Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/Q_RxtcUfSIxXXqpcphuvWl4Q7Mc.roa
File: Q_RxtcUfSIxXXqpcphuvWl4Q7Mc.roa (raw, json)
Hash identifier: 0w+gVvp+Ty59WpiltauXH79jBZO/4EkXb0p1ZKq/dzc=
Subject key identifier: 43:F4:71:B5:C5:1F:48:8C:57:5E:AA:5C:A6:1B:AF:5A:5E:10:EC:C7
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 019137B66078BFA3AF3C08785A7B4342B414
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/Q_RxtcUfSIxXXqpcphuvWl4Q7Mc.roa
Signing time: Fri 09 Aug 2024 15:16:24 +0000
ROA not before: Fri 09 Aug 2024 15:16:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15626
IP address blocks: 5.34.182.0/23 maxlen: 23
5.34.182.0/24 maxlen: 24
5.34.183.0/24 maxlen: 24
46.28.64.0/21 maxlen: 21
46.28.67.0/24 maxlen: 24
82.118.17.0/24 maxlen: 24
82.118.18.0/24 maxlen: 24
193.238.152.0/23 maxlen: 23
193.238.153.0/24 maxlen: 24
217.12.192.0/21 maxlen: 21
217.12.199.0/24 maxlen: 24
217.12.204.0/23 maxlen: 23
217.12.210.0/23 maxlen: 23
217.12.210.0/24 maxlen: 24
217.12.212.0/22 maxlen: 22
217.12.215.0/24 maxlen: 24
217.12.216.0/23 maxlen: 23
217.12.220.0/22 maxlen: 22
217.12.221.0/24 maxlen: 24
217.12.223.0/24 maxlen: 24
2a02:27a8::/32 maxlen: 32
2a02:27a8:feed::/48 maxlen: 48
2a02:27ad::/32 maxlen: 32
2a05:9407::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 04 Sep 2024 12:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:b6:60:78:bf:a3:af:3c:08:78:5a:7b:43:42:b4:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Aug 9 15:16:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43f471b5c51f488c575eaa5ca61baf5a5e10ecc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8f:e4:1a:6d:c3:16:ab:17:84:58:d3:bb:dc:
e4:f7:48:42:fd:48:59:24:cf:56:ac:95:fa:65:8d:
47:8c:d2:b0:fb:89:cc:b4:f9:c9:80:c6:7b:c7:2d:
46:e8:b4:c6:bb:20:af:df:88:ca:2d:80:66:0f:50:
b5:3d:f9:da:3b:0a:17:a8:46:da:19:36:a5:0e:89:
50:e7:0e:cb:8d:a1:af:e5:45:4f:7f:c8:71:9f:7a:
d1:fb:ec:74:8b:dc:2c:59:8d:17:f9:c6:5c:a5:f9:
21:46:d8:44:d2:24:28:a7:22:5f:3c:5e:2a:19:f1:
39:94:95:fe:38:7c:e8:47:74:83:39:56:3d:37:ab:
47:89:d0:9f:88:40:4f:a5:37:57:53:41:a0:ef:f4:
68:7a:c1:99:26:26:f5:89:57:1b:5c:34:b1:b0:97:
da:9c:8e:40:6e:d9:fa:75:ce:d0:cb:ae:ea:52:14:
0f:62:21:44:a1:4c:a9:0f:d6:10:bd:16:24:92:5d:
1d:6d:eb:ee:c7:f1:ae:dd:bf:00:9d:0d:21:2f:80:
ee:ac:f4:88:a5:a7:f2:33:8d:a3:0f:74:ad:0d:a2:
5d:ee:bb:3b:cf:a8:5a:9d:15:ed:0a:02:43:96:30:
f9:85:df:0c:ad:de:8c:ee:f7:b1:6b:8f:6a:37:e9:
f5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F4:71:B5:C5:1F:48:8C:57:5E:AA:5C:A6:1B:AF:5A:5E:10:EC:C7
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/Q_RxtcUfSIxXXqpcphuvWl4Q7Mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.182.0/23
46.28.64.0/21
82.118.17.0-82.118.18.255
193.238.152.0/23
217.12.192.0/21
217.12.204.0/23
217.12.210.0-217.12.217.255
217.12.220.0/22
IPv6:
2a02:27a8::/32
2a02:27ad::/32
2a05:9407::/32
Signature Algorithm: sha256WithRSAEncryption
16:61:19:0c:fa:26:2b:2f:5c:b7:b1:5b:6c:23:10:64:34:a8:
c0:4f:9d:2e:60:c7:37:dd:3e:f8:c9:fe:37:21:8e:e2:60:9b:
8b:fe:5b:19:62:27:ac:c8:a8:50:45:a3:9f:a9:c4:be:31:56:
3a:a1:e4:a2:fc:c6:27:67:72:9c:30:3a:5f:fa:f1:c4:02:76:
ae:80:ee:10:97:4c:a2:88:b2:dc:68:cb:c7:24:43:da:ae:d5:
d8:7d:f9:7f:db:a4:0f:d0:5a:02:5b:cb:5d:f8:85:ab:ca:17:
60:4d:a0:01:c7:6b:ec:61:b2:77:65:6f:45:cd:d5:02:b9:1b:
fc:62:87:1e:49:07:9c:cb:68:53:7b:66:10:cd:e2:f4:79:0a:
35:54:be:ec:95:fd:bc:d2:3a:4f:56:96:eb:d7:d7:70:a5:1f:
3f:cf:43:26:eb:ee:33:ca:9b:e8:85:72:8e:8d:f8:08:0c:8e:
b8:3d:0a:33:aa:d5:4e:86:8e:f9:05:b1:fe:fe:5d:f1:fd:77:
96:4f:cb:0a:76:0c:da:c0:ed:d7:fc:6c:35:7c:33:29:70:e7:
51:19:33:d3:82:2c:3b:8d:7f:30:26:16:c7:5d:5c:c2:6c:ee:
64:29:a6:57:dc:8e:ff:45:00:f8:60:d4:9c:db:e9:53:4f:a8:
04:e2:43:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 15:47:48 2024 by rpki-client on console-fra.rpki-client.org