Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qJjxlWqOCKMofsvxUcYnMkgom64.roa
File: qJjxlWqOCKMofsvxUcYnMkgom64.roa (raw, json)
Hash identifier: SIZpWcTkmldaOGan2kSzKq67+jAbA82y1hULaYj++OY=
Subject key identifier: A8:98:F1:95:6A:8E:08:A3:28:7E:CB:F1:51:C6:27:32:48:28:9B:AE
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0186C48FF372DEEF89D039B32A9EE8E3C400
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qJjxlWqOCKMofsvxUcYnMkgom64.roa
Signing time: Thu 09 Mar 2023 04:10:13 +0000
ROA not before: Thu 09 Mar 2023 04:10:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210329
IP address blocks: 81.28.4.0/24 maxlen: 24
83.229.68.0/24 maxlen: 24
83.229.69.0/24 maxlen: 24
83.229.75.0/24 maxlen: 24
81.28.5.0/24 maxlen: 24
194.146.24.0/24 maxlen: 24
63.250.58.0/24 maxlen: 24
195.238.123.0/24 maxlen: 24
45.91.170.0/24 maxlen: 24
185.127.17.0/24 maxlen: 24
185.127.16.0/24 maxlen: 24
185.237.98.0/24 maxlen: 24
185.127.18.0/24 maxlen: 24
185.127.19.0/24 maxlen: 24
91.223.236.0/24 maxlen: 24
185.237.99.0/24 maxlen: 24
185.237.12.0/24 maxlen: 24
185.237.13.0/24 maxlen: 24
194.146.25.0/24 maxlen: 24
212.86.104.0/24 maxlen: 24
212.86.105.0/24 maxlen: 24
2a06:c5c0:600::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:8f:f3:72:de:ef:89:d0:39:b3:2a:9e:e8:e3:c4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 9 04:10:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a898f1956a8e08a3287ecbf151c6273248289bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:51:7a:c5:86:ee:5d:8a:9e:be:c3:4f:28:87:
8f:60:75:46:ff:89:15:31:c9:d2:c4:f3:d1:a0:ed:
fd:eb:92:cf:4a:25:7c:b4:52:46:0f:76:0c:88:81:
be:40:5a:42:e6:1a:0e:c9:1a:3e:c9:6c:fb:dd:67:
f9:a1:67:8d:c7:b5:a7:6a:40:75:35:ab:86:f7:d6:
cc:29:ce:14:a0:f9:cf:92:c8:19:d1:46:90:d1:d1:
24:77:fa:98:c0:ad:d6:b4:8b:4e:71:64:99:90:a3:
7b:e9:52:db:3f:02:34:01:a0:da:2a:39:02:cc:ab:
da:4b:26:32:be:85:56:57:51:66:c1:17:a3:41:ee:
5e:7c:e9:89:67:13:04:bd:29:71:4c:fe:cd:f1:96:
4f:14:de:ef:b8:cc:bd:44:6a:8c:d7:62:e3:e7:18:
0f:0e:9a:32:07:65:91:6f:ca:71:8c:26:a6:c8:e7:
17:43:28:36:a9:2e:5a:4e:03:4c:29:3a:4c:3b:56:
99:7c:9a:b3:1b:a1:53:c7:a6:f5:c6:94:b4:99:59:
f9:c3:04:33:65:1b:e1:53:8a:cd:e9:b1:86:c7:6c:
4f:ff:07:25:fb:bf:65:c8:ce:24:d1:00:f2:0e:36:
09:30:8d:57:39:e7:40:0c:0a:cf:e5:4c:b7:98:ed:
cc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:98:F1:95:6A:8E:08:A3:28:7E:CB:F1:51:C6:27:32:48:28:9B:AE
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/qJjxlWqOCKMofsvxUcYnMkgom64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.170.0/24
63.250.58.0/24
81.28.4.0/23
83.229.68.0/23
83.229.75.0/24
91.223.236.0/24
185.127.16.0/22
185.237.12.0/23
185.237.98.0/23
194.146.24.0/23
195.238.123.0/24
212.86.104.0/23
IPv6:
2a06:c5c0:600::/48
Signature Algorithm: sha256WithRSAEncryption
7c:ef:67:50:e9:64:e2:84:f8:cf:0c:c6:59:10:2b:c9:b1:58:
91:7d:d6:00:9c:db:5b:e7:6d:0c:71:0a:06:5a:3d:41:a6:20:
ce:12:d5:9d:f6:7f:06:5b:c8:59:ad:af:72:56:02:40:36:75:
aa:0c:29:39:61:70:41:44:d5:2b:64:b1:4f:81:d2:17:0d:54:
b1:9a:fb:17:dd:26:fc:98:ad:c6:f2:48:0c:f5:90:f3:58:0f:
87:ad:21:47:00:3a:08:3a:b1:6b:16:ff:2c:0d:6f:e7:dd:c6:
e2:42:ec:3d:2b:15:6d:f4:bb:9d:4b:fe:25:7e:d2:e5:64:a4:
00:12:fd:04:2e:9c:35:12:e7:81:bf:25:8e:f9:40:cd:5b:49:
0f:f4:a8:39:88:62:9c:3d:d9:c7:6d:29:7d:e0:38:c6:eb:4b:
02:1c:ef:4f:04:00:91:6e:01:0f:57:1c:ea:45:fe:8e:d7:ff:
2d:17:bc:04:f7:91:3c:31:96:fb:f7:5c:29:d0:0d:32:f4:3e:
f3:e6:f5:1c:53:15:f6:9a:61:dd:cb:79:97:78:aa:a0:3b:dc:
9b:71:09:77:a9:7d:79:32:0e:61:8a:58:37:c0:4c:76:6b:2d:
ff:aa:3e:c0:df:1f:d7:fb:36:8d:f0:9a:c7:0f:dd:23:ba:c9:
e2:a0:ad:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:31 2023 by rpki-client on console-fra.rpki-client.org