Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Q-gQOARVw3-_ScA4mKFubTpJSt0.roa
File: Q-gQOARVw3-_ScA4mKFubTpJSt0.roa (raw, json)
Hash identifier: pNj8o78YhW/rS+M5SZtOHsll3ErNV7egTWfbE+kItSw=
Subject key identifier: 43:E8:10:38:04:55:C3:7F:BF:49:C0:38:98:A1:6E:6D:3A:49:4A:DD
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 01875098F77BBEEA31055653CB3C2B8CB3BF
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Q-gQOARVw3-_ScA4mKFubTpJSt0.roa
Signing time: Wed 05 Apr 2023 08:46:54 +0000
ROA not before: Wed 05 Apr 2023 08:46:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 188.241.249.0/24 maxlen: 32
185.66.136.0/22 maxlen: 32
92.255.52.0/24 maxlen: 32
92.255.64.0/24 maxlen: 32
212.70.0.0/23 maxlen: 32
212.70.3.0/24 maxlen: 32
212.70.4.0/22 maxlen: 32
119.12.192.0/20 maxlen: 32
212.70.8.0/21 maxlen: 32
92.255.80.0/22 maxlen: 32
212.70.16.0/20 maxlen: 32
89.46.242.0/24 maxlen: 32
92.114.81.0/24 maxlen: 32
180.235.160.0/20 maxlen: 32
86.104.76.0/22 maxlen: 32
89.40.81.0/24 maxlen: 32
180.235.176.0/20 maxlen: 32
110.238.192.0/19 maxlen: 32
92.114.60.0/22 maxlen: 32
91.92.216.0/23 maxlen: 32
188.241.15.0/24 maxlen: 32
91.92.218.0/24 maxlen: 32
94.177.14.0/23 maxlen: 32
93.113.52.0/23 maxlen: 24
188.240.214.0/23 maxlen: 32
91.92.178.0/23 maxlen: 32
94.139.224.0/20 maxlen: 24
188.241.0.0/23 maxlen: 32
92.255.0.0/24 maxlen: 32
85.217.190.0/23 maxlen: 32
193.56.24.0/22 maxlen: 32
89.32.132.0/22 maxlen: 32
188.211.24.0/23 maxlen: 32
86.106.176.0/23 maxlen: 32
85.217.220.0/23 maxlen: 32
94.139.40.0/21 maxlen: 32
176.223.104.0/22 maxlen: 32
94.139.48.0/21 maxlen: 32
91.92.17.0/24 maxlen: 32
91.92.20.0/24 maxlen: 32
91.92.22.0/23 maxlen: 32
94.139.60.0/23 maxlen: 32
94.176.0.0/23 maxlen: 32
193.142.103.0/24 maxlen: 32
176.223.68.0/22 maxlen: 32
188.240.48.0/23 maxlen: 32
94.176.172.0/22 maxlen: 32
89.38.155.0/24 maxlen: 32
91.92.138.0/24 maxlen: 32
193.200.104.0/23 maxlen: 32
91.92.64.0/24 maxlen: 32
176.223.182.0/23 maxlen: 32
185.101.68.0/22 maxlen: 32
188.212.136.0/21 maxlen: 32
119.13.224.0/20 maxlen: 32
93.114.236.0/22 maxlen: 32
93.114.136.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
2.57.76.0/22 maxlen: 32
89.104.122.0/23 maxlen: 32
31.14.26.0/24 maxlen: 32
121.91.176.0/20 maxlen: 32
89.223.22.0/23 maxlen: 32
91.192.212.0/22 maxlen: 32
93.115.4.0/23 maxlen: 32
77.81.92.0/22 maxlen: 32
Validation: Failed, certificate revoked on Wed 05 Apr 2023 09:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:98:f7:7b:be:ea:31:05:56:53:cb:3c:2b:8c:b3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Apr 5 08:46:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43e810380455c37fbf49c03898a16e6d3a494add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:46:04:40:2e:86:c0:52:c9:28:ea:fe:47:59:
c7:f3:8c:cc:db:89:13:a0:c3:1b:5b:c5:4b:9f:95:
