Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/MqUh94pd_CQqZBdwkIue-DquCLI.roa
File: MqUh94pd_CQqZBdwkIue-DquCLI.roa (raw, json)
Hash identifier: 8Vpjft6JB154Sa2/Aeh8RwupnV5qP6UuMXEg0xC8fmU=
Subject key identifier: 32:A5:21:F7:8A:5D:FC:24:2A:64:17:70:90:8B:9E:F8:3A:AE:08:B2
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018CCA2A052E0E968766DA1A31AF7DA1AEDE
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/MqUh94pd_CQqZBdwkIue-DquCLI.roa
Signing time: Tue 02 Jan 2024 12:33:20 +0000
ROA not before: Tue 02 Jan 2024 12:33:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 84.239.43.0/24 maxlen: 24
84.239.41.0/24 maxlen: 24
84.239.50.0/24 maxlen: 24
84.239.48.0/24 maxlen: 24
84.239.47.0/24 maxlen: 24
84.239.45.0/24 maxlen: 24
84.239.52.0/24 maxlen: 24
84.239.10.0/24 maxlen: 24
84.239.7.0/24 maxlen: 24
84.239.6.0/24 maxlen: 24
84.239.5.0/24 maxlen: 24
84.239.17.0/24 maxlen: 24
84.239.16.0/24 maxlen: 24
84.239.12.0/24 maxlen: 24
84.239.18.0/24 maxlen: 24
84.239.31.0/24 maxlen: 24
84.239.30.0/24 maxlen: 24
84.239.29.0/24 maxlen: 24
84.239.28.0/24 maxlen: 24
84.239.27.0/24 maxlen: 24
84.239.25.0/24 maxlen: 24
84.239.37.0/24 maxlen: 24
84.239.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 14:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:05:2e:0e:96:87:66:da:1a:31:af:7d:a1:ae:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Jan 2 12:33:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32a521f78a5dfc242a641770908b9ef83aae08b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:01:08:0a:75:a3:42:06:6f:25:d3:f7:3e:d8:
8b:19:de:4c:03:47:c8:e4:52:d5:7f:26:ea:24:eb:
c2:04:47:2e:84:b0:45:6a:6d:b7:18:5d:f7:c1:fb:
96:c0:8b:00:4d:39:a3:2d:2f:2c:83:6d:ca:44:f6:
52:84:2b:0c:f3:1d:e9:9f:4e:70:e5:5e:e5:46:3e:
44:f1:3b:d1:43:ef:6c:5e:11:8e:89:da:b9:c2:99:
d8:db:92:69:3c:e4:c7:ba:eb:1f:c5:3d:97:c4:4e:
9f:e4:a4:bf:8d:b9:b8:cd:4e:c0:45:5d:e1:c8:9a:
ee:ec:c0:29:b1:33:de:e7:58:6d:3d:44:33:a5:4b:
de:4a:74:58:a9:a7:4a:8f:44:44:04:8c:ee:cb:38:
a6:2a:8c:64:e9:8f:8e:1f:e6:9b:aa:24:38:19:ef:
34:eb:b3:d8:35:31:c7:83:8a:ee:22:44:e0:c1:79:
e4:bd:53:e8:14:81:8d:42:6d:09:d2:ad:6e:30:98:
82:d3:41:cf:a0:a7:21:39:a8:68:d0:8c:64:a9:4f:
cf:5c:ff:1d:c7:44:f0:6b:40:63:eb:f2:2d:ec:c7:
d7:c3:6e:ff:f1:6d:dc:8c:12:0b:41:c3:9c:a2:6a:
3e:98:52:4d:af:cb:1c:4e:80:1b:c5:3f:21:e5:bd:
cc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A5:21:F7:8A:5D:FC:24:2A:64:17:70:90:8B:9E:F8:3A:AE:08:B2
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/MqUh94pd_CQqZBdwkIue-DquCLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.5.0-84.239.7.255
84.239.10.0/24
84.239.12.0/24
84.239.16.0-84.239.18.255
84.239.25.0/24
84.239.27.0-84.239.31.255
84.239.33.0/24
84.239.37.0/24
84.239.41.0/24
84.239.43.0/24
84.239.45.0/24
84.239.47.0-84.239.48.255
84.239.50.0/24
84.239.52.0/24
Signature Algorithm: sha256WithRSAEncryption
28:17:34:58:0f:fb:d1:b3:59:6c:11:cd:ac:6c:cd:83:1c:5d:
0e:e7:2b:23:bb:fe:d5:2e:c4:e1:54:d0:03:be:10:91:b5:da:
97:b9:1f:25:d6:b2:17:60:01:9d:63:b6:19:10:0d:1e:98:3a:
58:a0:a4:cc:19:d8:3a:60:46:08:d9:a9:2e:cf:b3:d6:3b:e0:
0a:d8:db:ee:28:f8:8f:37:34:de:b6:27:00:3a:7d:63:bc:58:
b0:70:0d:b2:54:04:d1:34:2d:e8:40:e4:4c:46:78:91:70:b4:
e8:60:25:62:c6:41:9a:ff:52:e7:9e:91:e4:58:de:d5:16:ce:
73:ad:72:0f:0a:39:bf:5d:7e:f3:00:0b:42:b2:e5:ef:6a:38:
6d:eb:08:9d:80:bf:6a:44:0f:19:1c:64:1f:28:90:15:93:a5:
9e:1c:10:34:08:aa:b1:ef:9f:64:f7:f7:17:17:8e:4b:a8:32:
1d:cf:72:21:9a:ee:4d:45:0a:37:46:12:da:85:ff:d3:bf:30:
04:3d:3b:ae:68:49:03:3b:f7:37:1a:34:1b:58:ee:5f:df:49:
0e:c0:64:bf:63:33:ca:25:e4:28:9e:b8:92:79:ae:3d:56:9b:
70:24:82:0e:0b:d6:b5:0a:7a:17:83:e1:0b:eb:ea:16:a5:05:
83:0b:72:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:19 2025 by rpki-client