Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/QAYJH4VgichDne6kI1jusq0ZBuw.roa
File: QAYJH4VgichDne6kI1jusq0ZBuw.roa (raw, json)
Hash identifier: sJjwoww9CKnOZeOXsDeZgN6wPhnF+xRlFgNNNJRoRFU=
Subject key identifier: 40:06:09:1F:85:60:89:C8:43:9D:EE:A4:23:58:EE:B2:AD:19:06:EC
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 01885274FF86A278831E0F7B00AC94157B75
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/QAYJH4VgichDne6kI1jusq0ZBuw.roa
Signing time: Thu 25 May 2023 10:29:39 +0000
ROA not before: Thu 25 May 2023 10:29:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60672
IP address blocks: 193.192.2.0/23 maxlen: 23
94.126.41.0/24 maxlen: 24
94.126.44.0/23 maxlen: 23
94.126.42.0/24 maxlen: 24
94.126.46.0/24 maxlen: 24
193.193.162.0/23 maxlen: 23
178.18.120.0/22 maxlen: 22
31.24.104.0/21 maxlen: 21
31.28.64.0/24 maxlen: 24
31.28.66.0/24 maxlen: 24
31.28.71.0/24 maxlen: 24
31.28.69.0/24 maxlen: 24
31.28.73.0/24 maxlen: 24
31.28.76.0/22 maxlen: 22
31.28.87.0/24 maxlen: 24
31.28.88.0/21 maxlen: 21
2a10:6740::/32 maxlen: 32
2a01:8000::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:74:ff:86:a2:78:83:1e:0f:7b:00:ac:94:15:7b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: May 25 10:29:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4006091f856089c8439deea42358eeb2ad1906ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f6:56:f7:d5:e3:87:71:44:2d:c5:c5:7a:b4:
56:c7:1c:4a:b5:3e:b7:27:fe:09:de:e8:10:2c:65:
01:3a:52:55:94:ac:93:e5:02:23:83:fb:15:ec:13:
20:53:0c:1b:b6:e5:6c:12:fb:bf:ac:da:75:04:85:
36:56:63:de:57:b9:50:4d:c4:f4:1f:96:11:1c:e3:
93:1e:83:b2:ae:d6:a1:80:5d:b3:82:a1:33:79:7c:
f7:01:12:d1:94:35:c6:05:1f:7e:db:f0:c4:fb:8a:
8e:5a:6d:5f:fa:28:09:11:a9:0f:95:b6:67:ed:5c:
cb:cf:76:20:ba:d5:e0:50:84:9e:46:42:ce:4b:43:
32:aa:9a:ee:23:4f:d1:b6:20:6b:ab:df:e0:e8:72:
49:7f:10:d2:1b:39:60:db:d6:01:bf:0a:bb:0e:e3:
0d:02:de:f3:29:5f:31:cc:f1:bc:4d:74:c1:cb:6f:
d1:d4:32:cf:a7:61:4d:05:e1:8b:f5:44:6f:64:d9:
9f:5f:5d:b8:ae:93:86:0f:3a:92:a6:fa:24:0a:3d:
9d:2e:ec:d2:98:da:94:05:da:ae:57:c0:ef:17:0f:
3e:b8:a5:18:c2:7f:b7:98:d9:ed:9a:10:ef:03:c6:
87:e5:ca:e9:05:c3:90:46:6c:e9:70:04:57:d5:22:
25:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:06:09:1F:85:60:89:C8:43:9D:EE:A4:23:58:EE:B2:AD:19:06:EC
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/QAYJH4VgichDne6kI1jusq0ZBuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.104.0/21
31.28.64.0/24
31.28.66.0/24
31.28.69.0/24
31.28.71.0/24
31.28.73.0/24
31.28.76.0/22
31.28.87.0-31.28.95.255
94.126.41.0-94.126.42.255
94.126.44.0-94.126.46.255
178.18.120.0/22
193.192.2.0/23
