Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/QvA83jQQg_HL3kUwtJT9MZ8jKcc.roa
File: QvA83jQQg_HL3kUwtJT9MZ8jKcc.roa (raw, json)
Hash identifier: ntO9hlNq+LarXwNITFJwGDFNe0ZFAqnxfWnkMqPoTmg=
Subject key identifier: 42:F0:3C:DE:34:10:83:F1:CB:DE:45:30:B4:94:FD:31:9F:23:29:C7
Certificate issuer: /CN=ceb86983547113359bade1f3f38104091e3a6439
Certificate serial: 0190EF77806FAE3FEA41E0EF28724762EA6D
Authority key identifier: CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/QvA83jQQg_HL3kUwtJT9MZ8jKcc.roa
Signing time: Fri 26 Jul 2024 14:35:04 +0000
ROA not before: Fri 26 Jul 2024 14:35:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8612
IP address blocks: 82.84.0.0/15 maxlen: 24
82.85.26.128/26 maxlen: 26
82.85.53.0/26 maxlen: 26
82.85.53.64/26 maxlen: 26
84.220.0.0/16 maxlen: 24
84.221.0.0/16 maxlen: 24
94.32.0.0/19 maxlen: 24
94.32.64.0/18 maxlen: 24
94.32.115.0/24 maxlen: 24
94.32.128.0/17 maxlen: 24
94.33.0.0/16 maxlen: 24
94.34.0.0/16 maxlen: 24
94.35.0.0/16 maxlen: 24
193.43.2.0/24 maxlen: 24
193.43.3.180/30 maxlen: 30
193.43.3.184/29 maxlen: 29
193.43.3.192/26 maxlen: 26
193.207.24.0/21 maxlen: 24
193.207.48.0/20 maxlen: 24
193.207.64.0/18 maxlen: 24
193.207.96.0/20 maxlen: 21
193.207.128.0/17 maxlen: 22
195.130.224.0/19 maxlen: 19
212.123.64.0/19 maxlen: 19
213.205.0.0/18 maxlen: 18
213.205.0.251/32 maxlen: 32
217.133.0.0/16 maxlen: 16
217.133.170.0/24 maxlen: 24
2a01:7d0::/32 maxlen: 32
2a01:7d0:4800:1::/64 maxlen: 64
2a01:7d0:4811::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 14 Oct 2024 08:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:77:80:6f:ae:3f:ea:41:e0:ef:28:72:47:62:ea:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb86983547113359bade1f3f38104091e3a6439
Validity
Not Before: Jul 26 14:35:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42f03cde341083f1cbde4530b494fd319f2329c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2c:94:9b:c6:d9:f4:71:49:c2:54:fa:65:e8:
cd:c2:1c:cf:0f:e6:14:ed:38:36:5b:03:54:95:a1:
94:06:24:01:fd:81:26:46:05:76:e6:59:82:87:b0:
6a:9b:e2:0c:b4:89:f1:a9:bb:6a:92:d9:1d:77:a5:
18:1c:13:c5:2a:3f:c5:fa:00:b5:14:69:7a:73:8f:
a7:96:af:fa:cf:d9:ff:5b:f2:38:78:a4:a7:7c:c4:
e6:ca:41:cf:f2:7c:48:10:17:37:47:02:4e:ce:5b:
bd:43:7f:6f:4c:9c:54:03:a0:c5:09:78:ab:70:35:
06:8c:a1:4b:16:88:fb:f4:84:f4:e7:c9:3d:11:92:
25:b7:55:7a:5c:36:c4:c8:27:a5:ac:e6:0a:ad:92:
6f:f7:67:5a:35:ff:b1:fd:80:2e:d7:86:c7:b5:2a:
d3:72:33:e0:e2:b6:99:72:32:0d:94:9d:f6:37:fc:
28:dc:d9:aa:41:9e:a0:30:3b:f9:c4:3a:e3:0a:0e:
70:7d:9b:f2:95:8e:16:da:55:65:e9:82:8f:86:f8:
7f:74:9b:0f:8f:10:ab:d9:09:f6:ee:e0:0e:a4:76:
32:94:37:36:b3:64:0a:b1:a5:5e:4e:81:63:e8:08:
35:db:74:04:6c:e0:b7:36:1c:cd:67:03:0a:b1:93:
ec:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F0:3C:DE:34:10:83:F1:CB:DE:45:30:B4:94:FD:31:9F:23:29:C7
X509v3 Authority Key Identifier:
keyid:CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/QvA83jQQg_HL3kUwtJT9MZ8jKcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.84.0.0/15
84.220.0.0/15
94.32.0.0/19
94.32.64.0-94.35.255.255
193.43.2.0/24
193.43.3.180-193.43.3.255
193.207.24.0/21
193.207.48.0-193.207.255.255
195.130.224.0/19
212.123.64.0/19
213.205.0.0/18
217.133.0.0/16
IPv6:
2a01:7d0::/32
Signature Algorithm: sha256WithRSAEncryption
24:e4:e3:a1:b3:24:8b:09:30:35:05:60:46:ce:1b:ac:b7:f9:
e1:d8:3a:2b:6f:83:91:b7:11:8f:a4:7e:82:18:44:ac:c6:c6:
37:14:10:f6:7e:3d:8f:7f:7c:27:d9:ef:1c:c5:ff:2b:c5:2a:
61:bd:e9:64:d0:be:17:4a:18:6a:bc:20:2c:7f:2c:dc:f1:f6:
09:2b:7a:f9:e8:ba:1d:5d:ac:ba:b9:84:35:df:9b:5b:81:7b:
ef:fb:82:55:db:dd:17:57:ff:22:7c:e5:b1:f3:bc:d0:71:03:
cf:ff:30:7b:7e:d1:a9:12:2a:22:94:60:8c:95:5d:2e:f1:b8:
62:b5:0f:de:69:4c:e2:8d:8e:a6:89:65:e4:de:7a:28:9f:25:
47:b0:a8:81:d8:b5:3d:5b:6d:8b:01:fa:40:58:58:13:84:f5:
1a:5b:a2:ad:6d:31:9a:49:ce:ef:5a:a0:37:fc:78:57:3f:4d:
4c:40:5e:86:2d:e4:89:e9:c9:1c:dc:ea:5e:b1:15:3f:95:5a:
36:30:71:3f:e8:1c:56:d5:69:ef:c0:19:83:3d:a7:d8:b6:54:
b5:5d:19:2a:e2:a9:cf:14:2a:30:09:5e:b8:f3:c6:25:21:f4:
a6:35:a8:d9:9f:38:61:99:0a:7d:9d:60:a4:a2:e2:aa:9a:03:
e1:1c:20:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 11:33:26 2024 by rpki-client on console-fra.rpki-client.org