Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/qbNnn3gpub-PRx9-l7ti7_d9b9s.roa
File: qbNnn3gpub-PRx9-l7ti7_d9b9s.roa (raw, json)
Hash identifier: V3cm4FZmZiilskh1zhd/3w3tmXx2Gy+JygOVqK2imEs=
Subject key identifier: A9:B3:67:9F:78:29:B9:BF:8F:47:1F:7E:97:BB:62:EF:F7:7D:6F:DB
Certificate issuer: /CN=510b419f0c17b4c8be217f64388d268d14dc261e
Certificate serial: 0191F61811CA6B59593201BD8CE2AE9538A1
Authority key identifier: 51:0B:41:9F:0C:17:B4:C8:BE:21:7F:64:38:8D:26:8D:14:DC:26:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UQtBnwwXtMi-IX9kOI0mjRTcJh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/qbNnn3gpub-PRx9-l7ti7_d9b9s.roa
Signing time: Sun 15 Sep 2024 14:30:58 +0000
ROA not before: Sun 15 Sep 2024 14:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 86.105.104.0/22 maxlen: 24
89.36.236.0/22 maxlen: 24
89.37.128.0/24 maxlen: 24
89.37.188.0/22 maxlen: 24
89.40.43.0/24 maxlen: 24
89.184.208.0/20 maxlen: 32
91.232.136.0/22 maxlen: 24
93.114.169.0/24 maxlen: 24
93.115.155.0/24 maxlen: 24
94.177.65.0/24 maxlen: 24
94.190.248.0/22 maxlen: 24
176.223.190.0/24 maxlen: 24
185.64.100.0/22 maxlen: 24
185.172.20.0/22 maxlen: 24
188.211.252.0/22 maxlen: 24
188.212.104.0/22 maxlen: 24
193.46.204.0/24 maxlen: 24
193.46.211.0/24 maxlen: 24
194.213.10.0/24 maxlen: 24
194.242.28.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 09:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f6:18:11:ca:6b:59:59:32:01:bd:8c:e2:ae:95:38:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=510b419f0c17b4c8be217f64388d268d14dc261e
Validity
Not Before: Sep 15 14:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9b3679f7829b9bf8f471f7e97bb62eff77d6fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7f:31:06:1d:9e:45:38:12:57:ad:2e:b8:24:
26:60:bb:18:99:d0:07:7f:f1:42:44:2b:4d:bd:48:
45:3a:19:6e:ec:b3:82:a0:0e:df:2d:ec:11:72:96:
b8:dd:9b:4b:f7:b0:79:08:7e:dc:16:1d:82:45:c2:
7d:35:af:6a:47:10:50:8f:07:b0:c3:22:92:79:f8:
02:12:d1:ed:08:56:8a:33:0d:96:a7:20:6a:94:f3:
b8:4a:68:61:ea:33:5c:02:78:fd:b3:3c:c7:30:1e:
fb:a7:09:1f:d9:9f:a0:65:60:a3:2b:b8:bc:60:14:
4e:21:30:a4:9d:0f:78:2a:c0:de:f3:19:4f:fe:3f:
1a:71:1e:d7:6d:7b:0a:19:f6:3e:42:47:bc:92:91:
e9:7e:be:30:28:70:7e:78:ce:bb:12:d9:9f:f0:b9:
02:07:74:e9:78:2d:78:52:35:fb:1e:26:a4:42:28:
54:52:41:b2:27:0b:96:53:0c:2a:07:84:83:15:62:
50:52:a5:93:7d:85:25:58:12:33:87:95:d8:a2:af:
5a:cd:29:ec:c2:22:8e:9a:b4:76:02:e1:69:ec:e1:
f0:24:07:96:e1:22:02:ae:2e:e5:fb:97:a2:8a:f5:
d9:de:09:ef:fd:83:17:bd:d9:0c:88:af:08:8a:59:
d1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B3:67:9F:78:29:B9:BF:8F:47:1F:7E:97:BB:62:EF:F7:7D:6F:DB
X509v3 Authority Key Identifier:
keyid:51:0B:41:9F:0C:17:B4:C8:BE:21:7F:64:38:8D:26:8D:14:DC:26:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UQtBnwwXtMi-IX9kOI0mjRTcJh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/qbNnn3gpub-PRx9-l7ti7_d9b9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/30cd0a-93cf-45dc-9356-14a09993d671/1/UQtBnwwXtMi-IX9kOI0mjRTcJh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.104.0/22
89.36.236.0/22
89.37.128.0/24
89.37.188.0/22
89.40.43.0/24
89.184.208.0/20
91.232.136.0/22
93.114.169.0/24
93.115.155.0/24
94.177.65.0/24
94.190.248.0/22
176.223.190.0/24
185.64.100.0/22
185.172.20.0/22
188.211.252.0/22
188.212.104.0/22
193.46.204.0/24
193.46.211.0/24
194.213.10.0/24
194.242.28.0/23
Signature Algorithm: sha256WithRSAEncryption
59:32:75:a0:c6:72:16:e6:d2:0d:71:7d:31:07:06:d7:4e:ad:
ff:b1:d4:7b:ef:b3:64:a3:f6:1c:a4:2d:f0:3d:5e:89:ac:b5:
75:99:b4:da:6f:53:95:d9:73:ae:40:29:75:01:db:ef:db:9f:
32:8a:46:1f:c6:ff:2b:59:b9:98:41:7d:5e:50:e5:34:28:9a:
3f:85:f5:27:04:04:62:05:d4:1a:2d:80:be:3a:db:fc:04:b9:
65:b2:c5:94:82:2b:9b:da:3f:4b:0a:47:c6:da:7f:dc:50:ca:
5c:f1:76:5b:7c:a7:58:ef:a7:7b:82:f7:1d:5a:71:71:3c:9d:
0d:09:da:bb:5d:4a:73:38:1c:75:38:37:e3:5c:bc:69:b0:ab:
e3:7e:2c:10:e7:ee:32:06:db:fc:df:cb:21:32:55:2d:f2:4d:
cd:6e:c6:d2:0a:a1:14:0b:85:03:2d:40:54:2d:92:f0:e0:78:
2c:fd:13:3f:49:b9:62:86:65:50:d3:2b:47:f1:33:22:4a:b5:
0c:ab:fb:fe:ab:96:c3:50:29:e0:2a:89:ab:97:eb:6d:06:12:
69:2d:2b:a5:c6:47:cb:4f:49:3a:9a:6e:2a:28:ad:85:44:c7:
40:15:d6:b2:22:fc:29:e5:fd:33:5f:ed:e2:f8:85:2d:ae:29:
14:f0:70:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:55 2025 by rpki-client