193.193.162.0/23
IPv6:
2a01:8000::/32
2a10:6740::/32
Signature Algorithm: sha256WithRSAEncryption
1d:90:60:12:13:34:97:dd:cf:43:5c:45:d0:3e:48:62:5a:18:
39:3f:66:ad:6e:e2:a4:dd:18:14:22:8b:98:98:6b:6f:44:93:
fb:4d:80:28:70:5b:43:88:47:0b:8d:5b:14:30:73:ee:76:e2:
a1:9e:b0:f8:a3:f6:7a:9f:f2:e1:b4:a8:1c:00:2e:85:11:84:
35:e2:a0:5c:cf:2c:f6:9a:a9:66:3f:b1:95:a6:6c:80:e3:a1:
31:0c:09:87:08:05:4e:3f:22:6b:ac:ff:64:f7:7e:b9:83:60:
75:85:e0:dd:05:38:47:af:63:61:51:7e:e3:61:81:36:8e:4d:
99:f7:9f:f2:0e:73:20:cf:b0:e9:89:06:d1:eb:96:47:59:2f:
de:41:b2:23:26:c0:fb:51:89:fe:04:e7:de:45:cb:f7:a7:91:
7c:fc:5b:a6:10:45:c4:e5:fc:3a:f7:96:95:a3:77:72:ba:75:
41:cf:f6:6b:38:99:89:cf:da:74:f3:39:d5:82:72:ec:05:bd:
16:7a:be:25:ec:6f:ea:82:87:31:45:fb:b2:61:53:30:d0:c2:
79:ee:29:d5:93:d8:23:fe:52:1e:88:fd:f4:59:e7:70:af:34:
2c:90:14:78:5c:60:d6:c3:82:7b:eb:72:4a:90:4c:f3:e2:fb:
97:f7:c8:e1
-----BEGIN CERTIFICATE-----
MIIFdjCCBF6gAwIBAgISAYhSdP+GoniDHg97AKyUFXt1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NzJiZDQ5ZDU1MWI0YWRhNWJkNmJiNjk1NjE4YTc5NDUx
YWQzNGUwHhcNMjMwNTI1MTAyOTM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDA2MDkxZjg1NjA4OWM4NDM5ZGVlYTQyMzU4ZWViMmFkMTkwNmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/ZW99Xjh3FELcXFerRWxxxKtT63
J/4J3ugQLGUBOlJVlKyT5QIjg/sV7BMgUwwbtuVsEvu/rNp1BIU2VmPeV7lQTcT0
H5YRHOOTHoOyrtahgF2zgqEzeXz3ARLRlDXGBR9+2/DE+4qOWm1f+igJEakPlbZn
7VzLz3YgutXgUISeRkLOS0MyqpruI0/RtiBrq9/g6HJJfxDSGzlg29YBvwq7DuMN
At7zKV8xzPG8TXTBy2/R1DLPp2FNBeGL9URvZNmfX124rpOGDzqSpvokCj2dLuzS
mNqUBdquV8DvFw8+uKUYwn+3mNntmhDvA8aH5crpBcOQRmzpcARX1SIlWQIDAQAB
o4ICgjCCAn4wHQYDVR0OBBYEFEAGCR+FYInIQ53upCNY7rKtGQbsMB8GA1UdIwQY
MBaAFLlyvUnVUbStpb1rtpVhinlFGtNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTkt
Y2E1ZTY4NTQzOGEyLzEvUUFZSkg0VmdpY2hEbmU2a0kxanVzcTBaQnV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTktY2E1ZTY4NTQzOGEy
LzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGXBggrBgEFBQcBBwEB/wSBhzCBhDBsBAIAATBmAwQDHxho
AwQAHxxAAwQAHxxCAwQAHxxFAwQAHxxHAwQAHxxJAwQCHxxMMAwDBAAfHFcDBAUf
HEAwDAMEAF5+KQMEAF5+KjAMAwQCXn4sAwQAXn4uAwQCshJ4AwQBwcACAwQBwcGi
MBQEAgACMA4DBQAqAYAAAwUAKhBnQDANBgkqhkiG9w0BAQsFAAOCAQEAHZBgEhM0
l93PQ1xF0D5IYloYOT9mrW7ipN0YFCKLmJhrb0ST+02AKHBbQ4hHC41bFDBz7nbi
oZ6w+KP2ep/y4bSoHAAuhRGENeKgXM8s9pqpZj+xlaZsgOOhMQwJhwgFTj8ia6z/
ZPd+uYNgdYXg3QU4R69jYVF+42GBNo5Nmfef8g5zIM+w6YkG0euWR1kv3kGyIybA
+1GJ/gTn3kXL96eRfPxbphBFxOX8OveWlaN3crp1Qc/2aziZic/adPM51YJy7AW9
Fnq+Jexv6oKHMUX7smFTMNDCee4p1ZPYI/5SHoj99FnncK80LJAUeFxg1sOCe+ty
SpBM8+L7l/fI4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:17 2024 by rpki-client on console-ams.rpki-client.org