Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/d716cd-d79f-4484-9685-8fe784e31e5d/1/Qpo-VHayNLsisvEWCZISMB2gRj8.roa
File: Qpo-VHayNLsisvEWCZISMB2gRj8.roa (raw, json)
Hash identifier: PTkgGzMBvITYcAdqNqmz0jqMsoNjlqFsDoOMBcd+KqU=
Subject key identifier: 42:9A:3E:54:76:B2:34:BB:22:B2:F1:16:09:92:12:30:1D:A0:46:3F
Certificate issuer: /CN=ca37843f0752224459e6034569a217c8b611564b
Certificate serial: 01856F4B818A86145E912AF48455A5A59C36
Authority key identifier: CA:37:84:3F:07:52:22:44:59:E6:03:45:69:A2:17:C8:B6:11:56:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjeEPwdSIkRZ5gNFaaIXyLYRVks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/d716cd-d79f-4484-9685-8fe784e31e5d/1/Qpo-VHayNLsisvEWCZISMB2gRj8.roa
Signing time: Sun 01 Jan 2023 21:44:57 +0000
ROA not before: Sun 01 Jan 2023 21:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 195.137.228.0/24 maxlen: 24
195.137.229.0/24 maxlen: 24
87.254.96.0/24 maxlen: 24
87.254.97.0/24 maxlen: 24
87.254.98.0/24 maxlen: 24
87.254.102.0/24 maxlen: 24
87.254.103.0/24 maxlen: 24
87.254.104.0/24 maxlen: 24
87.254.105.0/24 maxlen: 24
87.254.99.0/24 maxlen: 24
87.254.100.0/24 maxlen: 24
87.254.101.0/24 maxlen: 24
87.254.109.0/24 maxlen: 24
87.254.110.0/24 maxlen: 24
87.254.111.0/24 maxlen: 24
87.254.112.0/24 maxlen: 24
87.254.106.0/24 maxlen: 24
87.254.107.0/24 maxlen: 24
87.254.108.0/24 maxlen: 24
87.254.116.0/24 maxlen: 24
87.254.117.0/24 maxlen: 24
87.254.118.0/24 maxlen: 24
87.254.113.0/24 maxlen: 24
87.254.114.0/24 maxlen: 24
87.254.115.0/24 maxlen: 24
87.254.119.0/24 maxlen: 24
87.254.123.0/24 maxlen: 24
87.254.124.0/24 maxlen: 24
87.254.125.0/24 maxlen: 24
87.254.120.0/24 maxlen: 24
87.254.121.0/24 maxlen: 24
87.254.122.0/24 maxlen: 24
87.254.126.0/24 maxlen: 24
87.254.127.0/24 maxlen: 24
185.69.216.0/24 maxlen: 24
185.69.217.0/24 maxlen: 24
185.69.218.0/24 maxlen: 24
185.69.219.0/24 maxlen: 24
212.24.192.0/24 maxlen: 24
212.24.193.0/24 maxlen: 24
212.24.194.0/24 maxlen: 24
212.24.199.0/24 maxlen: 24
212.24.195.0/24 maxlen: 24
212.24.196.0/24 maxlen: 24
212.24.197.0/24 maxlen: 24
212.24.198.0/24 maxlen: 24
212.24.200.0/24 maxlen: 24
212.24.201.0/24 maxlen: 24
212.24.206.0/24 maxlen: 24
212.24.202.0/24 maxlen: 24
212.24.203.0/24 maxlen: 24
212.24.204.0/24 maxlen: 24
212.24.205.0/24 maxlen: 24
212.24.207.0/24 maxlen: 24
212.24.208.0/24 maxlen: 24
212.24.213.0/24 maxlen: 24
212.24.209.0/24 maxlen: 24
212.24.210.0/24 maxlen: 24
212.24.211.0/24 maxlen: 24
212.24.212.0/24 maxlen: 24
212.24.216.0/24 maxlen: 24
212.24.217.0/24 maxlen: 24
212.24.218.0/24 maxlen: 24
212.24.219.0/24 maxlen: 24
212.24.214.0/24 maxlen: 24
212.24.215.0/24 maxlen: 24
212.24.220.0/24 maxlen: 24
212.24.221.0/24 maxlen: 24
212.24.222.0/24 maxlen: 24
