Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/q2NceDF3JOiAXJtlqH_rQcUL7Dg.roa
File: q2NceDF3JOiAXJtlqH_rQcUL7Dg.roa (raw, json)
Hash identifier: eQ3Pl8ZW26rCWLegW/kxpujW/ishHolQ3ME6GYaZ830=
Subject key identifier: AB:63:5C:78:31:77:24:E8:80:5C:9B:65:A8:7F:EB:41:C5:0B:EC:38
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 0190BB440060C35737FFB0C48DE574C92510
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/q2NceDF3JOiAXJtlqH_rQcUL7Dg.roa
Signing time: Tue 16 Jul 2024 11:18:34 +0000
ROA not before: Tue 16 Jul 2024 11:18:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
31.11.55.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.168.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
103.14.211.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 10:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:44:00:60:c3:57:37:ff:b0:c4:8d:e5:74:c9:25:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jul 16 11:18:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab635c78317724e8805c9b65a87feb41c50bec38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:02:60:d1:95:12:2c:87:63:fc:d9:e9:c5:e9:
b7:46:67:7d:5a:e9:9e:32:0d:16:28:9f:cf:a0:7e:
f2:77:1c:2b:d0:68:2b:f2:28:b4:ca:be:9c:fc:75:
da:95:b7:92:9d:b8:4a:37:d9:dc:d9:99:86:3c:7e:
0a:55:e0:34:e9:78:3a:2e:34:29:8c:64:b6:5d:9e:
f3:3c:e0:65:ef:31:21:70:71:f2:78:46:50:9d:af:
06:ca:f9:61:39:ab:cc:9e:c0:5c:3b:2d:8c:8b:a5:
ba:68:04:1a:c0:16:db:a4:bf:79:62:11:3d:ba:83:
45:00:70:e3:a8:0b:61:e6:ad:89:9b:5a:ae:56:92:
99:a9:4e:db:e5:33:ed:02:ad:89:7c:fc:48:5d:94:
80:75:db:0f:be:fc:0a:77:34:3b:f2:7d:4c:b5:29:
88:d3:2b:33:21:80:fd:cd:a5:33:1d:a8:b9:49:7e:
ea:6e:a6:fc:89:d7:22:99:d7:ae:87:7d:c1:da:a8:
72:70:24:18:b4:9e:65:82:fe:6c:b1:b2:d3:f8:37:
97:24:35:d8:66:44:35:d3:fe:f5:af:50:00:3f:73:
99:df:21:79:4d:f6:90:ea:0b:d8:ed:de:e7:77:ba:
d5:8f:9e:8b:91:18:45:32:f8:dc:4b:47:9f:ad:2e:
11:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:63:5C:78:31:77:24:E8:80:5C:9B:65:A8:7F:EB:41:C5:0B:EC:38
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/q2NceDF3JOiAXJtlqH_rQcUL7Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.56.0/23
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.109.0/24
212.70.120.0/24
212.70.122.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
be:d7:c0:b2:23:dd:d0:0c:ef:67:93:eb:5e:67:52:3b:a6:ce:
23:0b:3d:db:91:98:67:d1:78:e6:06:fa:a7:6f:6c:9d:19:bf:
c5:41:0e:05:7e:37:25:9b:78:89:51:74:c9:5a:16:4d:99:51:
1a:58:68:ba:6f:87:31:31:f2:ab:2a:a8:77:e4:41:b7:c8:20:
73:49:a3:e3:4b:56:78:e1:d5:72:55:e9:29:bf:95:85:43:90:
f9:94:fd:71:28:2c:56:88:b0:bd:94:1a:ed:85:c2:7c:a9:57:
9e:24:a4:1d:46:ac:65:67:b5:f9:90:84:8b:0a:c7:c5:4d:ed:
46:de:9b:92:ca:be:88:9a:fe:47:7e:83:83:9d:27:3f:f3:44:
e3:f6:5a:a3:82:ef:43:52:e7:3d:8d:00:b1:ef:8a:02:f4:85:
cf:67:f5:0b:07:49:fb:6a:54:4b:10:09:a3:62:13:88:08:8c:
80:31:19:4a:9a:d0:ef:f8:3c:53:02:7f:6e:fc:93:be:3c:2f:
54:93:fb:11:54:50:69:21:49:7b:90:f9:0f:28:52:da:d1:cf:
f0:b2:d6:29:68:14:57:f6:32:97:20:15:19:3f:32:b5:45:4c:
1d:9f:51:53:7f:9f:cd:06:ff:39:85:b8:3d:d0:ba:28:b3:a8:
9e:fb:ca:fe
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAZC7RABgw1c3/7DEjeV0ySUQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTkzMDg3NDJlN2ViNjY1MDYyMTlkODI5ZDg2MTg1ODk5
YTFlMzQwHhcNMjQwNzE2MTExODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjYzNWM3ODMxNzcyNGU4ODA1YzliNjVhODdmZWI0MWM1MGJlYzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwJg0ZUSLIdj/Nnpxem3Rmd9Wume
Mg0WKJ/PoH7ydxwr0Ggr8ii0yr6c/HXalbeSnbhKN9nc2ZmGPH4KVeA06Xg6LjQp
jGS2XZ7zPOBl7zEhcHHyeEZQna8GyvlhOavMnsBcOy2Mi6W6aAQawBbbpL95YhE9
uoNFAHDjqAth5q2Jm1quVpKZqU7b5TPtAq2JfPxIXZSAddsPvvwKdzQ78n1MtSmI
0yszIYD9zaUzHai5SX7qbqb8idcimdeuh33B2qhycCQYtJ5lgv5ssbLT+DeXJDXY
ZkQ10/71r1AAP3OZ3yF5TfaQ6gvY7d7nd7rVj56LkRhFMvjcS0efrS4RCQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFKtjXHgxdyTogFybZah/60HFC+w4MB8GA1UdIwQY
MBaAFOSpMIdC5+tmUGIZ2CnYYYWJmh40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYt
ZWM1Yjg4ZDAxMzhhLzEvcTJOY2VERjNKT2lBWEp0bHFIX3JRY1VMN0RnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYtZWM1Yjg4ZDAxMzhh
LzEvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiAwQDHwswAwQB
Jbo4AwQCJbo8MAwDBABQTKUDBAFQTKgDBAJnDtAwDAMEA2fhSAMEAGfhSgMEArn3
WDAMAwQC1EZkAwQB1EZoAwQA1EZtAwQA1EZ4MAwDBAHURnoDBADURnwwDQYJKoZI
hvcNAQELBQADggEBAL7XwLIj3dAM72eT615nUjumziMLPduRmGfReOYG+qdvbJ0Z
v8VBDgV+NyWbeIlRdMlaFk2ZURpYaLpvhzEx8qsqqHfkQbfIIHNJo+NLVnjh1XJV
6Sm/lYVDkPmU/XEoLFaIsL2UGu2FwnypV54kpB1GrGVntfmQhIsKx8VN7Ubem5LK
voia/kd+g4OdJz/zROP2WqOC70NS5z2NALHvigL0hc9n9QsHSftqVEsQCaNiE4gI
jIAxGUqa0O/4PFMCf278k748L1ST+xFUUGkhSXuQ+Q8oUtrRz/Cy1iloFFf2Mpcg
FRk/MrVFTB2fUVN/n80G/zmFuD3QuiizqJ77yv4=
-----END CERTIFICATE-----
Generated at Fri Apr 18 19:42:55 2025 by rpki-client