Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/QonR2EWh2F08D4yd7rPL-7q-MN0.roa
File: QonR2EWh2F08D4yd7rPL-7q-MN0.roa (raw, json)
Hash identifier: 1QG9XNZdjch0De4lgnwPY/TVtvLZdzbMtcCf56stwn4=
Subject key identifier: 42:89:D1:D8:45:A1:D8:5D:3C:0F:8C:9D:EE:B3:CB:FB:BA:BE:30:DD
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: 01922932D0F1CA7459EDB2699BD5CD1DD0E1
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/QonR2EWh2F08D4yd7rPL-7q-MN0.roa
Signing time: Wed 25 Sep 2024 12:40:48 +0000
ROA not before: Wed 25 Sep 2024 12:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39010
IP address blocks: 5.57.3.0/24 maxlen: 24
5.57.4.0/24 maxlen: 24
5.57.5.0/24 maxlen: 24
5.57.6.0/24 maxlen: 24
5.57.7.0/24 maxlen: 24
78.108.160.0/24 maxlen: 24
78.108.161.0/24 maxlen: 24
78.108.162.0/24 maxlen: 24
78.108.163.0/24 maxlen: 24
78.108.164.0/24 maxlen: 24
78.108.165.0/24 maxlen: 24
78.108.166.0/24 maxlen: 24
78.108.167.0/24 maxlen: 24
78.108.169.0/24 maxlen: 24
78.108.170.0/24 maxlen: 24
78.108.171.0/24 maxlen: 24
78.108.172.0/24 maxlen: 24
78.108.174.0/24 maxlen: 24
78.108.175.0/24 maxlen: 24
85.112.64.0/24 maxlen: 24
85.112.65.0/24 maxlen: 24
85.112.66.0/24 maxlen: 24
85.112.67.0/24 maxlen: 24
85.112.69.0/24 maxlen: 24
85.112.70.0/24 maxlen: 24
85.112.71.0/24 maxlen: 24
85.112.72.0/24 maxlen: 24
85.112.74.0/24 maxlen: 24
85.112.75.0/24 maxlen: 24
85.112.76.0/24 maxlen: 24
85.112.77.0/24 maxlen: 24
85.112.78.0/24 maxlen: 24
85.112.82.0/24 maxlen: 24
85.112.83.0/24 maxlen: 24
85.112.84.0/24 maxlen: 24
85.112.85.0/24 maxlen: 24
85.112.86.0/24 maxlen: 24
85.112.87.0/24 maxlen: 24
85.112.88.0/24 maxlen: 24
85.112.89.0/24 maxlen: 24
85.112.90.0/24 maxlen: 24
85.112.91.0/24 maxlen: 24
85.112.92.0/24 maxlen: 24
85.112.93.0/24 maxlen: 24
85.112.94.0/24 maxlen: 24
85.112.95.0/24 maxlen: 24
146.185.32.0/24 maxlen: 24
146.185.33.0/24 maxlen: 24
146.185.34.0/24 maxlen: 24
146.185.35.0/24 maxlen: 24
146.185.36.0/24 maxlen: 24
146.185.37.0/24 maxlen: 24
146.185.38.0/24 maxlen: 24
146.185.39.0/24 maxlen: 24
185.54.60.0/24 maxlen: 24
185.54.61.0/24 maxlen: 24
185.54.62.0/24 maxlen: 24
185.54.63.0/24 maxlen: 24
212.98.129.0/24 maxlen: 24
212.98.130.0/24 maxlen: 24
212.98.131.0/24 maxlen: 24
212.98.132.0/24 maxlen: 24
212.98.133.0/24 maxlen: 24
212.98.135.0/24 maxlen: 24
212.98.136.0/24 maxlen: 24
212.98.137.0/24 maxlen: 24
212.98.138.0/24 maxlen: 24
212.98.139.0/24 maxlen: 24
212.98.140.0/24 maxlen: 24
212.98.141.0/24 maxlen: 24
212.98.142.0/24 maxlen: 24
212.98.143.0/24 maxlen: 24
212.98.144.0/24 maxlen: 24
