Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/qePOBJ-5HFliX9aZbjOa1Ec6N_4.roa
File: qePOBJ-5HFliX9aZbjOa1Ec6N_4.roa (raw, json)
Hash identifier: 6Bb+XC+JbGqmTGPhGe5xp8OLfnrUGbtHN+ZHHY0iL9M=
Subject key identifier: A9:E3:CE:04:9F:B9:1C:59:62:5F:D6:99:6E:33:9A:D4:47:3A:37:FE
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 01857082BF91324C07B76039F79023110DF1
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/qePOBJ-5HFliX9aZbjOa1Ec6N_4.roa
Signing time: Mon 02 Jan 2023 03:24:55 +0000
ROA not before: Mon 02 Jan 2023 03:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2470
IP address blocks: 195.83.188.0/24 maxlen: 24
195.98.232.0/24 maxlen: 24
195.98.231.0/24 maxlen: 24
193.51.113.0/24 maxlen: 24
193.51.115.0/24 maxlen: 24
195.220.149.0/24 maxlen: 24
195.220.151.0/24 maxlen: 24
195.220.150.0/24 maxlen: 24
193.50.206.0/24 maxlen: 24
194.167.103.0/24 maxlen: 24
194.167.142.0/24 maxlen: 24
193.51.11.0/24 maxlen: 24
194.199.70.0/24 maxlen: 24
194.199.69.0/24 maxlen: 24
194.199.71.0/24 maxlen: 24
194.199.66.0/24 maxlen: 24
194.199.68.0/24 maxlen: 24
194.199.67.0/24 maxlen: 24
194.199.73.0/24 maxlen: 24
194.199.72.0/24 maxlen: 24
194.199.78.0/24 maxlen: 24
2001:660:8018::/48 maxlen: 48
2001:660:801a::/48 maxlen: 48
2001:661:8000::/35 maxlen: 48
2001:660:8019::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bf:91:32:4c:07:b7:60:39:f7:90:23:11:0d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 2 03:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9e3ce049fb91c59625fd6996e339ad4473a37fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:90:2a:08:61:80:09:5a:40:67:00:28:05:7e:
03:ac:dc:d5:79:f6:ba:e1:2e:37:f7:62:65:ab:ca:
81:99:66:f0:7c:9c:b5:e9:bc:02:f9:26:0c:45:4d:
38:2b:51:5d:82:ff:20:85:1a:99:fe:d3:07:0e:42:
f0:6b:2e:e1:85:3c:5d:eb:e3:11:c3:1d:70:60:bc:
76:a2:83:d9:b7:d1:ca:6d:5a:2b:21:97:3f:db:86:
1a:66:d9:72:b5:1e:80:96:75:29:95:51:87:2a:7d:
b1:36:ce:87:14:2a:fa:7e:ad:89:66:d7:bc:b0:3c:
f4:86:3b:58:1b:2d:8e:2f:24:f9:b1:cc:1d:63:bc:
ae:a0:96:e2:d3:cd:cc:e5:86:91:c5:82:3f:40:86:
ad:0a:57:8c:96:69:ea:0b:86:98:af:cf:0f:c6:9f:
5f:9f:8e:55:cb:c4:9c:40:ca:89:10:01:77:74:6f:
64:52:90:35:cf:7f:2e:73:91:ea:bd:a4:84:42:a2:
b6:bd:92:2c:18:ab:bd:f7:38:c7:79:64:89:5c:ac:
30:59:c2:e4:da:9b:90:aa:a3:15:62:ba:85:b3:e7:
0c:93:d7:2c:a9:3a:04:5b:5b:5b:84:0c:a7:36:84:
8d:54:23:38:7e:93:29:5a:c9:73:72:13:6b:1b:db:
1b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E3:CE:04:9F:B9:1C:59:62:5F:D6:99:6E:33:9A:D4:47:3A:37:FE
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/qePOBJ-5HFliX9aZbjOa1Ec6N_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.50.206.0/24
193.51.11.0/24
193.51.113.0/24
193.51.115.0/24
194.167.103.0/24
194.167.142.0/24
194.199.66.0-194.199.73.255
194.199.78.0/24
195.83.188.0/24
195.98.231.0-195.98.232.255
195.220.149.0-195.220.151.255
IPv6:
2001:660:8018::-2001:660:801a:ffff:ffff:ffff:ffff:ffff
2001:661:8000::/35
Signature Algorithm: sha256WithRSAEncryption
3f:fc:17:ec:0b:10:c9:b9:cc:6c:f0:bf:6c:ce:fa:b6:b0:10:
c8:83:fb:e6:97:33:5d:5e:ff:12:d1:33:cb:93:db:d8:3c:08:
86:78:11:6a:e5:d3:b8:02:3d:eb:77:07:76:ae:2c:9b:68:e5:
7d:56:09:45:0f:07:29:ca:60:94:1c:2d:c1:92:41:1f:cd:89:
52:37:41:76:ce:a5:8f:54:98:41:d0:35:64:a2:f6:0f:6f:d1:
7b:40:01:a1:0c:2b:54:65:d7:04:78:5f:49:94:84:5a:cc:de:
97:87:a7:dc:a7:b4:52:34:20:47:2e:1e:5a:ef:9e:f4:56:40:
2b:f0:dd:6e:06:29:b9:a2:3e:34:c0:b8:71:24:78:16:ea:70:
40:ec:c6:8f:ed:c0:ca:2d:6b:13:fd:4b:57:73:a1:35:42:bd:
84:e4:bf:0b:8a:68:b0:49:b8:10:e2:4c:70:f4:aa:91:93:f4:
a6:e5:76:1a:d6:62:e5:98:28:9d:72:c2:1b:33:98:8a:fe:fc:
0b:0d:1b:80:34:7a:f3:5a:5c:34:ca:60:b6:70:05:95:ea:12:
61:23:3f:03:15:ba:3a:a1:bf:2f:04:1d:e8:76:ae:c0:e1:b6:
55:98:77:48:79:6b:61:05:b5:09:3d:81:7c:6a:b3:fc:12:03:
1f:7c:72:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:37 2024 by rpki-client on console-ams.rpki-client.org