Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/QvaESq4rTzY_sRcl0q62dojS_tQ.roa
File: QvaESq4rTzY_sRcl0q62dojS_tQ.roa (raw, json)
Hash identifier: fPcvN3lv8hDhGgi665+3CxgZDx5+eH1/3z0PRnQ2UwU=
Subject key identifier: 42:F6:84:4A:AE:2B:4F:36:3F:B1:17:25:D2:AE:B6:76:88:D2:FE:D4
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 018CC49235C4D863B1CFD933858999D3F71C
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/QvaESq4rTzY_sRcl0q62dojS_tQ.roa
Signing time: Mon 01 Jan 2024 10:29:25 +0000
ROA not before: Mon 01 Jan 2024 10:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42248
IP address blocks: 89.106.96.0/24 maxlen: 24
89.106.98.0/24 maxlen: 24
89.106.97.0/24 maxlen: 24
89.106.100.0/24 maxlen: 24
89.106.99.0/24 maxlen: 24
89.106.106.0/24 maxlen: 24
89.106.110.0/23 maxlen: 23
89.106.112.0/23 maxlen: 23
89.106.116.0/23 maxlen: 23
89.106.118.0/23 maxlen: 23
89.106.114.0/23 maxlen: 23
89.106.124.0/23 maxlen: 23
89.106.120.0/23 maxlen: 23
89.106.122.0/23 maxlen: 23
89.106.126.0/24 maxlen: 24
94.139.216.0/21 maxlen: 21
178.75.224.0/21 maxlen: 21
178.75.232.0/21 maxlen: 21
185.44.124.0/22 maxlen: 22
178.239.224.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 26 Jan 2024 14:06:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:35:c4:d8:63:b1:cf:d9:33:85:89:99:d3:f7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 1 10:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42f6844aae2b4f363fb11725d2aeb67688d2fed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a6:7e:c9:19:a7:49:4b:a1:0f:82:41:3f:2b:
d2:f8:2b:d3:8e:f7:bf:d6:9c:2f:4d:60:ce:a5:95:
6c:99:73:08:d1:f7:f7:b8:e3:e8:d3:a7:12:e8:30:
17:d0:32:f3:00:69:23:fb:53:95:a0:6c:ea:26:73:
54:07:50:d7:ae:ab:70:74:25:49:50:b3:4b:34:21:
8f:0b:e0:62:38:94:79:fe:66:1b:d9:80:d2:5b:a7:
01:2a:27:77:d3:6c:1a:76:be:d9:e7:f0:7b:a1:b4:
7e:49:ba:0f:31:10:ac:12:42:9e:74:c9:e3:b4:58:
2b:5f:53:a9:ef:91:40:8c:5b:cc:94:f8:30:57:f0:
30:e2:2e:82:6d:1d:6e:2a:09:6b:a2:5f:68:48:1f:
18:f0:dd:4b:fd:cc:59:00:1d:42:36:5e:e1:17:2e:
a1:52:cf:d5:c9:57:06:fe:4e:be:82:a7:eb:0c:6c:
55:67:2e:3b:50:b5:61:23:35:a4:99:bf:f2:9e:94:
64:a5:34:97:3c:ee:09:c7:a7:5a:5e:c2:04:09:a3:
d0:97:08:ff:e6:bd:3d:c7:91:8f:6a:2d:92:40:ff:
f7:48:34:b3:2a:ee:ed:fe:01:2a:d6:46:bb:36:9d:
5d:d3:2c:4d:d4:12:3b:b3:a1:e7:93:28:09:4a:10:
31:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F6:84:4A:AE:2B:4F:36:3F:B1:17:25:D2:AE:B6:76:88:D2:FE:D4
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/QvaESq4rTzY_sRcl0q62dojS_tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.96.0-89.106.100.255
89.106.106.0/24
89.106.110.0-89.106.126.255
94.139.216.0/21
178.75.224.0/20
178.239.224.0/20
185.44.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:de:23:49:2a:31:2e:82:61:1e:3d:64:46:66:31:70:f9:7b:
08:4b:d5:34:34:9b:54:da:24:f2:26:2b:44:1b:49:96:35:0f:
05:5d:0e:29:13:fa:e6:df:23:d1:d5:73:d3:c3:ba:85:f2:25:
3f:7a:83:0b:92:16:40:a0:40:bf:6a:f9:10:dc:4d:6a:1a:87:
ae:3d:9d:04:ea:d2:ce:57:83:17:ef:f0:69:87:e4:11:45:dd:
57:b7:fa:84:9d:01:17:85:23:b7:54:53:08:fa:10:a2:f8:a5:
29:e5:1e:c3:31:c6:78:d6:57:09:f6:51:0a:58:49:a2:80:cc:
48:0a:69:d7:1a:3f:56:8a:56:22:f3:c9:40:26:7b:e3:7f:3f:
73:24:fa:93:2a:90:99:1f:79:3b:bb:4f:2a:81:8b:3c:ac:b5:
44:7d:e4:fa:87:97:70:4c:6e:83:01:a4:3c:6d:11:9b:db:21:
47:d4:34:19:d7:20:70:5a:e4:41:40:b5:57:ad:a0:5a:fc:b4:
91:64:59:aa:8e:02:26:3a:47:e6:3b:d8:15:6c:ec:c5:1c:60:
d3:75:aa:fb:a8:91:1a:6a:88:62:8c:d3:89:22:e0:28:83:99:
57:6d:7c:5b:ac:c2:ec:55:31:ac:ed:e7:c4:83:4d:fe:bd:e4:
0e:18:bc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 26 18:48:39 2024 by rpki-client on console-ams.rpki-client.org