Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/QbIYFWJxZIRgERXgn0oo7SP4KrI.roa
File: QbIYFWJxZIRgERXgn0oo7SP4KrI.roa (raw, json)
Hash identifier: uMiap4qcgI9Byk7h9CYzD1IAW5fKNNlQqFoSNV9fNSc=
Subject key identifier: 41:B2:18:15:62:71:64:84:60:11:15:E0:9F:4A:28:ED:23:F8:2A:B2
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4CF107BE04ABC52CDBBD25B48F613
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/QbIYFWJxZIRgERXgn0oo7SP4KrI.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cf:10:7b:e0:4a:bc:52:cd:bb:d2:5b:48:f6:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41b2181562716484601115e09f4a28ed23f82ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a0:5a:ad:ae:e3:5b:cf:ad:84:75:61:f4:bd:
79:dc:03:18:e7:a6:cb:5d:35:25:be:58:eb:f0:cf:
df:44:2a:43:f8:93:5a:67:ce:03:11:23:89:12:b4:
a8:e0:61:fd:4c:94:02:4d:d9:e8:25:32:ce:78:2b:
bb:c8:40:ef:0d:b2:6a:9a:b8:31:87:ca:8d:1c:c7:
9a:c1:88:25:5c:da:91:10:87:d1:97:00:0d:c5:ee:
da:a7:17:0d:07:6d:2f:5c:f8:2a:a9:b3:7d:29:76:
4b:b8:e0:05:16:f9:44:7d:79:0e:b0:3f:7b:54:50:
e1:06:95:10:00:6b:7c:6b:91:95:d5:3b:5e:f5:6a:
b9:8a:9b:73:f4:9b:c8:dd:f6:17:80:06:5e:ca:61:
a7:8a:e0:dd:e6:16:c2:4d:f1:64:35:07:e5:54:3e:
6b:f1:21:8b:6e:b9:cd:56:60:72:12:8e:e9:59:e7:
48:dd:b6:43:22:4e:c7:e6:f0:e5:bd:85:c1:6a:c1:
65:7f:5a:65:8a:b7:a9:c9:d7:e9:9f:02:b0:3d:80:
ab:39:9a:b3:62:a5:4f:93:3e:8d:11:83:6e:d0:dc:
ee:02:6c:0b:af:c2:80:51:e8:c3:ec:c9:e3:24:0c:
6e:b8:bb:b9:f1:ee:e8:c1:7f:d2:4a:93:31:37:cb:
c5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B2:18:15:62:71:64:84:60:11:15:E0:9F:4A:28:ED:23:F8:2A:B2
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/QbIYFWJxZIRgERXgn0oo7SP4KrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.112.0-80.66.118.255
80.66.120.0/23
80.66.123.0-80.66.124.255
89.42.70.0/24
89.44.150.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e7:41:35:de:3c:23:5f:b5:27:0a:92:2b:19:c9:ab:5e:56:
9f:69:9a:80:59:23:67:b2:06:de:51:35:8b:7e:d0:b4:53:df:
a3:48:29:55:b5:a6:b3:f2:c9:0d:41:a3:60:34:7b:29:ce:41:
df:0c:49:5f:47:b0:7c:e7:27:8d:71:3e:a8:56:6f:c1:00:f9:
7a:0e:b8:c0:f2:82:0b:94:c3:03:8a:7a:72:ec:db:fc:ff:a2:
21:ec:c0:a1:df:61:28:fd:67:6e:1a:05:e6:91:9e:96:1d:7b:
4e:60:cd:c7:b4:6f:51:1b:c1:51:3b:35:61:36:e1:db:80:ec:
c4:34:97:b4:72:da:00:35:01:87:8f:4e:eb:5b:2d:01:2f:39:
d5:62:e1:06:1f:92:98:c6:27:7f:6e:4f:1f:3a:a8:bd:66:50:
a6:cc:c5:75:58:82:b4:d6:40:2f:f9:e2:2a:8d:d6:7e:72:71:
9c:d1:fc:7b:92:ec:c0:3c:95:a3:62:27:d4:a3:c4:d2:6f:d8:
b7:84:06:b5:bf:15:b3:7c:fd:6c:51:89:b5:14:47:d4:7b:bd:
81:5b:aa:84:79:62:0b:23:d0:61:17:2e:75:ca:e7:65:9d:dc:
75:11:a6:21:db:e8:83:59:8e:05:9a:bd:b6:68:52:3b:da:5f:
c7:cc:f9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org