Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/QOslmyTIEuAvCi6aOeOYmqhTNaU.roa
File: QOslmyTIEuAvCi6aOeOYmqhTNaU.roa (raw, json)
Hash identifier: EqPJlHNg8PPEVP0aTfLqeQaef70ZrybmmasSI4dYb1o=
Subject key identifier: 40:EB:25:9B:24:C8:12:E0:2F:0A:2E:9A:39:E3:98:9A:A8:53:35:A5
Certificate issuer: /CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Certificate serial: 01870373B3B5C83E2BF85E0CF1A2237CC08A
Authority key identifier: B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/QOslmyTIEuAvCi6aOeOYmqhTNaU.roa
Signing time: Tue 21 Mar 2023 09:15:26 +0000
ROA not before: Tue 21 Mar 2023 09:15:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15547
IP address blocks: 81.88.176.0/20 maxlen: 20
81.88.176.0/21 maxlen: 21
213.230.56.0/21 maxlen: 21
213.230.52.0/22 maxlen: 22
92.240.96.0/19 maxlen: 19
185.17.176.0/22 maxlen: 22
31.31.48.0/20 maxlen: 20
213.221.128.0/19 maxlen: 19
195.162.160.0/22 maxlen: 22
195.162.164.0/23 maxlen: 23
185.44.196.0/22 maxlen: 22
195.162.168.0/21 maxlen: 21
195.162.167.0/24 maxlen: 24
195.162.176.0/20 maxlen: 20
178.237.80.0/20 maxlen: 20
194.12.16.0/20 maxlen: 20
86.111.128.0/20 maxlen: 20
185.50.220.0/22 maxlen: 22
92.62.176.0/20 maxlen: 20
81.13.128.0/17 maxlen: 17
78.155.0.0/19 maxlen: 19
77.242.160.0/20 maxlen: 20
213.238.0.0/19 maxlen: 19
185.17.108.0/22 maxlen: 22
217.79.192.0/20 maxlen: 20
2a03:4380::/32 maxlen: 32
2a02:26a0::/29 maxlen: 29
2001:14a8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 27 Mar 2023 06:41:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:73:b3:b5:c8:3e:2b:f8:5e:0c:f1:a2:23:7c:c0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Validity
Not Before: Mar 21 09:15:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40eb259b24c812e02f0a2e9a39e3989aa85335a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a4:90:91:97:69:d5:0e:38:4d:7f:60:d0:b3:
ab:41:87:30:69:05:c5:2b:4d:80:e9:80:4a:6c:f8:
ce:49:19:c2:07:92:9e:21:f9:a8:39:ac:b6:44:3c:
05:04:0d:30:b1:b3:ea:95:1e:f6:1a:b4:36:a9:24:
63:7c:68:7e:7f:e2:0b:7e:06:e2:d7:af:d1:a6:a5:
74:2c:ff:13:89:4c:62:7e:42:99:bd:cf:18:4b:d9:
35:c8:02:b1:25:a2:80:2b:bd:05:d4:91:d4:35:aa:
7b:79:d9:84:f3:01:1f:ce:9a:ea:0e:24:f3:13:14:
ae:c5:2d:e0:ee:18:0a:99:46:17:71:e6:02:46:1d:
00:dc:e9:2a:2a:d2:c6:49:0d:9a:17:a0:d7:48:35:
7a:c6:e1:74:ce:4f:d4:7d:81:5d:fd:a2:1e:16:96:
d7:07:80:b4:30:cc:88:49:18:8b:e2:de:33:67:3b:
40:16:7d:17:8d:fc:03:2b:54:3f:c5:b3:75:05:c4:
75:50:79:40:42:b8:5d:53:6f:c5:88:1c:72:4b:ac:
ef:c1:7d:a6:29:ad:3d:21:7c:ed:74:2c:4a:ca:72:
c6:51:0a:f0:75:a6:27:ea:3a:b4:50:08:ec:13:23:
fb:9d:ea:8e:04:21:05:b4:e2:ff:92:dd:9e:05:55:
8f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EB:25:9B:24:C8:12:E0:2F:0A:2E:9A:39:E3:98:9A:A8:53:35:A5
X509v3 Authority Key Identifier:
keyid:B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/QOslmyTIEuAvCi6aOeOYmqhTNaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.48.0/20
77.242.160.0/20
78.155.0.0/19
81.13.128.0/17
81.88.176.0/20
86.111.128.0/20
92.62.176.0/20
92.240.96.0/19
178.237.80.0/20
185.17.108.0/22
185.17.176.0/22
185.44.196.0/22
185.50.220.0/22
194.12.16.0/20
195.162.160.0-195.162.165.255
195.162.167.0-195.162.191.255
213.221.128.0/19
213.230.52.0-213.230.63.255
213.238.0.0/19
217.79.192.0/20
IPv6:
2001:14a8::/32
2a02:26a0::/29
2a03:4380::/32
Signature Algorithm: sha256WithRSAEncryption
35:19:d4:21:6e:aa:bf:1e:97:02:19:ae:0e:62:87:af:c6:4d:
17:29:3d:9f:bd:50:c8:f6:f7:88:1d:09:11:b7:31:bb:e8:7c:
f9:1f:41:5f:3e:18:64:e1:95:8c:97:e8:b8:78:92:7b:e2:a2:
46:71:74:74:1e:6e:3d:86:73:bb:80:59:b6:7d:83:1a:c3:8a:
26:6f:24:90:79:69:1d:fd:a8:d4:85:f6:56:40:f7:93:3c:ae:
a1:e3:af:b0:96:c7:d1:e5:ad:4d:6b:6e:26:e5:57:f8:6d:cb:
c3:c4:7c:aa:e6:70:2b:9d:0e:db:3c:bd:80:ae:b7:bc:88:55:
e8:b8:25:f3:09:5a:88:6c:4f:c9:ad:fa:92:32:ee:10:5b:4e:
55:02:f4:7f:11:9c:f1:81:2a:6c:05:cb:f7:56:b8:84:13:6d:
93:e2:a9:e8:c1:4a:e3:e5:e8:89:92:44:78:be:c3:8d:10:f4:
81:4d:d8:78:42:f0:cb:b2:de:34:3f:c3:f5:c4:fe:10:d3:c7:
4a:21:b0:53:56:76:d3:ce:32:2a:03:1f:2e:ca:bb:a0:c8:5a:
b4:d8:27:48:58:ef:a1:db:22:a4:0c:24:46:9b:53:ce:ed:be:
67:10:bc:33:0b:8c:24:0e:74:35:6d:b5:c1:d0:2d:50:1c:4a:
99:5d:d2:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:33 2024 by rpki-client on console-fra.rpki-client.org