212.98.145.0/24 maxlen: 24
212.98.146.0/24 maxlen: 24
212.98.147.0/24 maxlen: 24
212.98.148.0/24 maxlen: 24
212.98.149.0/24 maxlen: 24
212.98.150.0/24 maxlen: 24
212.98.151.0/24 maxlen: 24
212.98.152.0/24 maxlen: 24
212.98.153.0/24 maxlen: 24
212.98.154.0/24 maxlen: 24
212.98.155.0/24 maxlen: 24
212.98.156.0/24 maxlen: 24
212.98.157.0/24 maxlen: 24
212.98.158.0/24 maxlen: 24
212.98.159.0/24 maxlen: 24
213.204.64.0/24 maxlen: 24
213.204.65.0/24 maxlen: 24
213.204.66.0/24 maxlen: 24
213.204.67.0/24 maxlen: 24
213.204.68.0/24 maxlen: 24
213.204.69.0/24 maxlen: 24
213.204.70.0/24 maxlen: 24
213.204.71.0/24 maxlen: 24
213.204.72.0/24 maxlen: 24
213.204.73.0/24 maxlen: 24
213.204.74.0/24 maxlen: 24
213.204.75.0/24 maxlen: 24
213.204.76.0/23 maxlen: 23
213.204.76.0/24 maxlen: 24
213.204.77.0/24 maxlen: 24
213.204.78.0/24 maxlen: 24
213.204.79.0/24 maxlen: 24
213.204.80.0/24 maxlen: 24
213.204.81.0/24 maxlen: 24
213.204.82.0/24 maxlen: 24
213.204.83.0/24 maxlen: 24
213.204.84.0/24 maxlen: 24
213.204.85.0/24 maxlen: 24
213.204.86.0/24 maxlen: 24
213.204.87.0/24 maxlen: 24
213.204.88.0/24 maxlen: 24
213.204.89.0/24 maxlen: 24
213.204.90.0/24 maxlen: 24
213.204.91.0/24 maxlen: 24
213.204.92.0/24 maxlen: 24
213.204.93.0/24 maxlen: 24
213.204.94.0/24 maxlen: 24
213.204.95.0/24 maxlen: 24
213.204.97.0/24 maxlen: 24
213.204.98.0/24 maxlen: 24
213.204.99.0/24 maxlen: 24
213.204.100.0/24 maxlen: 24
213.204.101.0/24 maxlen: 24
213.204.102.0/24 maxlen: 24
213.204.103.0/24 maxlen: 24
213.204.104.0/24 maxlen: 24
213.204.105.0/24 maxlen: 24
213.204.106.0/24 maxlen: 24
213.204.107.0/24 maxlen: 24
213.204.108.0/24 maxlen: 24
213.204.109.0/24 maxlen: 24
213.204.110.0/24 maxlen: 24
213.204.111.0/24 maxlen: 24
213.204.112.0/24 maxlen: 24
213.204.113.0/24 maxlen: 24
213.204.114.0/24 maxlen: 24
213.204.115.0/24 maxlen: 24
213.204.116.0/24 maxlen: 24
213.204.117.0/24 maxlen: 24
213.204.118.0/24 maxlen: 24
213.204.119.0/24 maxlen: 24
213.204.120.0/24 maxlen: 24
213.204.121.0/24 maxlen: 24
213.204.122.0/24 maxlen: 24
213.204.123.0/24 maxlen: 24
213.204.124.0/24 maxlen: 24
213.204.125.0/24 maxlen: 24
213.204.126.0/24 maxlen: 24
213.204.127.0/24 maxlen: 24
2a00:1580::/29 maxlen: 29
2a00:1580::/48 maxlen: 48
2a00:1580:2::/48 maxlen: 48
2a00:1580:4::/48 maxlen: 48
2a00:1580:5::/48 maxlen: 48
2a00:1582::/48 maxlen: 48
2a00:1582:2::/48 maxlen: 48
2a00:1582:3007::/48 maxlen: 48
2a00:1582:300e::/48 maxlen: 48
