Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2Qj_0KK-1t2cM1IczkhU4YzSPSs.roa
File: 2Qj_0KK-1t2cM1IczkhU4YzSPSs.roa (raw, json)
Hash identifier: J9WZ8V/z9TBQveMpmccZx6ms1RItZz2kwjyUll5qjQs=
Subject key identifier: D9:08:FF:D0:A2:BE:D6:DD:9C:33:52:1C:CE:48:54:E1:8C:D2:3D:2B
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185F315C9D119B5CCB44489B1FA68F90127
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2Qj_0KK-1t2cM1IczkhU4YzSPSs.roa
Signing time: Fri 27 Jan 2023 11:56:09 +0000
ROA not before: Fri 27 Jan 2023 11:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31205
IP address blocks: 188.170.247.0/24 maxlen: 24
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
185.210.142.0/23 maxlen: 23
185.210.140.0/23 maxlen: 23
178.176.240.0/22 maxlen: 22
178.176.244.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
37.29.86.0/23 maxlen: 23
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
128.204.66.0/24 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.67.0/24 maxlen: 24
31.173.244.0/22 maxlen: 22
83.149.50.0/24 maxlen: 24
83.149.49.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
188.162.0.0/24 maxlen: 24
188.162.4.0/22 maxlen: 22
188.162.2.0/23 maxlen: 23
188.162.1.0/24 maxlen: 24
188.162.8.0/23 maxlen: 23
188.162.10.0/23 maxlen: 23
46.232.202.0/23 maxlen: 23
188.162.12.0/23 maxlen: 23
188.162.14.0/23 maxlen: 23
46.232.200.0/24 maxlen: 24
188.162.81.0/24 maxlen: 24
188.162.85.0/24 maxlen: 24
188.162.79.0/24 maxlen: 24
188.162.83.0/24 maxlen: 24
188.162.80.0/24 maxlen: 24
188.162.84.0/24 maxlen: 24
188.162.89.0/24 maxlen: 24
188.162.86.0/24 maxlen: 24
188.162.87.0/24 maxlen: 24
188.162.92.0/22 maxlen: 22
188.162.78.0/24 maxlen: 24
188.162.72.0/22 maxlen: 22
188.162.76.0/23 maxlen: 23
2a03:d000:67fe::/48 maxlen: 48
2a03:d000:6500::/40 maxlen: 40
2a03:d000:6400::/40 maxlen: 40
2a03:d000:67ff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Apr 2023 06:54:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:15:c9:d1:19:b5:cc:b4:44:89:b1:fa:68:f9:01:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 27 11:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d908ffd0a2bed6dd9c33521cce4854e18cd23d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5f:6a:66:1b:b0:05:1f:06:a5:02:22:63:87:
74:a6:9b:ea:bd:8a:04:ee:11:94:5f:c5:4a:9c:be:
c9:66:a1:d0:f2:ae:eb:7f:11:37:e9:ee:61:b9:3b:
9b:20:2c:da:ad:27:29:fc:c3:4a:76:1a:64:43:65:
28:4d:2d:e8:b1:25:6a:1e:b1:45:43:27:ff:0a:07:
d3:c7:63:86:14:8c:c9:60:52:7c:7e:c3:6f:eb:d4:
81:14:c1:43:ec:39:bd:fe:57:c2:6b:1f:0b:53:b3:
61:02:7f:f7:dc:48:2b:71:3c:88:e4:a1:b3:3f:41:
d4:a7:84:59:39:fa:bc:f8:4f:bf:30:50:28:86:33:
39:d8:c1:3f:0b:1a:60:60:51:73:0d:a3:81:22:e5:
22:05:3d:20:6b:3a:65:81:20:49:d9:0f:41:eb:0a:
ac:28:9a:66:21:82:fa:db:56:ed:ae:26:2e:6c:5d:
49:f0:35:b0:ad:2b:96:04:97:4e:34:d0:82:45:21:
b0:ec:0e:66:81:0b:07:7c:5f:00:0d:06:69:e4:b3:
1c:3e:a7:29:5c:87:ec:bf:b2:0c:32:53:b1:6e:64:
ce:91:f6:88:d4:a4:e9:cf:65:7f:6e:1e:07:c4:11:
40:98:c0:46:37:ff:49:44:eb:bc:64:cf:ea:34:84:
db:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:08:FF:D0:A2:BE:D6:DD:9C:33:52:1C:CE:48:54:E1:8C:D2:3D:2B
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2Qj_0KK-1t2cM1IczkhU4YzSPSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/24
46.232.202.0/23
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
128.204.66.0/23
178.176.48.0/24
178.176.240.0/21
185.210.140.0/22
188.162.0.0/20
188.162.72.0-188.162.81.255
188.162.83.0-188.162.87.255
188.162.89.0/24
188.162.92.0/22
188.170.240.0/22
188.170.247.0/24
IPv6:
2a03:d000:6400::/39
2a03:d000:67fe::/47
Signature Algorithm: sha256WithRSAEncryption
91:12:1b:31:d5:73:23:c4:87:12:1f:dd:aa:c6:29:bb:a1:1f:
ef:7a:2b:1e:59:b1:d4:21:05:ba:72:9b:d7:4e:88:98:ac:c4:
42:36:87:a1:03:12:96:b9:c4:3c:7d:d0:eb:99:06:86:69:44:
89:58:b3:08:2a:0b:f8:99:cc:1b:cb:9c:94:1a:55:a8:89:c2:
66:dd:26:19:c5:a3:0b:af:22:ff:b5:83:f3:18:d4:59:3a:76:
28:7f:2e:ea:f1:ee:52:32:2d:41:16:4c:b9:b8:a9:cc:30:be:
76:87:76:da:c4:4f:e3:2a:dc:64:a5:54:49:d7:0e:17:71:20:
70:bc:e9:49:92:ce:7f:38:7f:93:f2:a1:94:64:68:14:d1:24:
bc:e5:36:fa:aa:b9:96:49:db:f3:c9:32:e6:09:b4:16:57:e1:
dc:8d:8c:76:cb:17:33:14:21:cd:60:da:64:36:5a:fd:15:53:
d1:53:3e:ee:5b:94:0b:99:3f:17:53:c2:e1:53:69:31:1a:e9:
5f:3f:f7:ea:e7:c6:29:28:83:8e:2a:a9:d7:29:83:44:33:40:
28:f1:da:68:d1:a4:12:43:d3:73:91:7b:c2:5d:5f:8f:ef:0a:
58:44:3c:0c:1f:57:c0:10:1e:9a:07:58:4e:a5:fe:c0:ee:a0:
bd:22:f1:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org