Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/xqwaWVI7GAy7YY-GhrPfolIDGLE.roa
File: xqwaWVI7GAy7YY-GhrPfolIDGLE.roa (raw, json)
Hash identifier: b16IDtO37UYG9nbt5QFg8dWVzLYmOyRxYrsM0pMkabE=
Subject key identifier: C6:AC:1A:59:52:3B:18:0C:BB:61:8F:86:86:B3:DF:A2:52:03:18:B1
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 0186F531CF65C06A52D607F8B111F791B670
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/xqwaWVI7GAy7YY-GhrPfolIDGLE.roa
Signing time: Sat 18 Mar 2023 14:48:47 +0000
ROA not before: Sat 18 Mar 2023 14:48:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30860
IP address blocks: 45.11.58.0/24 maxlen: 24
45.11.57.0/24 maxlen: 24
45.11.56.0/24 maxlen: 24
195.66.210.0/24 maxlen: 24
45.11.59.0/24 maxlen: 24
176.119.24.0/24 maxlen: 24
176.119.25.0/24 maxlen: 24
176.119.26.0/24 maxlen: 24
176.119.26.0/23 maxlen: 23
176.119.30.0/24 maxlen: 24
176.119.31.0/24 maxlen: 24
176.119.29.0/24 maxlen: 24
176.119.27.0/24 maxlen: 24
176.119.28.0/24 maxlen: 24
95.214.233.0/24 maxlen: 24
95.214.232.0/24 maxlen: 24
95.214.234.0/23 maxlen: 23
45.134.172.0/22 maxlen: 24
152.89.63.0/24 maxlen: 24
152.89.61.0/24 maxlen: 24
152.89.62.0/24 maxlen: 24
152.89.60.0/24 maxlen: 24
91.208.115.0/24 maxlen: 24
45.12.3.0/24 maxlen: 24
45.12.0.0/22 maxlen: 24
45.12.1.0/24 maxlen: 24
193.23.181.0/24 maxlen: 24
31.42.187.0/24 maxlen: 24
185.66.88.0/23 maxlen: 23
185.66.90.0/24 maxlen: 24
185.66.91.0/24 maxlen: 24
194.42.204.0/22 maxlen: 24
62.182.80.0/23 maxlen: 23
62.182.85.0/24 maxlen: 24
62.182.84.0/24 maxlen: 24
62.182.82.0/23 maxlen: 23
185.254.198.0/24 maxlen: 24
185.254.199.0/24 maxlen: 24
185.254.196.0/23 maxlen: 23
62.182.87.0/24 maxlen: 24
62.182.86.0/24 maxlen: 24
31.42.186.0/24 maxlen: 24
31.42.184.0/23 maxlen: 23
2a09:2dc0::/29 maxlen: 29
2a09:2dc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 10 Nov 2023 08:53:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f5:31:cf:65:c0:6a:52:d6:07:f8:b1:11:f7:91:b6:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Mar 18 14:48:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6ac1a59523b180cbb618f8686b3dfa2520318b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:ac:fb:a2:b5:3f:bb:c7:e5:9a:e6:0c:80:
47:e6:42:e5:7c:ef:1b:ff:9d:76:4b:05:26:66:2b:
f6:c2:0e:f0:c5:a7:ba:25:c9:0d:c8:fb:d3:7c:1c:
79:5b:cc:9d:36:10:55:1c:5b:ea:e5:b6:e1:fc:cd:
a0:68:97:29:35:3e:67:8e:0f:cb:0b:30:48:01:d2:
7d:dd:db:00:5f:31:30:dd:ca:d8:a6:df:5a:23:14:
bc:96:f8:94:dd:88:0d:9b:5d:2a:f4:4e:0c:c4:43:
1b:b7:32:13:c6:06:7e:0d:01:36:c8:0a:71:98:7a:
c7:4d:16:05:79:d4:ae:3d:23:28:31:b4:65:2a:ae:
3c:76:3b:30:09:23:7f:f5:e8:db:16:26:53:6f:39:
73:2c:df:b1:fc:a6:48:07:90:6a:24:8e:c1:b5:d9:
84:a6:60:71:72:c7:86:11:b8:43:73:1a:fb:06:df:
43:80:e9:79:e4:93:7f:97:70:9f:ab:5e:a9:a3:df:
dd:86:9a:2a:1c:03:7d:a6:b9:19:c1:29:bd:a5:ea:
b2:82:26:69:b8:6a:ae:c0:59:f1:ab:2c:9f:02:79:
45:e2:41:8c:ff:f9:90:78:44:fe:3e:70:a4:c9:54:
f6:82:6d:a0:5d:da:a2:c6:9c:cf:90:e8:e8:15:6b:
80:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AC:1A:59:52:3B:18:0C:BB:61:8F:86:86:B3:DF:A2:52:03:18:B1
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/xqwaWVI7GAy7YY-GhrPfolIDGLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.184.0/22
45.11.56.0/22
45.12.0.0/22
45.134.172.0/22
62.182.80.0/21
91.208.115.0/24
95.214.232.0/22
152.89.60.0/22
176.119.24.0/21
185.66.88.0/22
185.254.196.0/22
193.23.181.0/24
194.42.204.0/22
195.66.210.0/24
IPv6:
2a09:2dc0::/29
Signature Algorithm: sha256WithRSAEncryption
7d:ed:d5:0a:05:1d:3b:08:8b:98:b1:27:ac:2c:f9:e0:38:72:
a5:4b:ed:a1:be:48:24:68:27:34:50:a5:ce:25:72:f2:4c:fb:
ee:8c:b6:13:b1:be:9a:ac:a4:e4:14:2e:6d:dc:b2:af:c6:35:
d2:c8:9d:23:e1:87:0e:d0:68:a0:d3:ca:65:2a:74:f5:24:6d:
a0:41:1d:b6:63:72:91:aa:0d:48:0d:f9:2c:c7:68:46:0c:07:
1f:3a:b1:04:63:9a:07:a6:db:db:75:65:00:82:0e:70:16:e0:
b7:70:7f:37:1a:5e:32:01:22:ad:17:1a:cd:64:09:cc:3e:5a:
5d:44:16:23:92:b5:48:64:31:68:0b:dd:01:09:42:8b:1a:af:
1f:85:72:73:7b:50:24:46:3a:b5:62:73:d7:2c:88:2b:f4:24:
ed:92:d0:9d:13:ec:65:51:ab:bc:0b:b6:90:c7:a4:57:65:cc:
44:a3:42:18:45:0a:3d:ee:e0:4d:a6:5a:43:b3:96:95:8e:85:
14:75:51:2a:41:fc:5d:83:63:01:24:8a:f9:8d:0a:6c:b7:ac:
d4:e1:b6:8b:74:fd:2f:58:d1:58:dd:ca:d3:06:77:28:a2:2c:
a8:8d:ad:bd:e0:d5:a0:4d:b7:e3:1c:a4:1b:48:3b:f1:74:58:
9e:f6:98:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:53 2024 by rpki-client on console-ams.rpki-client.org