212.24.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:81:8a:86:14:5e:91:2a:f4:84:55:a5:a5:9c:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca37843f0752224459e6034569a217c8b611564b
Validity
Not Before: Jan 1 21:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=429a3e5476b234bb22b2f116099212301da0463f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:77:7d:79:ba:1d:ce:fe:9e:78:ef:bc:eb:
61:ec:39:1b:dc:65:92:a2:24:a5:cc:ec:4f:fd:df:
9e:3e:f9:bc:8c:81:2a:2a:c6:0b:7a:54:bd:ea:ce:
bf:43:ab:70:d4:a1:71:de:9e:33:62:5e:49:33:7c:
af:49:d6:bf:da:04:23:63:d8:21:b6:c7:cb:a7:ba:
72:86:6d:21:13:2b:f3:17:1c:15:24:f0:4d:df:34:
61:72:7d:bf:de:56:e6:f8:f2:ef:00:b7:76:72:9a:
e8:38:fa:46:f0:5e:fa:dc:87:fb:58:40:f4:dc:fb:
a4:d4:97:74:32:b7:a9:7d:79:55:8c:b0:a5:9d:c1:
cb:6b:58:04:9a:31:ce:8f:e8:f2:d4:a5:fd:a6:3b:
88:2c:a7:34:49:3f:38:96:78:58:b0:f3:d5:4d:3e:
7e:13:fa:b9:40:f6:c2:4b:f0:4e:2c:7d:f3:94:1f:
54:6c:cf:8d:8a:78:d1:d5:c7:af:88:42:ad:d5:62:
bc:88:e5:63:0e:b9:b6:d6:31:4a:5c:6d:5f:3a:8b:
f4:37:b0:3e:9c:c9:31:f8:81:78:93:41:24:45:b2:
2e:2b:28:c0:fc:da:54:83:f5:08:28:b3:b1:3e:e2:
5e:ae:a6:e3:98:42:18:b2:3b:c6:da:ac:52:f5:e2:
ca:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9A:3E:54:76:B2:34:BB:22:B2:F1:16:09:92:12:30:1D:A0:46:3F
X509v3 Authority Key Identifier:
keyid:CA:37:84:3F:07:52:22:44:59:E6:03:45:69:A2:17:C8:B6:11:56:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjeEPwdSIkRZ5gNFaaIXyLYRVks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d716cd-d79f-4484-9685-8fe784e31e5d/1/Qpo-VHayNLsisvEWCZISMB2gRj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d716cd-d79f-4484-9685-8fe784e31e5d/1/yjeEPwdSIkRZ5gNFaaIXyLYRVks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.96.0/19
185.69.216.0/22
195.137.228.0/23
212.24.192.0/19
Signature Algorithm: sha256WithRSAEncryption
57:3b:17:b9:d5:b4:6a:07:f1:d0:02:ca:66:fb:04:bc:32:bf:
ab:50:1a:98:53:7c:4c:1e:cd:9f:1e:d8:9d:50:10:55:5a:1e:
da:ce:04:92:3f:28:89:7d:fd:1e:3c:b1:97:b4:0d:29:af:68:
54:3b:17:31:ff:c2:93:53:3d:93:0e:c3:8d:7c:d4:56:ae:a0:
e4:39:ae:3a:ce:7a:be:41:2e:85:90:6a:dc:d8:13:7f:a0:d6:
ae:e4:b2:6d:4e:cd:6a:af:ea:47:19:a1:46:4e:1c:5f:c2:58:
39:d2:66:aa:39:1d:30:35:80:06:89:94:8f:58:dd:96:1c:74:
31:bf:f3:32:ca:b3:7d:47:36:10:2a:8d:99:2b:36:22:d7:ff:
43:cd:77:58:5e:31:20:ca:e2:37:03:5b:b7:39:fd:47:74:c1:
c4:1b:37:a0:29:7f:79:8e:0a:ef:15:26:d6:b9:08:0b:14:61:
78:b3:cc:44:93:a3:12:b1:d6:bc:01:0c:a2:b3:ed:98:fa:7c:
ef:22:98:da:a4:47:d4:0d:25:bc:12:15:94:17:28:20:6f:62:
3b:62:ec:a7:38:0e:8e:3f:23:72:ee:69:8a:47:e7:8c:5f:d6:
07:cc:6a:7c:68:ad:c0:9f:34:65:60:e6:ea:64:18:c8:9d:4e:
27:0b:b3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:18 2024 by rpki-client on console-ams.rpki-client.org