Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/QuZzJF3JiQyLVx-WLTOBlg2AaMs.roa
File: QuZzJF3JiQyLVx-WLTOBlg2AaMs.roa (raw, json)
Hash identifier: ut/AzG5tCjaLjjFzY40NvsLFcUSg4C3WAyNsjyBsrVM=
Subject key identifier: 42:E6:73:24:5D:C9:89:0C:8B:57:1F:96:2D:33:81:96:0D:80:68:CB
Certificate issuer: /CN=ffbcae2b290c801d57d09d025a9348e16706f182
Certificate serial: 018CC7958958CA92CD76D1703326A9E88E3E
Authority key identifier: FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/QuZzJF3JiQyLVx-WLTOBlg2AaMs.roa
Signing time: Tue 02 Jan 2024 00:31:55 +0000
ROA not before: Tue 02 Jan 2024 00:31:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198537
IP address blocks: 194.53.61.0/24 maxlen: 24
45.159.238.0/24 maxlen: 24
45.159.239.0/24 maxlen: 24
45.159.237.0/24 maxlen: 24
45.159.238.0/23 maxlen: 23
45.159.236.0/24 maxlen: 24
45.159.236.0/22 maxlen: 22
45.159.236.0/23 maxlen: 23
185.146.54.0/23 maxlen: 23
185.146.55.0/24 maxlen: 24
185.146.53.0/24 maxlen: 24
185.146.54.0/24 maxlen: 24
185.146.52.0/24 maxlen: 24
185.146.52.0/22 maxlen: 22
185.146.52.0/23 maxlen: 23
91.236.35.0/24 maxlen: 24
91.236.32.0/22 maxlen: 22
91.236.32.0/23 maxlen: 23
91.236.33.0/24 maxlen: 24
91.236.34.0/24 maxlen: 24
91.236.34.0/23 maxlen: 23
91.236.32.0/24 maxlen: 24
77.83.42.0/24 maxlen: 24
77.83.43.0/24 maxlen: 24
77.83.40.0/23 maxlen: 23
77.83.40.0/22 maxlen: 22
77.83.40.0/24 maxlen: 24
77.83.41.0/24 maxlen: 24
77.83.42.0/23 maxlen: 23
37.221.102.0/23 maxlen: 23
37.221.102.0/24 maxlen: 24
37.221.103.0/24 maxlen: 24
37.221.100.0/24 maxlen: 24
37.221.101.0/24 maxlen: 24
37.221.100.0/23 maxlen: 23
37.221.100.0/22 maxlen: 22
194.53.1.0/24 maxlen: 24
194.53.2.0/24 maxlen: 24
2a07:4bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 06 Jun 2024 10:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:89:58:ca:92:cd:76:d1:70:33:26:a9:e8:8e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbcae2b290c801d57d09d025a9348e16706f182
Validity
Not Before: Jan 2 00:31:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42e673245dc9890c8b571f962d3381960d8068cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a9:60:03:04:ee:18:c1:af:16:6d:ac:6b:47:
0a:01:00:00:d2:93:42:83:6e:df:3b:b6:d2:b9:a3:
d7:32:eb:bb:e3:c3:53:0a:3e:5a:85:be:aa:1a:d6:
34:69:39:08:91:a6:d1:4f:c5:78:73:31:12:38:2a:
d7:ce:f1:c3:25:24:de:d0:30:ce:60:f1:3b:ed:e6:
d6:c6:21:aa:4d:1a:65:68:a0:f8:34:95:c7:23:b2:
df:19:50:10:87:bd:33:c3:08:d5:03:00:a8:ce:ff:
4f:0b:50:44:86:17:fa:8d:85:a0:a0:26:07:1e:70:
fe:42:6f:90:95:34:1d:0a:77:ee:ab:48:a1:1b:6d:
ad:d3:1e:b4:c5:42:a9:5d:7a:9d:0a:b9:ed:b0:7a:
88:6e:da:39:34:81:58:e4:e0:cd:44:5d:87:33:d7:
89:e1:4e:91:95:66:07:ee:a6:9f:3b:b5:d9:af:01:
42:84:a0:6f:47:c0:1f:31:0b:3d:5a:c5:8c:86:16:
2c:e3:8b:ad:8f:30:d6:44:61:b3:ff:b4:56:4c:ca:
6f:e3:38:f1:77:25:c8:66:6f:5c:bc:d0:9f:ea:a1:
73:6d:e9:ac:bf:74:7b:70:b3:76:e7:25:35:14:17:
ea:08:08:94:32:8c:eb:e0:64:47:36:19:ca:f1:3e:
47:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E6:73:24:5D:C9:89:0C:8B:57:1F:96:2D:33:81:96:0D:80:68:CB
X509v3 Authority Key Identifier:
keyid:FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/QuZzJF3JiQyLVx-WLTOBlg2AaMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/_7yuKykMgB1X0J0CWpNI4WcG8YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.100.0/22
45.159.236.0/22
77.83.40.0/22
91.236.32.0/22
185.146.52.0/22
194.53.1.0-194.53.2.255
194.53.61.0/24
IPv6:
2a07:4bc0::/29
Signature Algorithm: sha256WithRSAEncryption
7a:1c:fe:72:38:26:d9:21:52:58:c9:8c:3d:04:62:4e:5d:b6:
de:4b:d1:61:2d:b0:ad:23:9d:7b:44:a2:3d:a0:7a:8a:14:3a:
a7:18:76:73:9a:bc:72:29:1b:3d:61:40:59:d5:75:a4:31:4f:
9f:16:07:b5:ec:20:26:a7:3e:be:79:bd:61:08:e7:cd:b2:dc:
46:fd:91:e4:ae:de:9d:c3:3d:11:92:c5:3e:9c:a8:14:dc:67:
cf:c5:a7:78:06:d5:15:fa:f6:b2:05:c5:36:9c:9e:5c:07:48:
75:e5:3b:90:5d:86:43:d7:1b:9a:65:62:f2:de:e3:2f:9b:10:
05:41:3c:a5:45:b6:30:ea:f4:56:9f:fd:63:7b:5a:f2:d1:a1:
55:f2:04:b1:2c:9a:47:cb:b8:a6:5e:16:94:2b:64:7a:22:a9:
99:1b:86:fa:30:3d:8a:d8:ba:57:bc:29:38:4b:e1:63:ad:aa:
e6:82:72:a6:82:1d:53:6c:13:4e:eb:ad:1a:52:59:d3:bb:5a:
38:37:fa:4e:f9:55:9e:08:25:dc:c2:dc:b9:99:49:3d:7d:78:
18:b8:78:15:1c:7d:20:57:8f:79:64:f8:70:8b:ea:83:ca:f2:
ec:1d:b2:bd:e7:6e:b9:05:03:64:96:1c:1e:5c:b6:6c:18:22:
15:0b:9f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org