Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/qwSCSoHqSMxCyKZh-lPSSg2q7jk.roa
File: qwSCSoHqSMxCyKZh-lPSSg2q7jk.roa (raw, json)
Hash identifier: Szd5eTR2FHkbIHkBgEGfVvGkrGbyv9bSCfq7qeKytyw=
Subject key identifier: AB:04:82:4A:81:EA:48:CC:42:C8:A6:61:FA:53:D2:4A:0D:AA:EE:39
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 01884CBEAD5F7A15D80786CB0958F298B678
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/qwSCSoHqSMxCyKZh-lPSSg2q7jk.roa
Signing time: Wed 24 May 2023 07:52:24 +0000
ROA not before: Wed 24 May 2023 07:52:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61102
IP address blocks: 185.18.205.0/24 maxlen: 24
185.18.204.0/24 maxlen: 24
185.18.206.0/24 maxlen: 24
185.18.207.0/24 maxlen: 24
107.150.179.0/24 maxlen: 24
107.150.178.0/24 maxlen: 24
176.223.65.0/24 maxlen: 24
185.217.96.0/24 maxlen: 24
185.217.98.0/24 maxlen: 24
185.217.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 08:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:be:ad:5f:7a:15:d8:07:86:cb:09:58:f2:98:b6:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: May 24 07:52:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab04824a81ea48cc42c8a661fa53d24a0daaee39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a3:15:ba:bf:31:24:bb:18:2f:cf:46:41:fb:
03:00:9a:8a:de:46:d0:3c:54:54:a4:5f:6e:3f:05:
70:80:3c:81:ad:5e:53:b1:c9:d6:e3:95:dd:db:c9:
7a:23:d2:6d:13:a8:f2:c4:6a:b7:fc:95:20:e8:ed:
ef:a8:1f:1f:61:31:e0:cd:4d:24:f1:e7:70:a8:9f:
4b:8e:82:9f:33:8f:d3:d7:f3:17:68:49:62:f3:a8:
cf:60:5c:14:88:e0:69:5f:13:73:89:92:59:27:95:
8a:6d:bf:d5:50:1a:30:23:df:77:6c:80:50:86:95:
5d:b2:94:a6:06:2c:97:d2:ae:25:3a:92:39:44:b6:
b0:81:0d:52:8d:9c:f3:38:06:8d:27:5b:01:17:9f:
4f:cc:41:14:22:06:db:82:5d:62:04:8c:be:7a:c0:
e6:18:2c:b1:17:ca:57:09:03:55:c6:f5:3e:2a:2c:
af:34:c8:3a:0b:64:3e:d5:7d:d1:11:8a:10:cd:78:
d1:09:7a:e6:61:78:55:c7:74:99:a6:b5:f4:70:82:
17:7a:83:2c:f0:cc:15:60:b6:85:67:dc:96:8a:82:
f9:86:7c:ec:49:3d:98:88:4e:2b:83:cd:01:cc:32:
a8:fa:c1:f7:c2:5b:e3:bf:0d:80:2c:bf:cf:33:e6:
5d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:04:82:4A:81:EA:48:CC:42:C8:A6:61:FA:53:D2:4A:0D:AA:EE:39
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/qwSCSoHqSMxCyKZh-lPSSg2q7jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.150.178.0/23
176.223.65.0/24
185.18.204.0/22
185.217.96.0-185.217.98.255
Signature Algorithm: sha256WithRSAEncryption
05:37:57:d1:3c:6a:0f:6b:83:8b:c3:86:13:f4:59:20:79:cf:
40:e5:40:e0:d7:31:37:8a:71:1d:cc:bf:17:b7:14:fd:ce:dc:
0a:5c:13:44:59:46:05:7c:aa:a9:b5:9c:71:45:14:65:57:fa:
b3:15:56:fd:16:5c:5a:9c:84:35:8a:ac:ff:08:1a:f5:17:38:
33:53:e6:e8:29:16:61:89:40:0c:e2:c8:92:c4:b6:5b:a6:af:
94:de:53:5f:5c:46:4e:f5:9b:72:72:ed:c2:8d:a3:df:a4:85:
ec:43:07:e0:ce:fa:9c:1f:a9:93:b6:b9:cd:c4:f0:9e:0b:c7:
63:2e:49:4f:90:b3:ae:72:05:7f:65:69:7f:80:99:3b:c2:a1:
46:50:82:c4:62:d1:d3:0c:c0:37:ec:66:78:c9:b9:d1:16:c0:
cc:d2:41:a0:39:58:5b:e4:99:15:3f:42:09:81:95:f0:4a:e6:
89:c7:88:52:03:e5:7f:4f:3c:e8:3d:fe:9c:ef:1c:6f:a9:ea:
64:9d:d8:74:0b:83:ae:fd:78:c9:fa:9b:95:a4:ac:72:78:0c:
67:35:1e:4e:d9:6e:6b:40:6f:d7:35:71:56:64:5c:de:a6:7b:
c7:7d:a3:ba:ae:20:83:64:0b:da:4e:a9:11:5b:e7:d4:30:b9:
e3:cb:6b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:37 2024 by rpki-client on console-ams.rpki-client.org