Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/QewEI1EGNz9Iwn-0tWPbDEwVC4A.roa
File: QewEI1EGNz9Iwn-0tWPbDEwVC4A.roa (raw, json)
Hash identifier: NDx8AlDOKnBcVnPrw/1nFY6/k8+UKFGgcWdWIzUB5U8=
Subject key identifier: 41:EC:04:23:51:06:37:3F:48:C2:7F:B4:B5:63:DB:0C:4C:15:0B:80
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0188C02584B386CFF1BC126D1114FEA5A44D
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/QewEI1EGNz9Iwn-0tWPbDEwVC4A.roa
Signing time: Thu 15 Jun 2023 17:41:04 +0000
ROA not before: Thu 15 Jun 2023 17:41:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212330
IP address blocks: 45.113.239.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
31.223.185.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
2a10:fa43::/32 maxlen: 32
2a10:fa42::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c0:25:84:b3:86:cf:f1:bc:12:6d:11:14:fe:a5:a4:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Jun 15 17:41:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41ec04235106373f48c27fb4b563db0c4c150b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:eb:a6:8e:f0:2d:ec:93:45:35:18:a7:dd:
bb:3c:f5:bc:98:1d:28:28:84:cf:36:2d:b3:cb:c7:
6b:4e:58:39:3c:0d:1c:1a:ca:0b:e0:c1:40:c3:02:
27:0a:0d:b6:84:52:38:eb:23:46:bb:8e:b1:63:2b:
bd:ee:d8:ae:42:db:eb:09:29:e8:7e:61:b0:31:36:
0d:07:22:c0:93:d3:05:99:da:86:a2:0a:2c:3f:0a:
e0:70:fb:92:3c:45:9b:3d:c0:ae:a4:8c:35:e4:33:
4e:75:32:8e:b5:f3:81:94:4e:b2:13:30:54:e9:78:
d0:e2:7c:98:66:53:ed:49:7c:86:fa:1d:e1:4a:89:
d3:a0:66:d4:20:e5:85:ee:b0:a0:a1:2e:3f:e8:52:
d2:04:ac:68:95:71:77:1f:70:08:52:35:44:e7:4e:
95:80:73:7c:b1:85:20:8d:7a:ca:52:67:ee:eb:8c:
15:7a:56:08:90:c9:a0:20:4d:7c:25:31:17:10:9b:
f9:af:a0:9c:f9:e7:1c:5e:f2:46:ea:7f:1d:f8:43:
a4:2f:f4:4a:26:da:93:0d:c2:b3:0c:b9:29:aa:e0:
59:a7:b7:57:8e:b9:f2:15:0b:d1:f6:05:75:b9:fa:
5b:ec:6a:6a:c0:31:65:14:d6:af:3a:3e:30:29:08:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EC:04:23:51:06:37:3F:48:C2:7F:B4:B5:63:DB:0C:4C:15:0B:80
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/QewEI1EGNz9Iwn-0tWPbDEwVC4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
Signature Algorithm: sha256WithRSAEncryption
06:68:09:d4:a9:1b:6b:17:b8:8d:b4:55:ef:d5:b0:7e:07:61:
08:f0:91:47:43:83:8e:f4:32:4c:2a:36:4a:30:cd:55:28:1d:
6f:eb:c1:17:fa:8e:43:ca:35:25:4f:15:b7:86:be:45:b4:e6:
32:e8:9d:94:a1:94:d8:8a:0e:43:38:c4:f6:41:6b:fe:e3:fb:
16:8c:3d:91:1a:1e:52:8e:a5:ed:55:e0:0c:4c:d5:1c:78:cf:
21:e5:93:4b:83:40:77:2e:93:f4:63:4c:83:99:cb:5a:ad:ac:
46:64:c8:65:b7:1a:76:e3:b6:ef:51:0c:82:e2:35:fb:20:ba:
e2:2c:12:06:87:74:d8:b1:cf:b5:0e:79:3b:c8:68:0a:d4:d7:
35:a5:fd:6b:7e:14:8d:77:9f:9c:fa:37:9b:2d:40:fc:b0:c9:
b1:bd:57:6b:4e:c6:8e:e7:e0:81:02:35:ff:e4:82:f4:b6:a7:
54:39:f3:32:e5:1a:ff:36:f0:66:98:21:cc:49:3c:c0:5f:4e:
03:9c:bf:e8:a8:69:a4:62:19:b3:17:cd:32:df:23:da:d8:3b:
dc:81:f7:02:c1:ab:46:7a:d3:1b:79:52:4d:44:e5:14:8c:29:
1c:1c:ce:56:11:e1:9c:49:8b:cb:cf:31:36:b4:c3:dd:c9:ac:
2f:0c:69:f2
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAYjAJYSzhs/xvBJtERT+paRNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk
ODVjZDYwHhcNMjMwNjE1MTc0MTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWVjMDQyMzUxMDYzNzNmNDhjMjdmYjRiNTYzZGIwYzRjMTUwYjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKHrpo7wLeyTRTUYp927PPW8mB0o
KITPNi2zy8drTlg5PA0cGsoL4MFAwwInCg22hFI46yNGu46xYyu97tiuQtvrCSno
fmGwMTYNByLAk9MFmdqGogosPwrgcPuSPEWbPcCupIw15DNOdTKOtfOBlE6yEzBU
6XjQ4nyYZlPtSXyG+h3hSonToGbUIOWF7rCgoS4/6FLSBKxolXF3H3AIUjVE506V
gHN8sYUgjXrKUmfu64wVelYIkMmgIE18JTEXEJv5r6Cc+eccXvJG6n8d+EOkL/RK
JtqTDcKzDLkpquBZp7dXjrnyFQvR9gV1ufpb7GpqwDFlFNavOj4wKQggvQIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFEHsBCNRBjc/SMJ/tLVj2wxMFQuAMB8GA1UdIwQY
MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct
NjQ5NDVhNGY4ZTEyLzEvUWV3RUkxRUdOejlJd24tMHRXUGJERXdWQzRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy
LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQAH9+5AwQA
LXHvAwQAVmncAwQBVm+WAwQAXXP8AwQAXrAoAwQAZ+VQAwQAuRAZAwQAuWCgAwQA
uXFoAwQAuXFqAwQAwQOJMA0EAgACMAcDBQEqEPpCMA0GCSqGSIb3DQEBCwUAA4IB
AQAGaAnUqRtrF7iNtFXv1bB+B2EI8JFHQ4OO9DJMKjZKMM1VKB1v68EX+o5DyjUl
TxW3hr5FtOYy6J2UoZTYig5DOMT2QWv+4/sWjD2RGh5SjqXtVeAMTNUceM8h5ZNL
g0B3LpP0Y0yDmctaraxGZMhltxp247bvUQyC4jX7ILriLBIGh3TYsc+1Dnk7yGgK
1Nc1pf1rfhSNd5+c+jebLUD8sMmxvVdrTsaO5+CBAjX/5IL0tqdUOfMy5Rr/NvBm
mCHMSTzAX04DnL/oqGmkYhmzF80y3yPa2DvcgfcCwatGetMbeVJNROUUjCkcHM5W
EeGcSYvLzzE2tMPdyawvDGny
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:08 2024 by rpki-client on console-fra.rpki-client.org