Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/qDG_FtX5pWLxFrJxtbI2gpfYQGg.roa
File: qDG_FtX5pWLxFrJxtbI2gpfYQGg.roa (raw, json)
Hash identifier: KYsS+FP7WoKcaWJ1ePkanYi9QIGOo8ICs9CtX8BS6vo=
Subject key identifier: A8:31:BF:16:D5:F9:A5:62:F1:16:B2:71:B5:B2:36:82:97:D8:40:68
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 018571D791B958D051D32E59E86AD34314FB
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/qDG_FtX5pWLxFrJxtbI2gpfYQGg.roa
Signing time: Mon 02 Jan 2023 09:37:10 +0000
ROA not before: Mon 02 Jan 2023 09:37:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34295
IP address blocks: 109.107.64.0/24 maxlen: 24
109.107.65.0/24 maxlen: 24
109.107.67.0/24 maxlen: 24
109.107.66.0/24 maxlen: 24
109.107.69.0/24 maxlen: 24
109.107.68.0/24 maxlen: 24
109.107.68.0/23 maxlen: 23
109.107.81.0/24 maxlen: 24
109.107.80.0/24 maxlen: 24
109.107.83.0/24 maxlen: 24
109.107.82.0/24 maxlen: 24
109.107.85.0/24 maxlen: 24
109.107.84.0/24 maxlen: 24
109.107.86.0/24 maxlen: 24
109.107.87.0/24 maxlen: 24
94.139.203.0/24 maxlen: 24
94.139.202.0/24 maxlen: 24
94.139.201.0/24 maxlen: 24
94.139.200.0/24 maxlen: 24
94.139.200.0/21 maxlen: 21
94.139.200.0/22 maxlen: 22
94.139.192.0/24 maxlen: 24
94.139.192.0/22 maxlen: 22
94.139.196.0/24 maxlen: 24
94.139.198.0/24 maxlen: 24
94.139.197.0/24 maxlen: 24
94.139.199.0/24 maxlen: 24
94.139.196.0/22 maxlen: 22
185.52.49.0/24 maxlen: 24
77.76.161.0/24 maxlen: 24
77.76.160.0/24 maxlen: 24
77.76.162.0/24 maxlen: 24
77.76.164.0/24 maxlen: 24
77.76.163.0/24 maxlen: 24
77.76.166.0/24 maxlen: 24
77.76.165.0/24 maxlen: 24
77.76.169.0/24 maxlen: 24
77.76.171.0/24 maxlen: 24
77.76.170.0/24 maxlen: 24
77.76.172.0/24 maxlen: 24
77.76.168.0/24 maxlen: 24
77.76.167.0/24 maxlen: 24
77.76.173.0/24 maxlen: 24
77.76.175.0/24 maxlen: 24
77.76.174.0/24 maxlen: 24
77.76.183.0/24 maxlen: 24
77.76.180.0/24 maxlen: 24
77.76.182.0/24 maxlen: 24
77.76.181.0/24 maxlen: 24
188.124.64.0/24 maxlen: 24
188.124.65.0/24 maxlen: 24
188.124.67.0/24 maxlen: 24
188.124.66.0/24 maxlen: 24
188.124.69.0/24 maxlen: 24
188.124.68.0/24 maxlen: 24
188.124.70.0/24 maxlen: 24
188.124.71.0/24 maxlen: 24
188.124.72.0/24 maxlen: 24
188.124.74.0/24 maxlen: 24
188.124.73.0/24 maxlen: 24
188.124.75.0/24 maxlen: 24
188.124.77.0/24 maxlen: 24
188.124.76.0/24 maxlen: 24
188.124.78.0/24 maxlen: 24
188.124.80.0/22 maxlen: 22
188.124.79.0/24 maxlen: 24
188.124.81.0/24 maxlen: 24
188.124.80.0/24 maxlen: 24
188.124.82.0/24 maxlen: 24
188.124.84.0/24 maxlen: 24
188.124.83.0/24 maxlen: 24
188.124.85.0/24 maxlen: 24
188.124.86.0/24 maxlen: 24
188.124.88.0/24 maxlen: 24
188.124.87.0/24 maxlen: 24
188.124.89.0/24 maxlen: 24
188.124.91.0/24 maxlen: 24
188.124.90.0/24 maxlen: 24
178.75.202.0/24 maxlen: 24
178.75.204.0/22 maxlen: 22
178.75.203.0/24 maxlen: 24
178.75.205.0/24 maxlen: 24
178.75.206.0/24 maxlen: 24
178.75.204.0/24 maxlen: 24
178.75.201.0/24 maxlen: 24
178.75.200.0/24 maxlen: 24
178.75.208.0/24 maxlen: 24
178.75.208.0/22 maxlen: 22
178.75.212.0/22 maxlen: 22
178.75.207.0/24 maxlen: 24
178.75.210.0/24 maxlen: 24
178.75.209.0/24 maxlen: 24
178.75.211.0/24 maxlen: 24
178.75.213.0/24 maxlen: 24
178.75.212.0/24 maxlen: 24
178.75.217.0/24 maxlen: 24
178.75.216.0/24 maxlen: 24
178.75.218.0/24 maxlen: 24
178.75.219.0/24 maxlen: 24
178.75.215.0/24 maxlen: 24