d6:54:3c:64:97:5b:87:bc:ee:b4:4d:92:9c:2d:35:
f3:57:31:6f:f6:da:65:63:9f:cf:d8:7f:1d:66:2d:
36:39:93:72:0b:07:c9:54:85:48:2d:fc:4f:b5:83:
cc:ec:98:09:f0:a6:e3:ac:be:84:06:be:66:7b:f5:
01:d2:ee:56:dc:7e:d1:8a:4d:1d:72:ef:44:5a:09:
ec:04:b8:ca:47:fd:20:d5:c0:6c:20:6a:56:d0:d4:
9e:e6:04:0f:bd:46:b1:d4:04:c7:a5:67:7d:de:ea:
88:ca:ab:e6:17:a1:25:36:55:f3:64:d5:74:d4:6e:
b9:86:e8:31:0f:c4:1e:cc:ce:dc:49:b7:10:51:db:
29:26:14:01:9d:1d:2d:1a:ce:dd:e9:74:48:54:45:
23:1b:0f:95:1e:81:ae:5f:44:4b:61:15:fa:25:7f:
6a:88:17:09:ae:04:02:c9:15:b3:23:e3:98:30:08:
7d:a4:f6:18:2c:06:75:b7:c8:e6:c6:28:8e:84:fc:
3c:38:61:c9:d9:23:9b:7b:fb:02:5e:5e:80:6b:6c:
ba:ec:1f:63:a8:dd:5f:11:4d:83:73:cf:13:6f:2c:
74:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E8:10:38:04:55:C3:7F:BF:49:C0:38:98:A1:6E:6D:3A:49:4A:DD
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Q-gQOARVw3-_ScA4mKFubTpJSt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.76.0/22
31.14.26.0/24
77.81.92.0/22
85.217.190.0/23
85.217.220.0/23
86.104.76.0/22
86.106.176.0/23
89.32.132.0/22
89.38.155.0/24
89.40.81.0/24
89.46.242.0/24
89.104.122.0/23
89.223.22.0/23
91.92.17.0/24
91.92.20.0/24
91.92.22.0/23
91.92.64.0/24
91.92.138.0/24
91.92.178.0/23
91.92.216.0-91.92.218.255
91.192.212.0/22
92.114.60.0/22
92.114.81.0/24
92.255.0.0/24
92.255.52.0/24
92.255.64.0/24
92.255.80.0/22
93.113.52.0/23
93.114.136.0/23
93.114.236.0/22
93.115.4.0/23
94.139.40.0-94.139.55.255
94.139.60.0/23
94.139.224.0/20
94.176.0.0/23
94.176.172.0/22
94.177.14.0/23
110.238.192.0/19
119.12.192.0/20
119.13.224.0/20
121.91.176.0/20
176.223.68.0/22
176.223.104.0/22
176.223.182.0/23
180.235.160.0/19
185.66.136.0/22
185.101.68.0/22
188.94.84.0/22
188.211.24.0/23
188.212.136.0/21
188.240.48.0/23
188.240.214.0/23
188.241.0.0/23
188.241.15.0/24
188.241.249.0/24
193.56.24.0/22
193.142.103.0/24
193.200.104.0/23
212.70.0.0/23
212.70.3.0-212.70.31.255
Signature Algorithm: sha256WithRSAEncryption
69:32:da:a9:6d:aa:7e:22:31:e5:c6:ab:e4:6f:51:c4:68:9b:
98:80:61:bd:4b:28:8b:9d:4c:60:da:7f:08:87:60:37:93:05:
b0:ca:cf:23:89:51:fe:73:c7:34:a2:6d:9e:d5:53:d8:18:3e:
14:c2:3d:0f:0b:bc:23:76:81:34:ad:58:79:78:51:81:db:83:
ee:41:8a:5d:e2:20:3a:8c:f3:51:bf:f2:bc:b5:14:dc:a3:50:
58:3c:b7:09:1f:4b:37:08:65:77:77:ad:e3:cc:d6:97:d4:a5:
ee:8b:2a:9b:e3:a4:da:5f:00:bb:62:f4:67:1e:b6:a3:e5:2f:
4e:39:81:f2:65:33:cb:a2:eb:50:76:e1:d2:61:e9:cd:6c:f1:
86:7d:01:74:6e:01:b9:81:29:8c:4f:a3:e9:74:df:c0:fd:f8:
61:5c:b9:36:4c:6e:a6:78:00:95:03:20:28:c7:ff:b7:d2:45:
dd:f7:b0:16:d1:ba:e8:34:67:52:08:24:cb:98:7a:88:5c:a6:
d9:78:7a:bc:55:c2:0c:1d:b4:30:0b:c2:1a:49:e8:fa:e3:09:
87:99:90:f5:ca:e7:49:d5:4c:df:bb:71:89:67:1e:e2:69:e5:
ec:8e:23:51:0e:be:94:47:7b:69:aa:66:e2:a4:41:4c:d7:4b:
d3:2c:53:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:45 2024 by rpki-client on console-ams.rpki-client.org