Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Q6sGf5MBqX6vKw-yCaDikktKXUY.roa
File: Q6sGf5MBqX6vKw-yCaDikktKXUY.roa (raw, json)
Hash identifier: 7VRxaZF+Q6yBZIU0Ez4ANvfjKBryQherHhlUDB58ym0=
Subject key identifier: 43:AB:06:7F:93:01:A9:7E:AF:2B:0F:B2:09:A0:E2:92:4B:4A:5D:46
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018D0C64FA99152C06FC73DACAF996656C3D
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Q6sGf5MBqX6vKw-yCaDikktKXUY.roa
Signing time: Mon 15 Jan 2024 09:12:40 +0000
ROA not before: Mon 15 Jan 2024 09:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48146
IP address blocks: 92.118.248.0/22 maxlen: 24
94.103.244.0/22 maxlen: 24
185.148.52.0/22 maxlen: 24
151.237.131.0/24 maxlen: 24
185.240.22.0/24 maxlen: 24
188.240.236.0/22 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
194.36.104.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
5.182.80.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
185.210.60.0/22 maxlen: 24
193.228.204.0/23 maxlen: 24
185.210.72.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 11:20:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:64:fa:99:15:2c:06:fc:73:da:ca:f9:96:65:6c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 15 09:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43ab067f9301a97eaf2b0fb209a0e2924b4a5d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:1b:62:59:ca:91:4c:83:26:7e:29:bb:ee:
56:26:25:ba:63:59:b1:3f:d3:36:ed:a0:ea:94:a6:
94:f2:51:22:43:da:43:c9:f0:c5:5d:b0:ff:e5:05:
b2:34:ea:fe:e1:09:86:cd:a7:d3:1d:f0:c0:5c:8d:
2f:95:fa:1d:9c:a3:fe:c0:5a:38:95:4d:c4:ff:4c:
c8:29:0c:36:fb:99:bc:25:d5:53:d8:dd:f5:45:66:
99:d0:97:d7:d9:f8:52:8e:11:54:ea:5e:4b:ad:ed:
b9:46:fc:16:3e:80:b7:5f:c0:ee:7a:53:c1:0c:8f:
79:ed:42:90:49:c6:94:89:80:da:ff:17:74:3a:cc:
40:7f:10:28:c5:2e:aa:6a:5d:6d:2a:c5:a6:b4:08:
dc:43:a5:6c:5a:9d:a8:db:85:2b:49:44:c3:e9:93:
23:5b:97:2f:f7:7e:a5:30:6d:d7:bc:20:21:f0:d0:
46:1f:ab:41:73:53:5c:e6:f6:cc:53:eb:ec:3b:3b:
92:0d:97:a9:be:ae:0d:25:7d:6f:af:fd:02:36:87:
8b:8b:70:04:b1:05:6c:76:7f:b7:52:69:6d:30:63:
f5:98:14:af:b8:cd:8e:ac:af:33:b0:72:0a:3c:87:
8b:3a:c0:b8:85:0f:57:3f:c8:20:32:c0:63:b3:98:
e0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AB:06:7F:93:01:A9:7E:AF:2B:0F:B2:09:A0:E2:92:4B:4A:5D:46
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Q6sGf5MBqX6vKw-yCaDikktKXUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.147.204.0/22
81.22.232.0/22
92.118.248.0/22
94.103.244.0/22
151.237.59.0/24
151.237.131.0/24
185.148.52.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.22.0/23
185.255.72.0/22
188.240.236.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
87:c9:1b:e3:97:ee:4a:97:a1:da:53:d5:2b:42:0f:38:c4:e1:
84:43:57:51:57:a8:5f:4a:bb:66:d6:7c:80:41:52:b9:e4:7c:
3e:bb:6c:48:32:e5:52:9e:90:4a:51:64:c5:0d:f9:40:29:48:
e9:dd:f2:ec:66:ea:58:18:a5:93:ba:2e:48:f4:78:c3:bd:d9:
08:43:2a:bc:65:53:f7:22:4f:53:ab:bb:ef:4d:0d:f7:b2:22:
48:37:ee:0a:94:4d:bb:b2:68:00:6c:54:22:6f:62:d5:1a:a8:
80:55:78:d6:fd:6a:3d:cd:ce:07:46:47:08:da:f3:a6:90:a1:
e4:2a:89:6c:33:33:b0:bd:5a:8e:3f:a4:4b:96:4d:72:f5:b2:
a9:01:1a:6a:b6:62:37:2b:fe:24:a1:0f:16:be:fc:f6:c6:dc:
4c:30:b5:c2:ef:a8:88:c4:58:1d:6d:1c:8c:7d:52:d2:8a:12:
f6:a2:7c:4b:8a:37:ec:59:8a:99:a3:07:32:e3:8b:6b:1f:ca:
d8:f3:4a:0d:b6:66:eb:25:85:2e:69:09:00:e9:b5:66:26:00:
02:2a:1d:15:39:39:c7:8d:66:19:cc:9f:f9:22:a4:56:c4:b6:
da:9b:ec:f4:05:bb:ee:b8:94:c9:7c:db:6f:20:6f:22:6d:91:
bb:de:cb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org