Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qq7qnPLL2DFuUgDx6SyhngEuZHs.roa
File: Qq7qnPLL2DFuUgDx6SyhngEuZHs.roa (raw, json)
Hash identifier: FAmjsDAOGi/GibpdvRsDmPPwVAc/Airz3VJ8LNBMGPc=
Subject key identifier: 42:AE:EA:9C:F2:CB:D8:31:6E:52:00:F1:E9:2C:A1:9E:01:2E:64:7B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C2028E76E0CF0F7B0EFE9378424B8BE14
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qq7qnPLL2DFuUgDx6SyhngEuZHs.roa
Signing time: Thu 30 Nov 2023 12:16:40 +0000
ROA not before: Thu 30 Nov 2023 12:16:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.227.146.0/23 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.210.234.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.108.204.0/23 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.30.0/23 maxlen: 24
185.206.250.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.8.21.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 22:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:28:e7:6e:0c:f0:f7:b0:ef:e9:37:84:24:b8:be:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 30 12:16:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42aeea9cf2cbd8316e5200f1e92ca19e012e647b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:72:c1:f6:68:59:fb:23:5f:b7:2d:a0:8c:12:
17:7e:cf:e5:38:c9:f3:fc:2c:b5:01:ed:8d:e0:1d:
92:e8:9e:3d:58:06:9b:54:e1:3e:8e:10:6a:8a:23:
6a:38:79:e3:0a:78:d1:42:c9:f2:d1:9d:34:3f:92:
21:1b:40:c1:26:91:fc:e9:7c:2f:42:bc:a8:dc:18:
62:0f:f4:d1:69:15:87:a2:38:54:48:1b:31:dd:80:
d3:05:14:22:8f:c9:aa:d8:93:b6:0b:e1:9a:08:3c:
97:47:57:27:15:60:e6:36:99:1f:98:eb:9b:8d:07:
c4:7d:e7:e1:db:19:18:45:b2:17:82:c8:2b:4f:ba:
25:94:29:b2:fc:41:76:b8:6d:17:0a:82:af:c9:4d:
28:54:21:38:4a:55:68:94:00:76:70:39:d4:18:d6:
7b:61:73:76:ca:2e:86:5d:38:26:3f:4e:36:f2:f9:
d0:a4:b8:81:b2:9b:5f:2c:d8:06:cd:0f:24:a0:c9:
b2:fe:b2:d4:16:d2:cf:7d:0a:bd:42:1f:cd:63:a6:
ad:94:e2:7a:01:bc:8b:ae:b3:a6:b7:80:da:86:91:
0c:a7:0a:ac:45:eb:69:4a:85:f1:fa:85:54:72:a7:
70:2f:0a:81:b9:0f:92:e6:d8:57:9d:7e:77:ba:49:
db:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AE:EA:9C:F2:CB:D8:31:6E:52:00:F1:E9:2C:A1:9E:01:2E:64:7B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qq7qnPLL2DFuUgDx6SyhngEuZHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.108.204.0/23
185.206.250.0/24
185.210.234.0/24
185.220.249.0-185.220.251.255
185.222.30.0/23
185.225.0.0/23
185.227.146.0/23
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:69:8d:29:2c:08:6b:70:59:e7:9d:e7:ff:56:20:43:6f:76:
27:dc:61:e3:fd:12:79:3f:bd:0f:64:44:d7:26:0c:5a:91:54:
d8:98:7c:ce:1a:ad:5d:c4:8d:15:bd:bb:4e:58:a5:7c:f5:ca:
80:23:0d:f2:e0:6b:73:69:ed:6b:e3:3a:1d:7f:26:dd:ce:7e:
3d:13:ab:5d:ea:e7:08:57:8f:05:18:5d:3f:8f:73:49:a9:78:
fa:b0:a5:fc:23:2e:87:55:32:08:85:67:02:9c:87:18:39:16:
0c:fc:7a:0d:5e:75:28:28:ca:b3:40:4d:1e:ae:d2:b8:ad:b9:
6e:52:5e:ad:9f:23:cf:f2:a5:04:3f:c1:0f:75:4e:5b:7d:27:
9e:27:f3:4e:7f:ba:b6:1d:b8:2b:02:a1:c4:f1:4f:b7:3d:77:
ce:b9:87:99:69:f3:1e:ae:a6:b3:73:dd:e1:73:1a:ed:67:8d:
3d:47:a7:b8:2c:7b:3a:0c:40:3e:71:76:57:c1:4a:a1:32:b6:
d4:69:0a:7e:f2:01:be:a8:76:34:5d:ba:76:2d:6c:2a:38:e5:
eb:b8:5e:38:f0:6c:f1:6c:ee:1e:18:03:ae:8e:b9:c4:e5:ee:
b5:2d:c0:16:18:eb:9d:e0:43:b9:a9:e1:4a:01:c0:4c:ab:0f:
90:2d:d5:c2
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAYwgKOduDPD3sO/pN4QkuL4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMxMTMwMTIxNjQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmFlZWE5Y2YyY2JkODMxNmU1MjAwZjFlOTJjYTE5ZTAxMmU2NDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgnLB9mhZ+yNfty2gjBIXfs/lOMnz
/Cy1Ae2N4B2S6J49WAabVOE+jhBqiiNqOHnjCnjRQsny0Z00P5IhG0DBJpH86Xwv
Qryo3BhiD/TRaRWHojhUSBsx3YDTBRQij8mq2JO2C+GaCDyXR1cnFWDmNpkfmOub
jQfEfefh2xkYRbIXgsgrT7ollCmy/EF2uG0XCoKvyU0oVCE4SlVolAB2cDnUGNZ7
YXN2yi6GXTgmP0428vnQpLiBsptfLNgGzQ8koMmy/rLUFtLPfQq9Qh/NY6atlOJ6
AbyLrrOmt4DahpEMpwqsRetpSoXx+oVUcqdwLwqBuQ+S5thXnX53uknb/wIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFEKu6pzyy9gxblIA8eksoZ4BLmR7MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvUXE3cW5QTEwyREZ1VWdEeDZTeWhuZ0V1WkhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQAwQALQgVAwQA
LZPgAwQBuWzMAwQAuc76AwQAudLqMAwDBAC53PkDBAK53PgDBAG53h4DBAG54QAD
BAG545IDBAC5++UDBAC5++cDBAHBOpIwDQYJKoZIhvcNAQELBQADggEBALtpjSks
CGtwWeed5/9WIENvdifcYeP9Enk/vQ9kRNcmDFqRVNiYfM4arV3EjRW9u05YpXz1
yoAjDfLga3Np7WvjOh1/Jt3Ofj0Tq13q5whXjwUYXT+Pc0mpePqwpfwjLodVMgiF
ZwKchxg5Fgz8eg1edSgoyrNATR6u0rituW5SXq2fI8/ypQQ/wQ91Tlt9J54n805/
urYduCsCocTxT7c9d865h5lp8x6uprNz3eFzGu1njT1Hp7gsezoMQD5xdlfBSqEy
ttRpCn7yAb6odjRdunYtbCo45eu4XjjwbPFs7h4YA66OucTl7rUtwBYY653gQ7mp
4UoBwEyrD5At1cI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org