Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/mQ_FnG-_HRznNMN_7_DEVrfINz8.roa
File: mQ_FnG-_HRznNMN_7_DEVrfINz8.roa (raw, json)
Hash identifier: xJkSChNf2dw3iAf9ArFOo73J/evcuboBqf3BdlFJeGc=
Subject key identifier: 99:0F:C5:9C:6F:BF:1D:1C:E7:34:C3:7F:EF:F0:C4:56:B7:C8:37:3F
Certificate issuer: /CN=af121cd6e11da095f856d79deec469d0c6358494
Certificate serial: 018572031585508539F75E251ECDC1C27AE8
Authority key identifier: AF:12:1C:D6:E1:1D:A0:95:F8:56:D7:9D:EE:C4:69:D0:C6:35:84:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rxIc1uEdoJX4Vted7sRp0MY1hJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/mQ_FnG-_HRznNMN_7_DEVrfINz8.roa
Signing time: Mon 02 Jan 2023 10:24:42 +0000
ROA not before: Mon 02 Jan 2023 10:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55293
IP address blocks: 185.62.136.0/22 maxlen: 24
185.141.188.0/22 maxlen: 24
185.160.66.0/23 maxlen: 24
185.160.65.0/24 maxlen: 24
185.148.128.0/22 maxlen: 24
185.149.112.0/22 maxlen: 24
185.52.148.0/22 maxlen: 24
185.146.20.0/22 maxlen: 24
185.143.44.0/22 maxlen: 24
185.168.108.0/22 maxlen: 24
185.133.20.0/22 maxlen: 24
185.132.4.0/22 maxlen: 24
185.166.145.0/24 maxlen: 24
185.166.146.0/23 maxlen: 24
185.148.44.0/22 maxlen: 24
185.146.28.0/22 maxlen: 24
185.151.48.0/22 maxlen: 24
85.187.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:15:85:50:85:39:f7:5e:25:1e:cd:c1:c2:7a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af121cd6e11da095f856d79deec469d0c6358494
Validity
Not Before: Jan 2 10:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=990fc59c6fbf1d1ce734c37feff0c456b7c8373f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:27:fa:1b:11:96:0d:7c:38:73:1b:b3:57:dc:
1a:84:1d:f2:a4:67:c6:58:9e:d1:53:96:94:3c:8e:
6d:e2:40:b1:7d:85:b2:91:61:f0:ac:5c:da:d3:0f:
0c:c2:ed:69:cb:32:e2:64:28:cb:87:42:e8:89:3c:
41:1f:61:da:b6:2a:c4:cf:81:aa:c8:f3:4c:8d:1c:
b5:15:0c:0b:92:48:87:88:5f:ba:50:79:30:1e:58:
a8:67:6a:dd:57:c2:4c:73:81:9c:c5:2f:6c:61:76:
9d:45:e9:6f:80:b5:f9:0f:8f:46:46:ee:a5:a9:31:
28:ac:2f:1a:30:6b:de:33:bf:73:f1:58:80:7b:1c:
d8:f2:b3:e4:29:d4:f1:65:25:47:7c:f9:16:14:44:
52:13:2c:d9:d4:5b:18:17:79:70:84:0e:4e:8d:27:
be:82:5e:f9:01:97:69:6a:d1:72:51:a4:31:a3:63:
d7:91:3c:45:7f:75:fd:6f:66:a9:b5:ac:a5:74:36:
1c:6b:b9:17:bc:09:19:63:fc:b5:e5:6b:3b:06:fa:
3b:08:66:ce:f6:75:f5:6d:c1:d4:83:b7:62:a3:7a:
9c:16:4a:79:4f:e8:53:23:ce:90:cb:af:28:e1:ce:
3b:14:6f:5d:a8:e6:2a:9f:28:05:a6:44:82:bf:b6:
e2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0F:C5:9C:6F:BF:1D:1C:E7:34:C3:7F:EF:F0:C4:56:B7:C8:37:3F
X509v3 Authority Key Identifier:
keyid:AF:12:1C:D6:E1:1D:A0:95:F8:56:D7:9D:EE:C4:69:D0:C6:35:84:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rxIc1uEdoJX4Vted7sRp0MY1hJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/mQ_FnG-_HRznNMN_7_DEVrfINz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/fd6069-4179-45be-b82a-af3f794ae607/1/rxIc1uEdoJX4Vted7sRp0MY1hJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.128.0/19
185.52.148.0/22
185.62.136.0/22
185.132.4.0/22
185.133.20.0/22
185.141.188.0/22
185.143.44.0/22
185.146.20.0/22
185.146.28.0/22
185.148.44.0/22
185.148.128.0/22
185.149.112.0/22
185.151.48.0/22
185.160.65.0-185.160.67.255
185.166.145.0-185.166.147.255
185.168.108.0/22
Signature Algorithm: sha256WithRSAEncryption
21:89:cb:53:1a:4b:dc:29:0e:10:70:a7:c1:8e:61:7f:3d:86:
52:53:ef:40:ed:72:76:89:55:4a:10:68:cb:44:46:ba:83:f4:
0d:11:b3:8a:f7:e2:e1:b7:31:29:c9:ae:6d:ba:ed:69:8f:a8:
9d:74:3b:67:1b:32:b4:1f:25:e5:d6:32:65:d9:c7:33:9f:98:
ab:4e:00:ae:2a:3f:ad:21:2c:4b:8f:62:a7:bd:b9:e5:37:55:
88:21:61:fb:d3:d7:12:ef:ae:dd:63:86:7a:98:df:5f:62:cd:
8b:d2:22:85:49:2a:10:12:b1:88:88:f6:ac:76:24:3e:69:76:
30:4f:66:86:cf:99:11:01:43:ff:af:4d:f3:5a:20:a8:60:5d:
12:bb:89:3e:19:60:66:7a:57:f7:b0:ae:58:c6:4d:e7:f9:5e:
dc:4b:ed:7a:48:15:1a:7b:a8:f3:17:ba:77:36:95:8c:23:1c:
ff:f2:dd:99:c1:e0:ba:11:b7:47:62:44:4a:dd:2f:5f:0f:c9:
44:80:f7:a5:91:2f:be:46:8e:31:78:65:f3:d9:96:b7:ce:f4:
54:7a:5a:87:cb:65:02:15:a2:0f:37:5a:72:ee:d1:01:45:05:
ae:e2:7c:7e:6c:55:19:9e:36:16:f8:fd:12:fa:c4:1d:f1:06:
2d:5f:de:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:31 2024 by rpki-client on console-ams.rpki-client.org