Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/QqL0DjJ2UoS-ru0NGsCWZ0FPows.roa
File: QqL0DjJ2UoS-ru0NGsCWZ0FPows.roa (raw, json)
Hash identifier: vMO9s3Id55MqX09BbmalCAaieGkQA9rjBHQpHLXNNl0=
Subject key identifier: 42:A2:F4:0E:32:76:52:84:BE:AE:ED:0D:1A:C0:96:67:41:4F:A3:0B
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01867DA9C55849FDA91290FDED845F8E3B21
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/QqL0DjJ2UoS-ru0NGsCWZ0FPows.roa
Signing time: Thu 23 Feb 2023 09:45:23 +0000
ROA not before: Thu 23 Feb 2023 09:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
94.206.181.0/24 maxlen: 24
5.31.64.0/19 maxlen: 19
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
5.30.32.0/19 maxlen: 19
94.201.251.0/24 maxlen: 24
5.30.64.0/19 maxlen: 19
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
87.200.0.0/15 maxlen: 19
80.227.0.0/16 maxlen: 19
94.201.196.0/22 maxlen: 22
5.30.0.0/19 maxlen: 19
91.72.0.0/14 maxlen: 19
5.30.8.0/22 maxlen: 22
91.73.216.0/23 maxlen: 23
5.32.64.0/19 maxlen: 19
5.30.160.0/19 maxlen: 19
91.72.204.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
94.203.204.0/22 maxlen: 22
5.30.96.0/19 maxlen: 19
5.32.32.0/19 maxlen: 19
5.30.128.0/19 maxlen: 19
91.74.78.0/23 maxlen: 23
213.132.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
80.227.200.0/22 maxlen: 22
5.30.192.0/19 maxlen: 19
94.200.248.0/22 maxlen: 22
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2e::/32 maxlen: 32
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 Feb 2023 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7d:a9:c5:58:49:fd:a9:12:90:fd:ed:84:5f:8e:3b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Feb 23 09:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42a2f40e32765284beaeed0d1ac09667414fa30b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9b:ff:09:ec:40:0c:da:76:68:15:d9:57:f3:
94:0c:63:a4:10:97:a3:c4:8f:4c:a3:26:a2:12:26:
aa:30:24:8b:ca:26:41:27:57:11:d4:31:13:53:19:
54:cf:b7:0b:f9:e0:83:1a:f0:dd:1d:49:98:35:3f:
81:17:46:8d:46:53:54:a4:d6:e9:fb:f0:0d:d8:75:
a9:4a:b0:14:f1:f4:aa:8a:2a:6c:23:35:7d:1c:7a:
86:27:e2:72:d4:12:25:c1:4a:50:e3:c7:4c:5f:e4:
91:8f:d4:c3:ce:63:fd:dd:19:09:26:02:e8:66:61:
1a:be:38:6b:f7:f7:c1:18:57:25:2c:08:5c:4c:4a:
78:e5:83:99:6e:c5:59:00:96:7f:43:b2:8d:83:da:
fd:ea:ed:31:e2:8b:88:cd:27:52:8e:8a:c9:40:5f:
86:4f:24:ed:6e:c5:61:e1:7c:55:c9:a8:d7:53:5e:
f5:10:52:ca:11:8d:55:71:0e:e9:a6:86:6e:e2:7b:
9a:90:b2:48:58:56:da:d3:12:ea:a6:ba:ec:21:56:
c6:87:0c:ab:8e:d2:5e:e4:67:e7:ee:f4:33:cd:f1:
8a:84:ae:7a:62:42:ba:fe:85:f6:93:66:c3:8a:cc:
db:b7:db:27:64:1c:f3:f9:43:2d:1e:1c:de:b9:da:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A2:F4:0E:32:76:52:84:BE:AE:ED:0D:1A:C0:96:67:41:4F:A3:0B
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/QqL0DjJ2UoS-ru0NGsCWZ0FPows.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.30.0.0-5.30.223.255
