Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/qm1vB3H5u-PkE6iOJ81w9UWrld0.roa
File: qm1vB3H5u-PkE6iOJ81w9UWrld0.roa (raw, json)
Hash identifier: cz20y/5foOzhZfH1oLhZmsND23myiFyLhMS51xFpRtY=
Subject key identifier: AA:6D:6F:07:71:F9:BB:E3:E4:13:A8:8E:27:CD:70:F5:45:AB:95:DD
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 01884792D2F7BDC387E2B54FF9E0FF010E06
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/qm1vB3H5u-PkE6iOJ81w9UWrld0.roa
Signing time: Tue 23 May 2023 07:46:24 +0000
ROA not before: Tue 23 May 2023 07:46:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 185.58.116.0/22 maxlen: 24
94.177.192.0/18 maxlen: 24
89.46.104.0/21 maxlen: 24
95.110.128.0/17 maxlen: 24
31.14.128.0/20 maxlen: 24
31.11.32.0/21 maxlen: 24
77.81.224.0/20 maxlen: 24
46.37.0.0/19 maxlen: 24
89.46.192.0/21 maxlen: 24
62.149.128.0/17 maxlen: 24
188.213.160.0/20 maxlen: 24
176.107.144.0/21 maxlen: 24
80.73.224.0/21 maxlen: 24
89.36.208.0/22 maxlen: 24
217.198.128.0/20 maxlen: 24
5.249.128.0/19 maxlen: 24
195.231.0.0/17 maxlen: 24
217.61.0.0/18 maxlen: 24
209.227.192.0/18 maxlen: 24
89.46.64.0/20 maxlen: 24
94.177.160.0/19 maxlen: 24
185.56.8.0/22 maxlen: 24
80.211.0.0/16 maxlen: 24
82.192.128.0/19 maxlen: 24
194.182.110.0/23 maxlen: 24
195.231.88.0/21 maxlen: 24
2a00:6d40::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 May 2023 12:41:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:92:d2:f7:bd:c3:87:e2:b5:4f:f9:e0:ff:01:0e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: May 23 07:46:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa6d6f0771f9bbe3e413a88e27cd70f545ab95dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ea:16:7c:59:80:46:67:b1:97:7e:15:69:22:
09:20:e1:40:d7:21:3b:a3:91:41:ce:80:b4:7a:72:
5f:6c:ad:ac:85:a4:db:73:13:44:20:28:18:88:88:
70:a6:85:ce:85:b4:55:07:b8:b0:10:42:da:b1:6b:
9b:c6:de:c6:8c:42:16:01:ee:8c:81:22:c2:15:21:
dc:76:51:78:b1:08:bd:94:71:ca:26:cc:2f:d5:ce:
9a:09:12:40:20:21:d3:da:2f:27:74:ab:09:fa:4e:
30:71:61:27:c4:e0:cd:69:77:f4:6c:9b:5a:89:e3:
59:2f:b5:dc:85:ef:1d:05:74:1a:b4:00:2c:ea:30:
6d:92:3d:0c:26:1c:36:80:50:bf:a4:67:44:0a:f2:
0a:a0:f0:66:c8:b4:38:38:54:88:7c:5a:b3:9b:e4:
18:39:16:5a:52:12:32:24:2e:44:aa:2d:e7:03:1d:
71:cc:fe:e2:7a:07:49:74:02:85:84:8f:ed:ee:3d:
00:29:d7:c1:06:78:65:57:2d:8a:68:7c:2a:1a:18:
c8:97:47:3d:67:a4:41:50:aa:05:d8:0a:11:96:63:
78:43:9d:2d:a9:f4:db:a4:db:8b:15:5b:48:21:ff:
ab:a5:b5:1a:f6:9c:e2:f8:18:63:19:a7:27:82:9f:
bb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6D:6F:07:71:F9:BB:E3:E4:13:A8:8E:27:CD:70:F5:45:AB:95:DD
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/qm1vB3H5u-PkE6iOJ81w9UWrld0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.128.0/19
31.11.32.0/21
31.14.128.0/20
46.37.0.0/19
62.149.128.0/17
77.81.224.0/20
80.73.224.0/21
80.211.0.0/16
82.192.128.0/19
89.36.208.0/22
89.46.64.0/20
89.46.104.0/21
89.46.192.0/21
94.177.160.0-94.177.255.255
95.110.128.0/17
176.107.144.0/21
185.56.8.0/22
185.58.116.0/22
188.213.160.0/20
194.182.110.0/23
195.231.0.0/17
209.227.192.0/18
217.61.0.0/18
217.198.128.0/20
IPv6:
2a00:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
50:a9:a3:9f:15:a7:64:c2:18:fb:b0:cc:38:c6:b4:56:34:09:
06:de:03:4d:62:cf:20:de:14:09:44:b3:d0:2d:35:00:e9:17:
93:d1:ec:46:7d:a0:67:0d:f7:70:7c:4e:e3:83:22:34:4c:7c:
c5:c0:13:fb:32:77:66:74:35:67:c4:ca:ea:3e:e7:02:da:c6:
2b:f2:92:a3:54:d8:85:7e:07:4d:a5:b9:8d:43:6e:d3:06:c4:
42:28:60:13:b4:0c:a6:34:c5:6a:14:54:6a:0d:1a:79:22:17:
2d:06:0e:a1:bb:3c:53:2d:25:08:95:7f:b6:3a:32:70:e1:46:
87:4a:6d:32:99:94:70:6f:db:8e:3e:0f:9a:f4:5b:a1:51:3c:
2e:32:4d:85:db:e7:db:ad:e2:a2:83:42:e0:b0:13:1a:3b:29:
db:66:d9:b5:d6:cc:28:3f:8d:6f:6d:9d:83:68:18:b9:e6:d9:
18:3c:3c:c4:57:2f:3f:d3:c0:42:68:57:ac:88:26:37:aa:e3:
06:f6:d5:b0:a2:2a:8e:58:e1:7c:bc:5c:c8:9f:09:ca:4c:cf:
9f:fb:f0:cd:14:4a:04:58:47:86:ea:81:32:22:ee:ea:7b:e5:
e2:48:8a:d4:24:c1:d4:6d:be:ff:76:65:69:8d:89:d3:7a:7c:
e7:c0:25:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:08 2024 by rpki-client on console-ams.rpki-client.org