Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/CoQqBXuPv0vsqmJPgdc_Q2TzHEE.roa
File: CoQqBXuPv0vsqmJPgdc_Q2TzHEE.roa (raw, json)
Hash identifier: DdcTs3WCCqr5ivafX3GN6dZU8gnQMaiCkxy4dtw+MJI=
Subject key identifier: 0A:84:2A:05:7B:8F:BF:4B:EC:AA:62:4F:81:D7:3F:43:64:F3:1C:41
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 0193BA0E34F4BDDEA99142D190E758A22A95
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/CoQqBXuPv0vsqmJPgdc_Q2TzHEE.roa
Signing time: Thu 12 Dec 2024 08:48:33 +0000
ROA not before: Thu 12 Dec 2024 08:48:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50266
IP address blocks: 31.20.0.0/16 maxlen: 24
31.21.0.0/16 maxlen: 24
31.184.64.0/18 maxlen: 24
31.187.128.0/17 maxlen: 24
62.166.128.0/17 maxlen: 24
62.250.0.0/17 maxlen: 24
62.250.128.0/17 maxlen: 24
81.59.0.0/17 maxlen: 17
82.172.0.0/17 maxlen: 17
82.174.0.0/16 maxlen: 24
85.223.0.0/17 maxlen: 24
87.208.0.0/16 maxlen: 24
87.209.0.0/16 maxlen: 24
87.210.0.0/16 maxlen: 24
87.212.0.0/16 maxlen: 24
92.254.0.0/17 maxlen: 24
94.157.0.0/16 maxlen: 24
95.98.0.0/15 maxlen: 24
95.99.0.0/16 maxlen: 16
143.177.0.0/16 maxlen: 24
143.178.0.0/17 maxlen: 24
143.178.128.0/17 maxlen: 24
143.179.0.0/16 maxlen: 24
178.224.0.0/16 maxlen: 24
178.226.0.0/16 maxlen: 24
188.88.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:0e:34:f4:bd:de:a9:91:42:d1:90:e7:58:a2:2a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Dec 12 08:48:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a842a057b8fbf4becaa624f81d73f4364f31c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f7:5e:e7:ec:f3:44:b5:29:e6:fa:d4:2e:99:
16:c5:e4:01:fd:72:ed:92:64:90:03:8d:e3:89:43:
11:b4:38:6e:1c:5c:54:b2:84:72:79:53:8a:bd:38:
6d:c1:dc:f9:82:19:fc:d6:f3:7a:c5:ef:68:ad:80:
17:09:4e:b6:bf:8b:eb:e0:ee:06:59:16:94:64:26:
75:75:7f:31:d4:6d:27:dc:b0:56:75:1d:37:22:cf:
15:ca:3a:ef:1c:43:e3:ad:38:b5:b6:18:d2:67:17:
40:da:4c:1d:4b:eb:34:21:81:9d:11:c4:1d:24:f7:
c2:f8:29:e0:e3:43:b2:cb:9d:8c:24:87:f8:21:a2:
34:99:b7:63:a3:05:1a:59:a9:26:0b:ca:e4:6c:18:
02:f2:c0:ea:aa:c7:33:d5:69:ae:2e:c4:a4:24:1c:
6f:f2:12:3a:8c:da:1e:2a:e9:98:a7:7e:8c:0c:f3:
f7:bc:56:61:2c:d1:eb:a2:d5:79:30:fb:b6:71:70:
d4:85:e6:6a:09:75:5a:45:2a:d9:91:42:03:bc:dd:
57:a9:d8:72:11:90:cc:b1:db:17:de:c4:c3:5d:ae:
33:c4:fb:17:7f:bb:d4:2b:0f:27:fa:9c:61:47:96:
35:f6:89:13:ba:b9:01:0c:44:96:3f:58:69:3f:05:
3d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:84:2A:05:7B:8F:BF:4B:EC:AA:62:4F:81:D7:3F:43:64:F3:1C:41
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/CoQqBXuPv0vsqmJPgdc_Q2TzHEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.20.0.0/15
31.184.64.0/18
31.187.128.0/17
62.166.128.0/17
62.250.0.0/16
81.59.0.0/17
82.172.0.0/17
82.174.0.0/16
85.223.0.0/17
87.208.0.0-87.210.255.255
87.212.0.0/16
92.254.0.0/17
94.157.0.0/16
