Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KQKCS1loIDnIhm8npdiFV43yEfo.roa
File: KQKCS1loIDnIhm8npdiFV43yEfo.roa (raw, json)
Hash identifier: lYz0ZeC9MD0v0aPU61Yq3NM77vDxUeB4usS+QNh2rHc=
Subject key identifier: 29:02:82:4B:59:68:20:39:C8:86:6F:27:A5:D8:85:57:8D:F2:11:FA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DB3298FEB8382C8C8552A70D8DFB35A08
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KQKCS1loIDnIhm8npdiFV43yEfo.roa
Signing time: Fri 16 Feb 2024 18:24:21 +0000
ROA not before: Fri 16 Feb 2024 18:24:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.140.247.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.131.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
91.132.51.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 10:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b3:29:8f:eb:83:82:c8:c8:55:2a:70:d8:df:b3:5a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 16 18:24:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2902824b59682039c8866f27a5d885578df211fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:48:6f:5f:8f:8a:53:ed:9d:46:39:a6:08:66:
2f:d5:54:50:b2:79:94:69:3e:2e:6c:33:99:9f:5f:
6a:dc:90:70:27:97:47:66:d8:1b:89:79:e9:7f:e0:
97:9a:58:19:3f:e7:fd:e7:95:01:f5:ee:49:8e:26:
50:34:e7:fa:de:1b:cf:1c:8d:ef:2c:89:be:d7:53:
0e:d0:b1:6f:f7:4e:8d:9c:0f:b5:a3:81:cc:a1:52:
17:0b:85:66:b5:b9:4a:4c:39:c7:5b:29:db:28:a6:
12:97:a4:b7:43:56:9d:fe:19:6a:8e:bd:30:ee:30:
ce:56:3c:ac:e7:9c:88:6a:1b:39:c9:5f:c8:57:d1:
08:22:eb:6a:a2:02:b5:42:6b:41:fb:97:fc:95:84:
43:c7:53:6b:c6:d8:b0:ff:26:3c:67:b8:46:13:47:
21:5b:83:42:33:68:69:47:a9:d6:75:2c:dc:e9:c0:
ae:58:45:69:52:5b:c3:0c:d2:6b:98:64:7e:55:9e:
2b:05:21:84:26:b4:18:16:21:d6:74:bc:25:90:c0:
d6:3e:4b:2c:5d:b3:d8:18:79:b0:4d:a1:f4:f0:06:
53:a8:37:3b:22:db:7a:e3:38:b4:6e:79:d7:9f:cc:
2f:60:2e:17:f6:e1:ec:c1:4d:b2:fe:d6:0a:04:d0:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:02:82:4B:59:68:20:39:C8:86:6F:27:A5:D8:85:57:8D:F2:11:FA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/KQKCS1loIDnIhm8npdiFV43yEfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
89.34.106.0/24
89.35.129.0/24
89.35.131.0/24
89.40.215.0/24
91.132.51.0/24
93.114.183.0/24
128.0.41.0/24
Signature Algorithm: sha256WithRSAEncryption
48:56:0d:b2:96:02:9f:4b:aa:d0:08:a4:e6:35:c8:4c:1b:35:
a3:cf:51:1e:57:4a:56:cc:4f:ec:07:4c:d3:de:4b:47:80:44:
4b:5d:8f:3f:18:8d:32:2b:0f:5a:bb:33:a0:5d:7c:1d:d0:c0:
e2:c1:9b:90:0d:07:48:bb:cb:b6:de:80:6f:51:d5:1f:53:50:
3c:30:b9:12:c6:5d:fb:39:9a:59:58:56:a7:d8:dd:d3:fa:17:
16:b7:a9:35:0e:31:29:f3:2f:75:20:7a:0e:9a:84:d9:0b:b0:
c5:7b:c9:41:77:42:2c:59:65:4c:f7:52:af:96:d0:89:3c:c2:
b5:21:45:f6:32:c8:92:4d:c5:cf:07:12:9f:ac:06:76:8f:3b:
f0:c9:68:43:e5:49:a1:8e:8a:69:9a:ba:7a:e7:65:bf:46:36:
f6:9c:b9:2a:64:06:61:b6:96:66:e0:89:5d:57:1c:c1:50:36:
80:03:29:9a:75:df:e8:79:43:d5:08:94:f9:a1:a0:31:3c:17:
b2:4a:c5:92:3b:ce:0a:44:48:04:d5:1d:57:b8:f0:16:0b:3f:
da:d6:f7:22:c7:70:e0:5b:6a:5a:a2:80:0a:79:f4:b5:81:a2:
f0:d3:5d:81:b9:41:21:91:ef:8a:a9:b3:37:73:bc:cf:a2:7d:
7d:2e:dc:03
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAY2zKY/rg4LIyFUqcNjfs1oIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMjE2MTgyNDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTAyODI0YjU5NjgyMDM5Yzg4NjZmMjdhNWQ4ODU1NzhkZjIxMWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0hvX4+KU+2dRjmmCGYv1VRQsnmU
aT4ubDOZn19q3JBwJ5dHZtgbiXnpf+CXmlgZP+f955UB9e5JjiZQNOf63hvPHI3v
LIm+11MO0LFv906NnA+1o4HMoVIXC4VmtblKTDnHWynbKKYSl6S3Q1ad/hlqjr0w
7jDOVjys55yIahs5yV/IV9EIIutqogK1QmtB+5f8lYRDx1Nrxtiw/yY8Z7hGE0ch
W4NCM2hpR6nWdSzc6cCuWEVpUlvDDNJrmGR+VZ4rBSGEJrQYFiHWdLwlkMDWPkss
XbPYGHmwTaH08AZTqDc7Itt64zi0bnnXn8wvYC4X9uHswU2y/tYKBNDj4wIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFCkCgktZaCA5yIZvJ6XYhVeN8hH6MB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvS1FLQ1MxbG9JRG5JaG04bnBkaUZWNDN5RWZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAJYz3AwQA
WSJqAwQAWSOBAwQAWSODAwQAWSjXAwQAW4QzAwQAXXK3AwQAgAApMA0GCSqGSIb3
DQEBCwUAA4IBAQBIVg2ylgKfS6rQCKTmNchMGzWjz1EeV0pWzE/sB0zT3ktHgERL
XY8/GI0yKw9auzOgXXwd0MDiwZuQDQdIu8u23oBvUdUfU1A8MLkSxl37OZpZWFan
2N3T+hcWt6k1DjEp8y91IHoOmoTZC7DFe8lBd0IsWWVM91KvltCJPMK1IUX2MsiS
TcXPBxKfrAZ2jzvwyWhD5Umhjoppmrp652W/Rjb2nLkqZAZhtpZm4IldVxzBUDaA
Aymadd/oeUPVCJT5oaAxPBeySsWSO84KREgE1R1XuPAWCz/a1vcix3DgW2paooAK
efS1gaLw012BuUEhke+KqbM3c7zPon19LtwD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org