Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/QlE22gGsDURW17_SYP_HFxF-MX8.roa
File: QlE22gGsDURW17_SYP_HFxF-MX8.roa (raw, json)
Hash identifier: x/8v86HwSr3uHxgStPZR9Uf9WOO0INA9TrmoI0qIgew=
Subject key identifier: 42:51:36:DA:01:AC:0D:44:56:D7:BF:D2:60:FF:C7:17:11:7E:31:7F
Certificate issuer: /CN=7c61e3d81f05acb56bdf798ed4ae2af637794201
Certificate serial: 01856C137F78AEC3622073EA89A82284E16F
Authority key identifier: 7C:61:E3:D8:1F:05:AC:B5:6B:DF:79:8E:D4:AE:2A:F6:37:79:42:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGHj2B8FrLVr33mO1K4q9jd5QgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/QlE22gGsDURW17_SYP_HFxF-MX8.roa
Signing time: Sun 01 Jan 2023 06:44:55 +0000
ROA not before: Sun 01 Jan 2023 06:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61307
IP address blocks: 185.97.250.0/23 maxlen: 23
185.97.248.0/23 maxlen: 23
185.97.248.0/22 maxlen: 22
31.24.56.0/21 maxlen: 21
31.24.56.0/22 maxlen: 22
85.196.224.0/19 maxlen: 19
31.24.60.0/22 maxlen: 22
93.185.240.0/20 maxlen: 20
93.185.240.0/21 maxlen: 21
93.185.248.0/21 maxlen: 21
85.196.192.0/19 maxlen: 19
85.196.192.0/18 maxlen: 18
2a03:4360::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:7f:78:ae:c3:62:20:73:ea:89:a8:22:84:e1:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c61e3d81f05acb56bdf798ed4ae2af637794201
Validity
Not Before: Jan 1 06:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=425136da01ac0d4456d7bfd260ffc717117e317f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bc:c2:54:43:93:41:95:97:94:c4:b6:35:d6:
8c:4a:d4:fb:17:65:96:69:05:f2:8c:ff:36:e8:0c:
ae:d8:2c:17:9b:50:65:00:53:9d:76:6e:f3:d6:d7:
66:0a:63:71:06:9f:19:0e:d6:db:06:4c:c1:5e:d2:
62:7a:5a:9b:a0:70:14:89:e2:07:0c:56:1f:c6:b2:
e6:27:a5:5a:bd:54:37:12:e0:a2:79:c8:70:e3:0e:
38:cd:84:2d:5f:3c:7b:d7:da:5d:59:85:0e:88:cb:
01:37:7f:e8:cd:21:7b:93:25:0d:09:18:f7:fc:18:
26:c1:b0:25:97:5a:5e:97:56:82:3a:eb:25:50:08:
77:fb:74:34:a6:7b:91:6f:84:e1:44:05:c0:d0:c6:
51:20:ac:29:85:a4:22:8c:12:d1:5a:31:45:26:06:
9f:7d:a2:8a:f0:29:ee:2a:b2:73:fc:83:16:fc:23:
d1:07:e0:29:5a:5a:15:15:90:cb:66:17:5c:94:ed:
1e:d4:ae:de:bd:5c:81:ed:44:77:c3:7f:72:2b:2e:
8a:b1:c0:3a:4b:69:1d:f4:2d:66:15:a2:ac:c9:60:
2c:7b:b7:d9:9f:71:07:bb:0d:39:96:73:48:66:90:
96:56:6a:41:b7:6f:aa:5c:fb:10:96:5a:36:67:da:
3a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:51:36:DA:01:AC:0D:44:56:D7:BF:D2:60:FF:C7:17:11:7E:31:7F
X509v3 Authority Key Identifier:
keyid:7C:61:E3:D8:1F:05:AC:B5:6B:DF:79:8E:D4:AE:2A:F6:37:79:42:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGHj2B8FrLVr33mO1K4q9jd5QgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/QlE22gGsDURW17_SYP_HFxF-MX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b0212a-eabe-45ab-bfd5-9dfbe6dda88a/1/fGHj2B8FrLVr33mO1K4q9jd5QgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.56.0/21
