Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/q2TRpBBUE0yBFBWlpUIQmU0VumQ.roa
File: q2TRpBBUE0yBFBWlpUIQmU0VumQ.roa (raw, json)
Hash identifier: w2C/W2gX2GQg1XEdNXB4PRyTygGVODiPdO0rftMo164=
Subject key identifier: AB:64:D1:A4:10:54:13:4C:81:14:15:A5:A5:42:10:99:4D:15:BA:64
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0186C77844201D2291D149A9E2C46EEFF379
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/q2TRpBBUE0yBFBWlpUIQmU0VumQ.roa
Signing time: Thu 09 Mar 2023 17:43:13 +0000
ROA not before: Thu 09 Mar 2023 17:43:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.87.0/24 maxlen: 24
141.101.90.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 Mar 2023 20:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c7:78:44:20:1d:22:91:d1:49:a9:e2:c4:6e:ef:f3:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Mar 9 17:43:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab64d1a41054134c811415a5a54210994d15ba64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0b:86:80:fe:9b:ad:f6:46:f2:ec:47:78:53:
77:0f:81:0f:6d:79:7f:46:c5:e9:54:af:6c:59:ad:
9e:a3:74:2f:7d:ac:6d:c9:20:15:2a:6f:bf:f3:f3:
24:78:50:9e:f0:57:b4:84:7d:89:dd:14:53:0b:82:
8b:9e:47:e1:1c:c0:f2:fd:fc:8e:e3:ab:79:09:d8:
3a:34:7d:8a:39:51:86:71:20:13:4b:b6:6a:78:97:
34:f0:e0:03:db:38:c9:70:4a:3c:24:25:c1:f5:b8:
b6:65:d0:bb:1a:e3:ee:a0:f0:02:87:de:52:41:d1:
91:9b:71:9a:18:a8:e7:92:29:ea:d1:25:7c:d8:4f:
1d:3b:db:c5:16:a7:b5:9b:13:81:04:49:b4:ea:4a:
5b:c2:11:50:8e:7d:0e:93:45:f4:ab:4c:12:6d:e3:
59:5b:8f:a4:e5:b9:94:ef:73:0c:22:21:37:1e:d1:
65:aa:a8:27:9e:bd:a3:49:ab:b4:b7:ec:a9:11:3d:
b0:86:23:07:1f:fb:87:cb:f3:9f:3d:dc:65:c0:27:
e7:26:8e:eb:79:14:70:7a:49:94:51:85:f7:26:df:
05:99:0a:53:7f:83:1d:b2:81:9f:23:43:ce:79:57:
42:29:99:f2:9e:09:86:33:ed:0f:08:33:d4:6e:5f:
e6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:64:D1:A4:10:54:13:4C:81:14:15:A5:A5:42:10:99:4D:15:BA:64
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/q2TRpBBUE0yBFBWlpUIQmU0VumQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::-2a06:98c0:1c24:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
67:67:a0:a6:b4:0a:e4:8b:80:18:2f:49:be:a1:91:28:e7:d2:
54:b1:d1:27:f9:82:b1:bf:94:ea:74:8c:2f:f8:38:6c:8a:3c:
d8:d1:de:48:55:6b:a1:30:51:d2:72:70:2a:3a:8d:ed:d8:0d:
7b:dc:fb:47:43:3c:54:23:1f:0e:cb:a3:1b:83:2c:6a:21:25:
76:05:48:f3:24:4a:9f:d8:32:03:85:68:bf:7e:14:5d:17:0f:
3e:5b:76:9a:db:0a:cf:80:fe:2c:74:9c:11:67:cd:9e:01:5b:
8b:b3:66:22:b5:ec:81:7a:a9:f5:4a:8e:a3:88:0c:ba:85:f4:
72:3e:2e:83:e0:ca:f2:06:3c:ca:88:4b:4f:cc:03:41:a7:84:
28:3c:0e:b1:eb:ab:74:6b:05:d4:52:c6:79:7d:95:58:65:d4:
55:ab:9b:2d:c2:ec:a7:19:e7:05:ea:40:1c:1f:a3:7b:6b:6f:
ef:bd:4c:74:f2:f9:79:b4:5e:bb:0f:d3:ef:88:d8:09:a7:7b:
24:2e:ed:4a:b7:09:f6:f4:d5:dd:c9:5a:a7:a8:f2:6f:b5:15:
58:fb:f2:d6:81:20:e3:d3:01:bf:63:57:95:a2:88:50:de:98:
05:f6:1d:0d:94:8e:9f:a1:4a:1c:53:68:2b:95:8e:cc:8f:63:
ae:92:3c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:49 2024 by rpki-client on console-ams.rpki-client.org