2a00:1582:300f:f::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 04 Nov 2024 17:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:32:d0:f1:ca:74:59:ed:b2:69:9b:d5:cd:1d:d0:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Sep 25 12:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4289d1d845a1d85d3c0f8c9deeb3cbfbbabe30dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:87:4c:ac:d4:ad:41:3c:4c:31:e4:42:10:
3d:5c:c0:7f:8c:f8:08:7f:85:ad:d6:a2:48:78:94:
2b:e4:f8:f2:f3:09:92:57:a6:cd:03:ed:98:30:93:
09:ab:43:a6:3f:13:51:39:2c:c6:3d:d6:c1:9c:2e:
e4:84:a7:3d:77:c7:99:8d:66:9a:e4:d5:3a:78:c9:
08:09:f4:51:7c:13:c4:ef:6e:f5:b7:8b:00:45:74:
05:7e:2c:38:dc:f0:63:69:c8:d8:79:8b:c0:45:df:
6d:a8:a2:09:96:24:db:41:78:6c:04:52:32:b5:c2:
52:b9:78:12:11:60:53:a2:c8:44:10:e2:75:21:9a:
6b:48:36:89:81:74:ff:78:65:f8:c4:5d:42:3f:18:
3e:59:5d:27:2b:c2:c2:15:d3:a6:7a:70:91:0b:39:
ab:f9:90:73:41:d3:9e:77:e4:aa:83:fe:aa:e9:11:
16:64:2f:30:b4:af:aa:58:3f:85:71:fc:70:78:05:
6b:9b:d0:d3:18:f8:ad:8e:4c:f2:3f:ce:bf:f9:59:
ef:08:48:1d:71:99:f5:0b:f1:2c:a1:1d:a6:fa:90:
1a:82:62:0f:af:13:46:05:d3:31:da:75:94:2f:0c:
c3:a4:3f:e6:57:7d:71:01:91:d3:cc:2b:14:04:27:
2f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:89:D1:D8:45:A1:D8:5D:3C:0F:8C:9D:EE:B3:CB:FB:BA:BE:30:DD
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/QonR2EWh2F08D4yd7rPL-7q-MN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.3.0-5.57.7.255
78.108.160.0/21
78.108.169.0-78.108.172.255
78.108.174.0/23
85.112.64.0/22
85.112.69.0-85.112.72.255
85.112.74.0-85.112.78.255
85.112.82.0-85.112.95.255
146.185.32.0/21
185.54.60.0/22
212.98.129.0-212.98.133.255
212.98.135.0-212.98.159.255
213.204.64.0/19
213.204.97.0-213.204.127.255
IPv6:
2a00:1580::/29
Signature Algorithm: sha256WithRSAEncryption
31:69:e7:e9:84:bd:dd:1b:2d:d1:fc:d7:08:40:30:53:b7:6c:
1b:19:87:c8:eb:15:f0:fa:2b:4e:23:ec:c8:7a:d0:5e:d1:d5:
a1:d0:b8:fa:e0:ce:19:7c:60:aa:ac:1c:a9:62:df:da:f4:cf:
cf:fb:85:21:22:57:34:3d:fc:cc:e0:ad:06:00:00:f4:c8:2f:
b7:fd:fa:f0:4f:03:02:13:f7:20:72:0c:8f:38:b2:33:9c:0d:
fa:30:39:7c:f1:44:f3:01:4d:e8:b0:95:31:b0:03:7a:24:bd:
1a:65:b1:43:3d:92:d8:1c:75:ac:11:89:0a:33:90:89:5e:3e:
26:d6:c1:1d:64:f4:6d:8f:a6:76:5e:ed:c5:72:6e:05:c0:ae:
0b:08:d7:de:96:20:60:40:6c:25:4f:35:50:f7:e5:e8:54:70:
c8:ef:42:1e:2c:09:a3:30:3c:4c:e6:89:88:eb:78:8e:c5:fc:
f5:14:a6:e7:53:11:a6:da:92:82:42:84:ed:7c:e7:b8:f9:16:
0e:30:ad:56:75:e5:91:38:9e:99:f5:c7:f3:2a:30:36:bd:13:
bf:0f:17:5f:79:73:ce:91:60:c7:59:b5:5c:71:20:b0:71:ec:
d0:ff:f7:4a:b9:ae:f6:27:b2:6f:d6:0c:f8:d6:d9:91:9f:ca:
85:b3:ec:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 21:29:22 2024 by rpki-client on console-fra.rpki-client.org