Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/q-C1Er62iUofjr0PHlM6ZM_pdEA.roa
File: q-C1Er62iUofjr0PHlM6ZM_pdEA.roa (raw, json)
Hash identifier: DCM8e+thGlY4LzjgqkMDXO6JtJC1tRYfZw45CnyaUCM=
Subject key identifier: AB:E0:B5:12:BE:B6:89:4A:1F:8E:BD:0F:1E:53:3A:64:CF:E9:74:40
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 018CC94E123ADD0917865719231009336FDC
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/q-C1Er62iUofjr0PHlM6ZM_pdEA.roa
Signing time: Tue 02 Jan 2024 08:33:06 +0000
ROA not before: Tue 02 Jan 2024 08:33:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57433
IP address blocks: 185.14.92.0/24 maxlen: 24
185.14.93.0/24 maxlen: 24
94.154.51.0/24 maxlen: 24
94.154.49.0/24 maxlen: 24
94.154.50.0/24 maxlen: 24
94.154.48.0/24 maxlen: 24
94.154.48.0/21 maxlen: 24
94.154.52.0/24 maxlen: 24
94.154.53.0/24 maxlen: 24
94.154.54.0/24 maxlen: 24
94.154.55.0/24 maxlen: 24
37.114.32.0/19 maxlen: 24
37.114.37.0/24 maxlen: 24
37.114.32.0/24 maxlen: 24
43.251.161.0/24 maxlen: 24
43.251.162.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
43.251.163.0/24 maxlen: 24
176.100.32.0/21 maxlen: 21
176.100.32.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
2a00:ccc1::/32 maxlen: 48
2a00:ccc1::/48 maxlen: 48
2a00:ccc0::/32 maxlen: 32
2a00:ccc1:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Mar 2024 17:22:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:12:3a:dd:09:17:86:57:19:23:10:09:33:6f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 2 08:33:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abe0b512beb6894a1f8ebd0f1e533a64cfe97440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:af:32:2d:f3:2a:e4:58:69:fb:4d:58:ec:4f:
44:ae:76:86:09:80:13:7a:9b:a6:0d:81:10:b8:b3:
0b:e2:03:65:f2:f4:c1:ad:4d:b8:61:b9:d8:dd:56:
c2:04:0c:10:d4:aa:7e:39:84:cd:9f:e6:cb:f9:5d:
e0:2d:71:49:71:e9:60:9d:e4:46:18:c1:df:19:5f:
bd:fb:0b:1e:5f:9e:cb:99:e6:ab:5d:cd:56:1c:73:
b7:dd:ae:89:7f:60:ba:01:8f:66:c8:d0:b3:14:4b:
30:b0:73:55:0e:06:cf:01:f6:72:50:83:94:3e:e4:
14:c9:94:92:e4:98:3f:0d:7a:b6:1e:bd:0e:8b:02:
95:fb:f4:c0:fa:97:4c:71:a7:c3:cb:85:a0:a9:a3:
c8:02:c8:99:13:56:23:60:f0:6f:bb:97:13:d3:1b:
6d:17:2e:55:b3:91:90:69:c3:2f:e0:ef:f9:ba:ad:
f8:cd:25:7b:b7:9a:91:45:d2:00:e9:29:7b:0a:1d:
00:1b:35:20:38:3b:f0:99:7c:5d:b1:b5:08:59:9d:
a1:b6:09:8b:0a:0f:dc:3c:d2:4a:57:25:ee:5b:24:
69:0e:9e:43:fb:22:9a:23:0b:9b:2d:91:88:04:11:
97:26:8e:17:cb:a0:16:9d:af:29:d2:d6:0c:f1:ea:
bb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E0:B5:12:BE:B6:89:4A:1F:8E:BD:0F:1E:53:3A:64:CF:E9:74:40
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/q-C1Er62iUofjr0PHlM6ZM_pdEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0/19
43.251.160.0/22
94.154.48.0/21
176.100.32.0/21
185.14.92.0/23
IPv6:
2a00:ccc0::/31
Signature Algorithm: sha256WithRSAEncryption
1e:99:ae:f5:7a:d8:61:0b:51:30:71:fd:3a:5e:de:30:20:a3:
dc:96:b0:f7:26:3a:4c:55:a6:e9:0a:da:66:a8:42:5a:98:ec:
e7:ae:be:c8:93:38:1f:b4:83:0a:61:fc:1d:4d:30:c2:bb:74:
5e:b1:fa:5f:89:ac:60:8d:a9:61:43:1f:d6:d6:33:21:13:12:
5b:9f:8a:94:00:a2:dd:ab:7d:95:f7:ce:04:64:e2:44:0b:ef:
96:8c:f2:3e:70:81:e0:09:05:e8:d6:48:c4:9a:fc:a0:ba:6c:
6d:15:7f:75:90:b4:cc:4b:85:c4:a2:14:17:70:36:88:7f:77:
89:ce:23:92:8a:23:af:95:1d:78:04:1c:a3:46:3c:ba:29:8f:
3a:f0:ec:bf:74:a2:27:22:d8:23:57:6d:2f:2d:6d:34:09:17:
5e:17:7d:b8:7c:ae:50:76:18:2a:ac:69:5a:ac:34:10:74:90:
2f:f3:08:a4:94:2e:36:8b:34:af:55:c0:3b:3d:bf:07:a6:99:
19:2a:0d:7a:25:33:e7:59:f1:85:d1:6f:5e:13:00:cf:86:da:
83:bb:d1:d5:3a:e2:6e:93:ff:97:54:ae:04:df:39:ae:0e:86:
3e:e2:fa:44:2a:fa:f3:c2:e9:1c:8a:31:2f:e5:2c:c1:81:b0:
48:7a:2c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org