85.196.192.0/18
93.185.240.0/20
185.97.248.0/22
IPv6:
2a03:4360::/32
Signature Algorithm: sha256WithRSAEncryption
6b:73:0a:9d:cd:2c:b1:68:01:6e:8e:08:82:0f:77:c9:52:67:
3c:e1:da:95:c3:6f:af:e7:08:32:06:cc:22:6d:1a:aa:d6:4f:
52:59:be:8e:36:98:81:9d:7c:9f:e8:10:f8:a0:f9:06:90:40:
a7:60:d1:30:3d:51:5b:b8:7f:cc:e9:5a:28:34:e1:b4:9b:5d:
4d:b4:56:2c:8a:f4:26:83:af:bf:c2:e3:88:7d:03:60:20:83:
ac:0a:81:b2:56:cc:c2:61:3f:7f:73:f1:08:77:ab:68:47:8a:
97:e8:1f:4f:9b:4c:2b:62:42:ea:8d:2e:4b:8a:f1:4e:a5:9b:
26:3e:86:bc:ef:bb:e3:72:f7:c6:26:69:64:2d:dd:1f:a0:ef:
c6:26:c3:c4:2f:bd:a6:ff:e1:68:da:3d:38:37:43:63:9b:bc:
3d:9a:9b:a7:c7:0d:bc:3c:aa:f1:e7:e6:da:2c:47:0e:24:21:
d9:c8:0a:3b:8e:5f:d0:e2:78:a8:d6:c0:69:b8:c9:a7:9a:8f:
ce:76:45:67:12:0e:0f:84:71:f3:8f:bf:c6:86:d3:f6:b3:51:
34:77:d6:d2:e9:88:26:55:25:56:5f:ca:61:26:47:7e:77:c0:
b3:43:10:82:0b:1c:6f:42:58:b5:93:e7:fa:e0:87:18:06:05:
e6:85:d7:95
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYVsE394rsNiIHPqiagihOFvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjNjFlM2Q4MWYwNWFjYjU2YmRmNzk4ZWQ0YWUyYWY2Mzc3
OTQyMDEwHhcNMjMwMTAxMDY0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjUxMzZkYTAxYWMwZDQ0NTZkN2JmZDI2MGZmYzcxNzExN2UzMTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibzCVEOTQZWXlMS2NdaMStT7F2WW
aQXyjP826Ayu2CwXm1BlAFOddm7z1tdmCmNxBp8ZDtbbBkzBXtJielqboHAUieIH
DFYfxrLmJ6VavVQ3EuCiechw4w44zYQtXzx719pdWYUOiMsBN3/ozSF7kyUNCRj3
/BgmwbAll1pel1aCOuslUAh3+3Q0pnuRb4ThRAXA0MZRIKwphaQijBLRWjFFJgaf
faKK8CnuKrJz/IMW/CPRB+ApWloVFZDLZhdclO0e1K7evVyB7UR3w39yKy6KscA6
S2kd9C1mFaKsyWAse7fZn3EHuw05lnNIZpCWVmpBt2+qXPsQllo2Z9o6IQIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFEJRNtoBrA1EVte/0mD/xxcRfjF/MB8GA1UdIwQY
MBaAFHxh49gfBay1a995jtSuKvY3eUIBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkdIajJCOEZyTFZyMzNtTzFLNHE5amQ1UWdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC9iMDIxMmEtZWFiZS00NWFiLWJmZDUt
OWRmYmU2ZGRhODhhLzEvUWxFMjJnR3NEVVJXMTdfU1lQX0hGeEYtTVg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC9iMDIxMmEtZWFiZS00NWFiLWJmZDUtOWRmYmU2ZGRhODhh
LzEvZkdIajJCOEZyTFZyMzNtTzFLNHE5amQ1UWdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDHxg4AwQG
VcTAAwQEXbnwAwQCuWH4MA0EAgACMAcDBQAqA0NgMA0GCSqGSIb3DQEBCwUAA4IB
AQBrcwqdzSyxaAFujgiCD3fJUmc84dqVw2+v5wgyBswibRqq1k9SWb6ONpiBnXyf
6BD4oPkGkECnYNEwPVFbuH/M6VooNOG0m11NtFYsivQmg6+/wuOIfQNgIIOsCoGy
VszCYT9/c/EId6toR4qX6B9Pm0wrYkLqjS5LivFOpZsmPoa877vjcvfGJmlkLd0f
oO/GJsPEL72m/+Fo2j04N0Njm7w9mpunxw28PKrx5+baLEcOJCHZyAo7jl/Q4nio
1sBpuMmnmo/OdkVnEg4PhHHzj7/GhtP2s1E0d9bS6YgmVSVWX8phJkd+d8CzQxCC
CxxvQli1k+f64IcYBgXmhdeV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:54 2024 by rpki-client on console-fra.rpki-client.org