Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/tqd7v_n0d46-Xq_0wmcyvyeflNc.roa
File: tqd7v_n0d46-Xq_0wmcyvyeflNc.roa (raw, json)
Hash identifier: KyvBBdg/znRuQ3MntnyZZz2sCMIA7zwv6Jn7mK9E60c=
Subject key identifier: B6:A7:7B:BF:F9:F4:77:8E:BE:5E:AF:F4:C2:67:32:BF:27:9F:94:D7
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 018631930BBD3552FDCB1E1108214CB13F3A
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/tqd7v_n0d46-Xq_0wmcyvyeflNc.roa
Signing time: Wed 08 Feb 2023 15:09:25 +0000
ROA not before: Wed 08 Feb 2023 15:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202914
IP address blocks: 84.246.242.0/24 maxlen: 24
141.98.12.0/24 maxlen: 24
141.98.13.0/24 maxlen: 24
141.98.14.0/23 maxlen: 24
141.98.12.0/22 maxlen: 22
185.121.172.0/22 maxlen: 22
185.121.172.0/23 maxlen: 24
185.150.196.0/22 maxlen: 24
84.246.240.0/23 maxlen: 23
185.121.174.0/24 maxlen: 24
185.121.174.0/23 maxlen: 23
185.121.175.0/24 maxlen: 24
91.210.56.0/22 maxlen: 24
2a0d:3e80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 03 May 2023 12:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:93:0b:bd:35:52:fd:cb:1e:11:08:21:4c:b1:3f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Feb 8 15:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6a77bbff9f4778ebe5eaff4c26732bf279f94d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9f:93:e1:8e:a8:f6:60:e7:25:b0:62:b3:4e:
40:e0:92:cc:1f:4e:9e:7d:7c:53:19:75:74:c8:ce:
36:1f:76:48:50:e3:16:6a:28:46:7c:57:f8:49:e0:
64:56:8a:85:d7:bf:d0:fe:52:21:67:56:3f:4b:a4:
70:ff:e8:6c:42:13:99:69:00:68:4a:bf:39:3a:be:
60:b5:6e:45:23:87:dc:b8:d0:10:36:c8:4e:f4:13:
08:d3:b4:78:4f:6a:22:6d:7d:7b:71:2c:3a:a4:e1:
17:7a:62:e1:74:5f:3b:a5:08:1c:96:66:22:c9:0a:
35:b8:b6:1d:7e:71:a6:1d:80:5b:79:cb:4d:cf:34:
05:cc:37:0d:23:81:9f:07:38:6f:c2:56:a0:a3:10:
07:d3:62:c7:80:ce:66:2b:c5:e1:19:e5:72:33:6c:
7f:f3:a6:cc:d3:7e:dd:9c:e6:54:fe:17:38:da:8b:
8e:c5:8c:a8:39:b1:51:5f:97:3a:29:0c:ef:e8:53:
af:ee:24:39:76:91:8e:8b:d1:cc:52:9b:ca:05:92:
4f:e2:73:69:44:87:5b:1c:ae:5c:e4:f6:9d:b7:09:
54:52:ff:e4:93:19:ed:bb:d3:c8:bc:01:19:08:8c:
29:02:78:e3:93:ef:0e:92:c2:62:da:c1:1b:ea:19:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A7:7B:BF:F9:F4:77:8E:BE:5E:AF:F4:C2:67:32:BF:27:9F:94:D7
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/tqd7v_n0d46-Xq_0wmcyvyeflNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.240.0-84.246.242.255
