Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QsZ0ZQfOar_6JX7bw5y8GnOkUNY.roa
File: QsZ0ZQfOar_6JX7bw5y8GnOkUNY.roa (raw, json)
Hash identifier: KlR91k6PgFkUVIihxSXWQuH3q9v49DDpiquuPaE17EI=
Subject key identifier: 42:C6:74:65:07:CE:6A:BF:FA:25:7E:DB:C3:9C:BC:1A:73:A4:50:D6
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018DB29ABE8116A80B24790ECFB8BDF8D25B
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QsZ0ZQfOar_6JX7bw5y8GnOkUNY.roa
Signing time: Fri 16 Feb 2024 15:48:22 +0000
ROA not before: Fri 16 Feb 2024 15:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34754
IP address blocks: 79.100.144.0/20 maxlen: 24
87.254.160.0/19 maxlen: 24
87.254.160.0/23 maxlen: 24
87.254.162.0/23 maxlen: 24
87.254.162.0/24 maxlen: 24
87.254.163.0/24 maxlen: 24
87.254.164.0/23 maxlen: 24
87.254.164.0/24 maxlen: 24
87.254.165.0/24 maxlen: 24
87.254.166.0/23 maxlen: 24
87.254.168.0/24 maxlen: 24
87.254.169.0/24 maxlen: 24
87.254.170.0/23 maxlen: 24
87.254.172.0/23 maxlen: 24
87.254.172.0/24 maxlen: 24
87.254.173.0/24 maxlen: 24
88.87.0.0/19 maxlen: 24
88.87.0.0/24 maxlen: 24
88.87.1.0/24 maxlen: 24
88.87.2.0/24 maxlen: 24
88.87.3.0/24 maxlen: 24
88.87.4.0/24 maxlen: 24
88.87.5.0/24 maxlen: 24
88.87.6.0/23 maxlen: 24
88.87.8.0/23 maxlen: 24
88.87.8.0/24 maxlen: 24
88.87.10.0/23 maxlen: 24
88.87.10.0/24 maxlen: 24
88.87.12.0/23 maxlen: 24
88.87.14.0/24 maxlen: 24
88.87.15.0/24 maxlen: 24
88.87.16.0/23 maxlen: 24
88.87.18.0/23 maxlen: 24
88.87.20.0/23 maxlen: 24
88.87.22.0/23 maxlen: 24
88.87.22.0/24 maxlen: 24
88.87.23.0/24 maxlen: 24
88.87.24.0/22 maxlen: 24
88.87.28.0/23 maxlen: 24
88.87.30.0/24 maxlen: 24
88.87.31.0/24 maxlen: 24
109.199.128.0/19 maxlen: 24
193.228.172.0/23 maxlen: 24
193.228.182.0/23 maxlen: 24
212.50.64.0/19 maxlen: 24
212.50.64.0/22 maxlen: 24
212.50.68.0/22 maxlen: 24
212.50.70.0/24 maxlen: 24
212.50.72.0/22 maxlen: 24
212.50.76.0/22 maxlen: 24
212.50.76.0/24 maxlen: 24
212.50.77.0/24 maxlen: 24
212.50.78.0/24 maxlen: 24
212.50.79.0/24 maxlen: 24
212.50.80.0/23 maxlen: 24
212.50.82.0/23 maxlen: 24
212.50.84.0/23 maxlen: 24
212.50.86.0/23 maxlen: 24
212.50.88.0/23 maxlen: 24
212.50.90.0/23 maxlen: 24
212.50.91.0/24 maxlen: 24
212.50.92.0/24 maxlen: 24
212.50.93.0/24 maxlen: 24
212.50.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 12:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:9a:be:81:16:a8:0b:24:79:0e:cf:b8:bd:f8:d2:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Feb 16 15:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42c6746507ce6abffa257edbc39cbc1a73a450d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c6:34:d5:ba:5a:a1:12:bb:ef:89:fb:33:a3:
af:5b:bf:a2:23:dd:e3:a2:20:75:0c:0a:36:3c:78:
17:4c:fc:04:1c:63:56:f8:54:f1:c9:bf:86:49:3d:
70:f6:f9:a6:88:b0:45:9f:98:36:32:a5:be:53:e3:
43:d8:85:fe:d7:c7:07:28:05:ec:cc:5b:29:d8:d9:
f8:7b:19:4d:56:74:7c:9a:e7:5a:8f:25:94:c0:4c:
6a:c0:ef:a2:df:88:0d:80:80:ca:15:24:5b:1c:bd:
43:76:18:0c:75:07:c4:83:37:a9:99:4f:8d:dd:32:
16:5a:65:44:39:2d:e3:ea:6f:b9:72:da:37:06:d9:
e7:98:85:2b:13:38:8b:05:4f:59:5d:2e:67:f4:38:
86:ab:ea:56:7d:ee:18:36:d3:34:e6:8f:ba:ad:fa:
82:6b:b2:92:23:23:a5:c4:b9:55:4c:8f:3b:22:7e:
9c:07:93:9b:a6:de:3c:a5:cc:33:88:8a:e1:ab:97:
ad:93:6d:70:84:6f:33:ed:e2:1e:11:7a:a9:5a:a0:
e7:0f:c9:4a:c0:91:9a:9f:8b:d4:94:28:34:56:d5:
86:1d:78:0f:92:b8:e2:3f:9e:f3:82:7f:67:05:0d:
f2:c6:19:68:c1:9f:a4:d5:00:8d:20:24:fe:9a:3e:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C6:74:65:07:CE:6A:BF:FA:25:7E:DB:C3:9C:BC:1A:73:A4:50:D6
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QsZ0ZQfOar_6JX7bw5y8GnOkUNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.100.144.0/20
87.254.160.0/19
88.87.0.0/19
109.199.128.0/19
193.228.172.0/23
193.228.182.0/23
212.50.64.0/19
Signature Algorithm: sha256WithRSAEncryption
24:56:51:a6:2a:d8:50:35:70:56:2b:e1:82:24:6d:84:c3:53:
46:86:24:b5:71:1f:29:05:50:95:4c:3c:ac:f8:89:75:49:2a:
b5:21:6b:f0:d8:0d:a6:88:a6:c1:d0:c5:d2:b5:dd:f8:8a:8f:
79:9d:da:01:99:59:e3:f3:3e:63:40:e4:41:45:41:26:62:31:
5e:97:a6:42:b3:88:13:fa:9a:60:14:1e:b5:ba:3f:54:25:0e:
01:ae:70:74:f9:06:e5:db:99:86:79:c7:fe:a1:9f:28:a3:05:
4f:7c:1d:ba:1e:8b:02:6c:08:e0:ed:dd:4a:cc:9f:19:0f:67:
cb:6e:e0:a3:97:05:e3:43:06:ee:83:7b:e5:fb:9e:2f:16:45:
e2:a3:ae:4f:b7:73:60:45:d0:61:fd:5a:6a:a2:14:9a:fb:cf:
30:30:ba:d4:37:55:dd:a7:ed:2d:6c:24:b3:97:e0:47:3d:9d:
09:74:84:a6:45:c6:0c:82:32:0e:9e:25:f9:be:55:04:0e:43:
f7:54:6e:4b:42:8e:be:9c:9b:01:7d:77:68:3a:0d:dc:3b:30:
65:bb:b6:e8:b3:c5:6a:cd:c6:85:43:c5:e2:bf:47:a5:57:f9:
a0:40:63:6e:21:04:1b:f4:f8:28:da:77:c7:a1:23:2e:a3:bb:
ab:e4:92:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org