Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/q5UUZms0Tyz97sLoCIIVMp3FSqQ.roa
File: q5UUZms0Tyz97sLoCIIVMp3FSqQ.roa (raw, json)
Hash identifier: X/sSpUv+LiIWstneZA/vqKTOMeYNQqMsSHdFXOna14U=
Subject key identifier: AB:95:14:66:6B:34:4F:2C:FD:EE:C2:E8:08:82:15:32:9D:C5:4A:A4
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 018EF146B2DCA7C99CD5A8C5EFEF0C3110E5
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/q5UUZms0Tyz97sLoCIIVMp3FSqQ.roa
Signing time: Thu 18 Apr 2024 12:55:25 +0000
ROA not before: Thu 18 Apr 2024 12:55:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7342
IP address blocks: 81.19.193.0/24 maxlen: 24
81.19.196.0/24 maxlen: 24
81.19.197.0/24 maxlen: 24
81.19.199.0/24 maxlen: 24
81.19.201.0/24 maxlen: 24
81.19.204.0/24 maxlen: 24
81.19.205.0/24 maxlen: 24
81.19.206.0/24 maxlen: 24
81.19.207.0/24 maxlen: 24
193.109.220.0/24 maxlen: 24
194.110.75.0/24 maxlen: 24
217.30.80.0/24 maxlen: 24
217.30.81.0/24 maxlen: 24
217.30.82.0/24 maxlen: 24
217.30.84.0/24 maxlen: 24
217.30.85.0/24 maxlen: 24
217.30.87.0/24 maxlen: 24
217.30.92.0/24 maxlen: 24
2a10:eec0::/48 maxlen: 48
2a10:eec0:1::/48 maxlen: 48
2a10:eec0:2::/48 maxlen: 48
2a10:eec0:3::/48 maxlen: 48
2a10:eec0:4::/48 maxlen: 48
2a10:eec0:7::/48 maxlen: 48
2a10:eec0:8::/48 maxlen: 48
2a10:eec0:a::/48 maxlen: 48
2a10:eec0:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 Apr 2024 12:46:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:46:b2:dc:a7:c9:9c:d5:a8:c5:ef:ef:0c:31:10:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Apr 18 12:55:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab9514666b344f2cfdeec2e8088215329dc54aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c6:22:cd:b6:17:f1:11:46:9a:7b:0e:74:1a:
19:3d:18:d9:02:a3:d5:60:2b:41:aa:29:4f:5d:44:
03:6a:f8:f8:1e:fa:0c:d8:06:83:c9:e2:e4:6b:d5:
10:8a:2c:fe:ed:ee:2f:a2:a0:42:f5:34:70:85:55:
e8:22:d0:49:a5:43:96:aa:95:2a:5f:8b:1e:b2:21:
b9:36:4c:df:f2:7d:a6:d2:2f:3a:13:2a:90:0e:d8:
a1:3c:ba:36:8f:02:30:a7:75:5e:2f:a0:b3:8d:f4:
f0:64:6c:c5:dd:aa:b8:e6:bc:b8:94:2d:47:4d:06:
ec:a6:ec:ba:f2:94:01:40:c7:0b:d7:3a:03:1f:c1:
ee:93:b0:15:b4:ba:7b:1c:e9:c8:e9:46:51:17:e4:
2a:87:af:ec:4d:e7:e9:c7:8b:2a:5d:4a:5c:f3:19:
a0:7e:05:e5:c1:03:bc:02:4b:9f:29:37:04:1f:4d:
a0:29:24:90:48:55:ea:91:34:d6:64:d0:e8:cb:49:
2e:a4:07:14:72:3c:7b:0a:75:5f:c5:67:b0:0f:bd:
a3:db:75:aa:d7:c4:af:c3:42:8c:f0:6c:b7:b3:6c:
44:d3:5d:a3:e7:3b:e8:b7:6b:dc:36:4c:36:a5:a9:
3c:a3:cb:4c:b2:29:6e:45:15:84:20:8d:a8:cd:f5:
47:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:95:14:66:6B:34:4F:2C:FD:EE:C2:E8:08:82:15:32:9D:C5:4A:A4
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/q5UUZms0Tyz97sLoCIIVMp3FSqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.193.0/24
81.19.196.0/23
81.19.199.0/24
81.19.201.0/24
81.19.204.0/22
193.109.220.0/24
194.110.75.0/24
217.30.80.0-217.30.82.255
217.30.84.0/23
217.30.87.0/24
217.30.92.0/24
IPv6:
2a10:eec0::-2a10:eec0:4:ffff:ffff:ffff:ffff:ffff
2a10:eec0:7::-2a10:eec0:8:ffff:ffff:ffff:ffff:ffff
2a10:eec0:a::/48
2a10:eec0:c::/48
Signature Algorithm: sha256WithRSAEncryption
32:b6:c7:53:8a:bb:c5:87:5b:9e:98:82:88:26:d9:30:f0:09:
04:42:26:05:36:12:58:5f:4d:f4:16:be:10:39:e8:59:c9:fa:
1e:85:d3:a3:2c:fc:50:7f:a5:df:a8:f1:33:e4:d6:e5:6f:ba:
a8:28:fd:31:9c:25:b1:58:87:e3:a8:d4:17:e1:a4:46:45:58:
a3:ea:d0:7f:46:a1:50:db:8f:64:41:10:75:92:48:54:d8:95:
d7:3e:8e:8c:1f:62:e8:d8:a9:0e:ff:5f:15:9a:29:29:0b:97:
71:bf:98:93:af:8b:92:b2:80:34:48:0f:ab:4c:ce:53:54:4b:
3a:2c:1e:d6:54:b7:28:3b:cf:36:e6:5e:f3:23:f8:3c:3a:c0:
54:a4:e8:a1:93:8c:37:8c:0d:70:08:8a:5e:61:dc:50:bf:3d:
5e:de:8c:ed:a7:55:23:c5:a5:c4:cf:79:d4:82:96:33:c8:ab:
8d:57:17:b6:86:32:60:df:ca:82:a0:c6:42:17:5e:e0:4c:3c:
ba:32:86:30:a7:80:78:d4:c5:0b:f2:7f:3b:40:50:43:7f:ae:
4a:17:a9:b1:83:cc:f4:bc:48:9c:62:f5:1c:ff:64:65:c2:3f:
9b:f7:45:23:cf:4d:43:e5:21:00:23:a1:93:e7:dd:a8:ca:e7:
37:89:7f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:37 2025 by rpki-client