91.210.56.0/22
141.98.12.0/22
185.121.172.0/22
185.150.196.0/22
IPv6:
2a0d:3e80::/29
Signature Algorithm: sha256WithRSAEncryption
c5:5d:07:cf:b6:2d:da:92:59:38:82:3b:b8:4d:94:e8:70:57:
e6:15:87:51:b8:20:5d:fc:19:19:54:96:09:63:c7:55:1d:50:
ee:ad:83:fd:c1:f2:a3:0a:8a:00:6d:4b:d4:db:9a:8f:d4:84:
3e:30:64:dc:16:32:90:27:de:13:f7:5e:94:13:b9:4b:85:1f:
4b:7e:ed:4f:3f:62:00:b9:4d:87:a8:93:a2:2c:0f:0d:1d:d7:
52:44:76:3b:d1:96:6c:4d:1e:92:81:e8:2c:e2:a1:ab:f4:c0:
fa:20:b4:29:dd:f3:47:49:f5:28:00:6e:19:df:1c:4f:f7:68:
0b:77:ca:f8:b8:91:75:a2:2b:9a:fb:ba:ae:c7:c0:6a:ad:c9:
19:b6:07:7d:2a:11:58:3b:18:1c:56:3c:9e:83:eb:de:dc:57:
e3:e4:72:19:66:43:f4:3c:9c:15:8d:50:5a:72:80:cf:21:d3:
bf:3b:66:a0:2a:aa:c3:1b:e9:ca:ad:8e:38:66:ac:f6:00:b0:
4f:9d:16:f7:ea:e9:bc:05:e9:64:19:98:05:31:55:b0:83:df:
49:95:0c:74:05:5e:e3:ca:f4:fc:ec:ff:74:29:80:0f:b4:f0:
50:09:dd:f5:55:a8:45:0e:e8:12:e5:08:c7:90:b2:87:6e:54:
01:4c:09:43
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYYxkwu9NVL9yx4RCCFMsT86MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk
ZWRhZTQwHhcNMjMwMjA4MTUwOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmE3N2JiZmY5ZjQ3NzhlYmU1ZWFmZjRjMjY3MzJiZjI3OWY5NGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnp+T4Y6o9mDnJbBis05A4JLMH06e
fXxTGXV0yM42H3ZIUOMWaihGfFf4SeBkVoqF17/Q/lIhZ1Y/S6Rw/+hsQhOZaQBo
Sr85Or5gtW5FI4fcuNAQNshO9BMI07R4T2oibX17cSw6pOEXemLhdF87pQgclmYi
yQo1uLYdfnGmHYBbectNzzQFzDcNI4GfBzhvwlagoxAH02LHgM5mK8XhGeVyM2x/
86bM037dnOZU/hc42ouOxYyoObFRX5c6KQzv6FOv7iQ5dpGOi9HMUpvKBZJP4nNp
RIdbHK5c5PadtwlUUv/kkxntu9PIvAEZCIwpAnjjk+8OksJi2sEb6hkWOwIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFLane7/59HeOvl6v9MJnMr8nn5TXMB8GA1UdIwQY
MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt
NjIzZTE5OWZkYmU5LzEvdHFkN3ZfbjBkNDYtWHFfMHdtY3l2eWVmbE5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5
LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmMAwDBARU9vAD
BABU9vIDBAJb0jgDBAKNYgwDBAK5eawDBAK5lsQwDQQCAAIwBwMFAyoNPoAwDQYJ
KoZIhvcNAQELBQADggEBAMVdB8+2LdqSWTiCO7hNlOhwV+YVh1G4IF38GRlUlglj
x1UdUO6tg/3B8qMKigBtS9Tbmo/UhD4wZNwWMpAn3hP3XpQTuUuFH0t+7U8/YgC5
TYeok6IsDw0d11JEdjvRlmxNHpKB6Czioav0wPogtCnd80dJ9SgAbhnfHE/3aAt3
yvi4kXWiK5r7uq7HwGqtyRm2B30qEVg7GBxWPJ6D697cV+PkchlmQ/Q8nBWNUFpy
gM8h0787ZqAqqsMb6cqtjjhmrPYAsE+dFvfq6bwF6WQZmAUxVbCD30mVDHQFXuPK
9Pzs/3QpgA+08FAJ3fVVqEUO6BLlCMeQsoduVAFMCUM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org