Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/1-q65ETjzZUEf0183BZ80ir-qdQI.roa
File: 1-q65ETjzZUEf0183BZ80ir-qdQI.roa (raw, json)
Hash identifier: MgCZJIQXoIb3YiO3iZ/Rqyji/YqyY+2FVlpmyW4+r20=
Subject key identifier: FA:AE:B9:11:38:F3:65:41:1F:D3:5F:37:05:9F:34:8A:BF:AA:75:02
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018D3034A02CBFA6A25A548D0BF12F72BFCC
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/1-q65ETjzZUEf0183BZ80ir-qdQI.roa
Signing time: Mon 22 Jan 2024 08:06:11 +0000
ROA not before: Mon 22 Jan 2024 08:06:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13335
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.75.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.82.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.87.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.107.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.112.0/23 maxlen: 23
141.101.114.0/23 maxlen: 23
141.101.120.0/22 maxlen: 22
188.114.96.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.98.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c0:1c25::/48 maxlen: 48
2a06:98c0:1c26::/48 maxlen: 48
2a06:98c0:1c27::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 Jan 2024 17:20:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:34:a0:2c:bf:a6:a2:5a:54:8d:0b:f1:2f:72:bf:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 22 08:06:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=faaeb91138f365411fd35f37059f348abfaa7502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f1:72:b7:e9:58:6b:b5:9e:38:27:09:15:38:
e8:74:0a:d6:1d:eb:e1:5e:0d:80:6f:21:a8:df:ce:
40:0e:ac:1d:27:10:7a:61:a3:98:33:c8:27:6d:36:
74:e6:af:11:41:43:5f:7e:30:cf:e5:cb:51:b7:3b:
d2:31:3d:5e:f1:04:c6:b0:fb:92:c7:3a:1a:33:6b:
42:75:12:6e:03:b3:e4:a1:8a:d9:d2:fd:87:1f:73:
1d:7b:39:2e:44:f7:dc:54:f9:33:a8:d7:75:d6:5a:
37:fb:f5:73:6b:37:32:57:c7:6e:42:66:ff:6a:37:
6d:a1:2a:22:44:c8:86:17:64:b2:3e:75:ba:2c:b1:
b4:4f:35:d4:0d:5a:ba:5e:5e:d7:ba:99:56:ec:b2:
7f:64:20:2b:b0:a2:c3:72:0e:02:3c:f4:a0:08:d1:
89:8b:51:cc:72:67:e3:e3:fd:e9:0e:37:fe:6b:fc:
17:af:0c:a0:68:7e:56:97:81:27:32:06:95:b2:d4:
d0:48:da:a2:48:af:38:3b:0f:76:34:5e:8e:81:16:
be:61:a8:31:7e:e6:4e:ff:45:4d:e7:f3:3e:6a:b7:
d2:39:e8:23:fb:dd:65:da:02:50:9f:72:0e:b1:42:
51:5c:82:e6:52:36:d4:d8:15:6e:64:95:2d:46:81:
7e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:AE:B9:11:38:F3:65:41:1F:D3:5F:37:05:9F:34:8A:BF:AA:75:02
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/1-q65ETjzZUEf0183BZ80ir-qdQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::/45
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
08:f2:25:33:98:4b:6e:83:8f:22:f1:78:85:cc:10:38:c9:2d:
b4:fe:bf:89:c9:10:a8:e6:40:ab:d7:8e:cf:2e:bc:20:a0:3e:
76:45:49:24:ac:26:bd:7a:a1:97:70:0a:de:98:e2:2b:20:21:
0c:3f:3f:35:69:27:50:3b:17:30:fa:da:6a:58:18:db:87:9b:
0a:cb:7e:a6:00:51:a9:a2:e6:9f:1c:08:7a:69:47:49:05:1a:
16:da:ad:ca:0b:26:21:ce:c8:a9:3c:df:37:d9:ed:d8:8f:9e:
09:4c:18:4c:a6:15:9b:f9:df:ae:3e:06:57:66:b5:31:59:f9:
ff:e3:29:9d:fd:21:c9:4b:0b:fd:e5:18:4b:1e:2b:84:a6:ed:
f5:49:9d:f1:ae:1e:d2:6d:ee:6d:1d:1f:2e:24:5d:5c:47:a2:
0d:f1:36:c8:52:14:1c:43:dd:3c:95:b1:e5:88:c5:d1:93:a1:
d0:2e:cb:94:33:3d:99:c2:e3:1a:48:c5:7e:5b:14:a0:69:09:
8a:44:7b:dc:7e:a0:d9:b8:ba:8f:27:99:98:78:4d:bf:33:8b:
95:7c:2a:a5:af:04:ac:e1:61:da:2a:e4:97:60:da:b6:cd:de:
59:65:86:bb:6c:5e:14:13:9f:11:eb:7d:2c:09:cb:4f:2f:bd:
86:b6:12:0b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:48 2024 by rpki-client on console-ams.rpki-client.org