Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/QsFpMiuiOzH22SNUhjxIIZXChjI.roa
File: QsFpMiuiOzH22SNUhjxIIZXChjI.roa (raw, json)
Hash identifier: uzdS16/4jJd/x56svpiF5K07ZoDPrMmeE/rlv4o8MIg=
Subject key identifier: 42:C1:69:32:2B:A2:3B:31:F6:D9:23:54:86:3C:48:21:95:C2:86:32
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 0189B16200BC4DDE7CC5ECCCEB31456BC49E
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/QsFpMiuiOzH22SNUhjxIIZXChjI.roa
Signing time: Tue 01 Aug 2023 13:55:37 +0000
ROA not before: Tue 01 Aug 2023 13:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.111.120.0/22 maxlen: 24
185.2.24.0/22 maxlen: 24
80.247.160.0/20 maxlen: 24
193.239.89.0/24 maxlen: 24
193.239.88.0/22 maxlen: 24
185.139.148.0/22 maxlen: 24
85.255.208.0/20 maxlen: 24
81.26.208.0/20 maxlen: 24
87.237.96.0/23 maxlen: 24
94.126.64.0/21 maxlen: 24
87.237.100.0/23 maxlen: 24
62.148.160.0/19 maxlen: 24
81.93.48.0/20 maxlen: 24
2a02:728::/32 maxlen: 48
2a06:5dc0::/29 maxlen: 48
2001:16e8::/32 maxlen: 48
2a00:f80::/32 maxlen: 48
2a02:4640::/32 maxlen: 48
2a02:4640:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Sep 2023 09:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:62:00:bc:4d:de:7c:c5:ec:cc:eb:31:45:6b:c4:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Aug 1 13:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42c169322ba23b31f6d92354863c482195c28632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:68:fd:f0:b7:31:28:db:3a:b4:be:89:cf:61:
6e:fa:c5:9f:d2:af:b8:b0:7c:24:94:a5:47:0a:8f:
aa:7a:4b:ec:44:b1:d8:76:fe:2d:42:8b:b6:29:2c:
4e:f0:8f:dc:94:d2:e9:53:28:33:76:73:3d:95:08:
cb:c3:c8:67:39:4f:46:a8:42:92:d4:1c:e8:47:15:
8e:9a:df:60:ca:bf:87:ec:a1:b4:fd:ac:24:7e:71:
23:52:dc:b8:46:d9:e6:bc:10:67:35:93:e9:34:b6:
ec:fd:c9:ab:d1:81:10:e1:b0:d4:c3:73:9c:fc:93:
5f:11:fb:82:9f:ea:47:a1:9f:9f:f2:37:e9:42:e2:
7e:55:4f:ee:ff:ac:b3:4b:a3:aa:1b:cb:f7:1d:63:
a9:33:5b:6d:e0:5b:48:eb:3c:8c:87:60:2f:0e:7e:
cf:84:1c:ff:dd:09:e0:af:5b:42:54:86:f6:95:4c:
21:a8:a0:c2:c7:e3:8f:e2:91:ba:07:2b:66:53:6f:
ac:53:87:1f:5d:95:fc:3e:f2:5b:f2:e1:d1:3a:91:
47:66:ec:f9:6d:5f:d9:29:19:f4:b1:19:e7:1d:39:
13:fb:bb:22:47:18:53:47:f9:1c:76:22:54:ad:80:
68:67:e3:67:b5:1f:d5:ae:f8:0a:10:bf:4e:63:58:
e0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C1:69:32:2B:A2:3B:31:F6:D9:23:54:86:3C:48:21:95:C2:86:32
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/QsFpMiuiOzH22SNUhjxIIZXChjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/23
87.237.100.0/23
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
4e:4f:0e:e4:e2:21:2f:46:0f:3f:32:c7:95:38:c0:0e:e5:a3:
57:d3:4a:b4:03:0d:39:d6:e8:ea:83:97:ff:67:b8:ec:99:69:
1c:f3:44:7d:a7:29:1c:a9:f1:d7:aa:8b:2d:95:8f:d2:cb:a6:
ff:ce:be:29:08:8f:69:e0:41:d2:7e:33:2c:f7:32:b5:26:2e:
f0:67:95:b6:6c:78:03:b1:39:55:d8:13:f1:3d:70:5b:d1:6f:
d2:59:f9:a9:ac:3c:d0:fb:d6:d7:eb:34:44:aa:15:72:7d:90:
58:db:84:9d:ac:03:b4:c7:23:a0:95:29:70:7d:eb:7c:5f:63:
ef:6a:fa:cb:7e:95:ae:d6:6b:1e:51:5f:78:2a:92:7e:1c:31:
35:d6:24:60:3e:8a:a0:08:6b:3d:42:48:fc:ae:da:14:8d:86:
8f:a2:45:8c:f2:89:12:2f:33:de:eb:97:e3:a6:a7:51:cb:f2:
68:d6:6a:da:4f:7b:bf:c4:c7:50:1c:ce:d9:fd:84:9e:37:69:
33:38:7a:42:af:96:c5:b7:07:3b:fb:e2:fb:74:e6:af:ff:7f:
eb:68:db:f3:29:0b:d3:3c:33:f9:49:c0:7a:d3:f3:a5:47:35:
a6:73:6b:ea:88:3a:bb:37:ff:39:4d:75:96:1a:5b:b7:fb:4f:
cd:55:63:3c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:47 2024 by rpki-client on console-ams.rpki-client.org