178.75.214.0/24 maxlen: 24
178.75.216.0/22 maxlen: 22
178.75.220.0/24 maxlen: 24
178.75.222.0/24 maxlen: 24
178.75.221.0/24 maxlen: 24
178.75.223.0/24 maxlen: 24
178.75.220.0/22 maxlen: 22
178.75.240.0/24 maxlen: 24
178.75.240.0/23 maxlen: 23
178.75.245.0/24 maxlen: 24
178.75.244.0/24 maxlen: 24
178.75.246.0/24 maxlen: 24
178.75.241.0/24 maxlen: 24
178.75.243.0/24 maxlen: 24
178.75.242.0/24 maxlen: 24
178.75.248.0/24 maxlen: 24
178.75.247.0/24 maxlen: 24
178.75.250.0/24 maxlen: 24
178.75.249.0/24 maxlen: 24
178.75.251.0/24 maxlen: 24
178.75.248.0/22 maxlen: 22
77.76.145.0/24 maxlen: 24
77.76.144.0/24 maxlen: 24
77.76.147.0/24 maxlen: 24
77.76.146.0/24 maxlen: 24
77.76.148.0/24 maxlen: 24
77.76.149.0/24 maxlen: 24
178.75.192.0/22 maxlen: 22
178.75.192.0/24 maxlen: 24
178.75.194.0/24 maxlen: 24
178.75.193.0/24 maxlen: 24
178.75.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:91:b9:58:d0:51:d3:2e:59:e8:6a:d3:43:14:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 2 09:37:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a831bf16d5f9a562f116b271b5b2368297d84068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:50:81:ed:c3:41:a3:e0:00:34:c2:18:8c:f0:
3f:8e:a6:8c:0b:9a:46:29:e1:63:f2:8c:0e:a6:d1:
0e:fd:79:f4:01:83:9d:b6:c3:62:ca:0b:dc:57:e4:
6d:26:2c:87:d8:bd:b0:9f:98:54:13:52:ff:6d:81:
18:06:54:89:89:3c:47:64:ed:c9:68:07:3b:32:b2:
05:1c:53:c1:ca:40:9a:52:63:98:55:17:08:b6:7b:
2d:89:31:33:91:1e:9a:28:d2:f4:79:81:e7:e9:84:
e2:5a:28:95:b0:72:e7:26:fe:b8:fe:e0:1b:5b:0f:
fb:f8:14:94:55:39:41:f6:86:af:b3:97:be:57:95:
25:b1:8d:95:5c:92:40:96:40:d6:17:e5:e6:87:85:
6e:94:1b:35:08:b2:b4:d1:c2:11:06:95:4e:7e:52:
1a:6f:5d:fd:80:5f:9e:79:b2:25:35:4b:3f:d6:c4:
ab:03:96:7a:ce:ba:6c:8a:97:f7:f6:51:9e:b9:7d:
85:a7:84:1f:38:a6:a9:9d:ba:b3:1a:61:05:ae:51:
d3:3c:0a:1e:e9:1a:c5:ec:d9:03:cb:b0:3e:23:db:
aa:98:48:1f:41:60:eb:c6:a5:1e:d8:1c:bd:c7:b1:
69:e5:6e:59:56:72:cf:e2:6d:e9:6f:27:62:67:71:
b8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:31:BF:16:D5:F9:A5:62:F1:16:B2:71:B5:B2:36:82:97:D8:40:68
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/qDG_FtX5pWLxFrJxtbI2gpfYQGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.144.0-77.76.149.255
77.76.160.0/20
77.76.180.0/22
94.139.192.0/20
109.107.64.0-109.107.69.255
109.107.80.0/21
178.75.192.0/22
178.75.200.0-178.75.223.255
178.75.240.0-178.75.251.255
185.52.49.0/24
188.124.64.0-188.124.91.255
Signature Algorithm: sha256WithRSAEncryption
74:ef:b3:9f:7d:c0:cf:d3:37:54:97:05:89:b9:96:c2:59:ff:
08:b6:f7:15:5d:97:9a:7b:b8:ab:de:cd:e8:50:4b:10:7f:b2:
ba:0a:07:d8:44:bb:2a:51:51:9f:3e:96:50:67:a5:90:e3:5c:
05:98:bb:94:19:c5:0d:1e:ac:4d:27:67:97:78:4e:07:b9:43:
1e:90:1e:9f:6d:d1:d0:66:54:1b:3b:90:ce:18:a7:d1:e3:2e:
9a:85:26:1d:9a:f6:e0:9c:78:57:ee:f5:69:f0:3d:47:12:0d:
a6:ea:4a:a3:9a:83:ab:5e:2b:46:6e:48:28:7c:4d:24:c7:d6:
af:5b:bd:0b:4e:0e:77:f2:6f:37:f9:6d:fe:8f:1e:32:41:f2:
a1:2e:38:eb:a2:d2:0f:e7:b5:0d:57:43:3e:43:90:bc:0d:69:
9d:5c:a1:13:49:2c:da:1e:12:a3:a3:b7:9d:84:02:0c:80:56:
b6:a2:e2:88:77:5b:41:14:2a:07:84:e5:24:8d:9d:91:64:4f:
35:04:d7:7b:ef:70:23:65:2c:08:31:e9:58:9c:8f:ea:f3:73:
5e:4e:42:db:88:67:fa:e1:f1:98:01:5a:13:40:82:4d:d7:56:
b1:3b:86:e6:5c:b3:d1:8e:e1:52:ef:8d:25:5c:6b:06:e2:57:
34:52:58:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:08 2024 by rpki-client on console-fra.rpki-client.org