
a6:c5:10:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org