95.98.0.0/15
143.177.0.0-143.179.255.255
178.224.0.0/16
178.226.0.0/16
188.88.0.0/14
Signature Algorithm: sha256WithRSAEncryption
8c:4e:e3:15:70:61:44:0f:33:ee:0e:ae:ef:55:33:70:8e:46:
59:23:12:d0:46:0e:6d:3a:85:dd:c5:18:4d:d6:5d:96:bb:57:
1a:00:e4:37:ab:3e:a0:9c:50:f3:07:a4:3f:8e:0b:13:93:19:
ce:e8:ea:70:c1:9e:cf:6f:bb:30:6c:f4:d0:d5:f0:3f:00:70:
b4:dd:ab:a5:0a:ad:4e:3a:a2:e9:8d:08:c0:3f:5d:1d:a5:b5:
37:85:31:97:54:48:03:a5:13:31:0a:d9:4c:83:43:d9:30:90:
13:44:61:e4:ae:65:a5:d5:58:be:a1:2c:fa:a5:e7:ea:fb:a6:
c1:9f:6f:7d:8a:ad:c6:76:0e:55:24:df:cf:7f:88:9a:b0:ce:
bb:48:22:68:f7:12:3e:b5:14:8e:ec:01:44:32:d1:05:17:8d:
af:b2:0e:aa:f9:9c:16:45:d6:f3:06:9c:15:29:ae:65:63:97:
59:74:aa:47:7d:71:3b:92:73:d3:e5:4d:0c:8c:9b:f6:b6:5f:
f1:0f:e6:6c:64:5d:90:e6:c5:af:2c:22:18:ec:2d:d0:23:4f:
32:d9:dd:1b:c1:f1:44:dd:a6:e9:53:11:59:fc:0b:70:36:12:
87:a1:b2:04:43:c7:fd:ed:58:12:33:a7:6c:10:91:7b:d4:2c:
0e:6e:6e:44
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgISAZO6DjT0vd6pkULRkOdYoiqVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjUzNDQzNzUwMzY2ODgxNWFkZDkzY2QxN2QwYWQzZTFi
MWE4NzcwHhcNMjQxMjEyMDg0ODMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTg0MmEwNTdiOGZiZjRiZWNhYTYyNGY4MWQ3M2Y0MzY0ZjMxYzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPde5+zzRLUp5vrULpkWxeQB/XLt
kmSQA43jiUMRtDhuHFxUsoRyeVOKvThtwdz5ghn81vN6xe9orYAXCU62v4vr4O4G
WRaUZCZ1dX8x1G0n3LBWdR03Is8VyjrvHEPjrTi1thjSZxdA2kwdS+s0IYGdEcQd
JPfC+Cng40Oyy52MJIf4IaI0mbdjowUaWakmC8rkbBgC8sDqqscz1WmuLsSkJBxv
8hI6jNoeKumYp36MDPP3vFZhLNHrotV5MPu2cXDUheZqCXVaRSrZkUIDvN1Xqdhy
EZDMsdsX3sTDXa4zxPsXf7vUKw8n+pxhR5Y19okTurkBDESWP1hpPwU90wIDAQAB
o4ICczCCAm8wHQYDVR0OBBYEFAqEKgV7j79L7KpiT4HXP0Nk8xxBMB8GA1UdIwQY
MBaAFGG1NEN1A2aIFa3ZPNF9CtPhsah3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJVMFEzVURab2dWcmRrODBYMEswLUd4cUhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9jMWFjZDYtMjMwYS00ZTM2LWE1OGYt
ZjU1NWUyZTY4YTEwLzEvQ29RcUJYdVB2MHZzcW1KUGdkY19RMlR6SEVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9jMWFjZDYtMjMwYS00ZTM2LWE1OGYtZjU1NWUyZTY4YTEw
LzEvWWJVMFEzVURab2dWcmRrODBYMEswLUd4cUhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGIBggrBgEFBQcBBwEB/wR5MHcwdQQCAAEwbwMDAR8UAwQG
H7hAAwQHH7uAAwQHPqaAAwMAPvoDBAdROwADBAdSrAADAwBSrgMEB1XfADAKAwME
V9ADAwBX0gMDAFfUAwQHXP4AAwMAXp0DAwFfYjAKAwMAj7EDAwKPsAMDALLgAwMA
suIDAwK8WDANBgkqhkiG9w0BAQsFAAOCAQEAjE7jFXBhRA8z7g6u71UzcI5GWSMS
0EYObTqF3cUYTdZdlrtXGgDkN6s+oJxQ8wekP44LE5MZzujqcMGez2+7MGz00NXw
PwBwtN2rpQqtTjqi6Y0IwD9dHaW1N4Uxl1RIA6UTMQrZTIND2TCQE0Rh5K5lpdVY
vqEs+qXn6vumwZ9vfYqtxnYOVSTfz3+ImrDOu0giaPcSPrUUjuwBRDLRBReNr7IO
qvmcFkXW8wacFSmuZWOXWXSqR31xO5Jz0+VNDIyb9rZf8Q/mbGRdkObFrywiGOwt
0CNPMtndG8HxRN2m6VMRWfwLcDYSh6GyBEPH/e1YEjOnbBCRe9QsDm5uRA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:19 2025 by rpki-client