5.31.64.0/18
5.32.32.0-5.32.127.255
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f2b::/32
2a00:f2e::/32
Signature Algorithm: sha256WithRSAEncryption
97:46:9c:80:42:d3:cd:8f:19:fb:79:c0:c9:be:9e:00:69:fe:
98:3e:1d:2b:43:f3:e0:01:f8:7f:b0:2b:a2:c5:03:f1:74:8f:
f7:7c:27:d1:42:52:fb:72:68:d0:e9:2a:da:a1:47:fa:7b:c4:
fd:13:e4:9d:4a:2f:29:b3:9c:f3:14:4e:9b:ec:e0:23:7a:7e:
ca:76:12:49:77:34:7f:94:74:c8:2b:0c:69:a8:e5:f2:7e:56:
a9:f0:df:59:46:d6:42:12:7d:bd:90:88:f0:c0:2b:24:7f:0f:
2a:0c:d9:ff:3a:4e:c8:b9:c0:98:a1:66:33:5d:b2:66:d8:a3:
f0:24:7d:13:d4:4b:b4:5b:1e:bb:83:a0:bb:4e:4d:2f:c8:b2:
ce:cc:27:cc:4e:b3:2d:a4:2b:39:c5:7a:2c:f6:8b:a9:62:bb:
a2:16:49:a4:29:98:88:50:46:50:0f:c9:78:27:e8:57:d0:f5:
c2:f3:a9:7c:89:c2:5c:d3:05:9e:df:a0:d0:34:d0:2d:ba:77:
0d:cc:43:18:d6:88:96:87:63:94:a6:96:4a:58:90:5a:86:8a:
ff:d3:b5:7e:4a:29:5d:64:e4:a4:00:f2:f0:cf:df:fd:bc:49:
bf:9c:8f:ab:c8:17:0d:ba:96:5e:c5:02:f4:9d:e2:38:89:56:
65:e2:6e:95
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAYZ9qcVYSf2pEpD97YRfjjshMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZGE2MGYwNDlkZmJhMzRiZTRiNGU4NDE4YjlmZjQ5MjEy
NWM0NDkwHhcNMjMwMjIzMDk0NTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmEyZjQwZTMyNzY1Mjg0YmVhZWVkMGQxYWMwOTY2NzQxNGZhMzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpv/CexADNp2aBXZV/OUDGOkEJej
xI9MoyaiEiaqMCSLyiZBJ1cR1DETUxlUz7cL+eCDGvDdHUmYNT+BF0aNRlNUpNbp
+/AN2HWpSrAU8fSqiipsIzV9HHqGJ+Jy1BIlwUpQ48dMX+SRj9TDzmP93RkJJgLo
ZmEavjhr9/fBGFclLAhcTEp45YOZbsVZAJZ/Q7KNg9r96u0x4ouIzSdSjorJQF+G
TyTtbsVh4XxVyajXU171EFLKEY1VcQ7ppoZu4nuakLJIWFba0xLqprrsIVbGhwyr
jtJe5Gfn7vQzzfGKhK56YkK6/oX2k2bDiszbt9snZBzz+UMtHhzeudputQIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFEKi9A4ydlKEvq7tDRrAlmdBT6MLMB8GA1UdIwQY
MBaAFInaYPBJ37o0vktOhBi5/0khJcRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWRwZzhFbmZ1alMtUzA2RUdMbl9TU0VseEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTQ3N2YtMDc4NS00MDI2LTgzYmUt
Njk4OTBjODI5ZTMzLzEvUXFMMERqSjJVb1MtcnUwTkdzQ1daMEZQb3dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTQ3N2YtMDc4NS00MDI2LTgzYmUtNjk4OTBjODI5ZTMz
LzEvaWRwZzhFbmZ1alMtUzA2RUdMbl9TU0VseEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBBBAIAATA7MAsDAwEFHgME
BQUewAMEBgUfQDAMAwQFBSAgAwQHBSAAAwMAUOMDAwFXyAMDAltIAwMDXsgDBAXV
hCAwFAQCAAIwDgMFACoADysDBQAqAA8uMA0GCSqGSIb3DQEBCwUAA4IBAQCXRpyA
QtPNjxn7ecDJvp4Aaf6YPh0rQ/PgAfh/sCuixQPxdI/3fCfRQlL7cmjQ6SraoUf6
e8T9E+SdSi8ps5zzFE6b7OAjen7KdhJJdzR/lHTIKwxpqOXyflap8N9ZRtZCEn29
kIjwwCskfw8qDNn/Ok7IucCYoWYzXbJm2KPwJH0T1Eu0Wx67g6C7Tk0vyLLOzCfM
TrMtpCs5xXos9oupYruiFkmkKZiIUEZQD8l4J+hX0PXC86l8icJc0wWe36DQNNAt
uncNzEMY1oiWh2OUppZKWJBahor/07V+SildZOSkAPLwz9/9vEm/nI+ryBcNupZe
xQL0neI4iVZl4m6V
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org