Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/qE5euovySFhZwjHgPdizCo5tApM.roa
File: qE5euovySFhZwjHgPdizCo5tApM.roa (raw, json)
Hash identifier: dWkIbtFV2xhP2RCziWcq6mw4dG9I2A0IouJN6fARXYY=
Subject key identifier: A8:4E:5E:BA:8B:F2:48:58:59:C2:31:E0:3D:D8:B3:0A:8E:6D:02:93
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 01934B3391EA7CEB7280816D6F05D7381950
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/qE5euovySFhZwjHgPdizCo5tApM.roa
Signing time: Wed 20 Nov 2024 20:11:31 +0000
ROA not before: Wed 20 Nov 2024 20:11:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212330
IP address blocks: 31.223.185.0/24 maxlen: 24
45.113.239.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
2a10:fa42::/32 maxlen: 32
2a10:fa43::/32 maxlen: 32
2a10:fa44:a00::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:48:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4b:33:91:ea:7c:eb:72:80:81:6d:6f:05:d7:38:19:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Nov 20 20:11:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a84e5eba8bf2485859c231e03dd8b30a8e6d0293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:b2:bc:52:01:d6:86:9a:9c:21:ec:78:7c:
83:77:1f:73:f5:d8:e4:10:4f:4f:8c:65:72:ed:d6:
45:15:a5:28:a5:f2:62:5e:5d:7d:ce:f9:9a:31:11:
a1:0c:5d:35:6e:b5:1d:51:dd:60:f5:06:1e:b2:e9:
11:c3:1b:6d:e7:af:f2:59:8b:2a:a7:21:24:c3:8a:
4a:f5:7b:76:d6:6f:25:da:07:11:64:d0:b6:3d:09:
e7:4d:8d:9c:00:be:36:cd:df:39:fc:3c:5e:c2:a0:
9c:a2:b8:a1:80:8e:16:18:a6:2d:0b:4b:1b:f0:96:
90:ca:cf:ee:9a:e8:61:8d:9d:bd:c8:1f:d9:d5:02:
0c:4b:1b:1f:f5:45:9d:24:f3:eb:08:00:e8:19:7a:
d2:85:ae:4f:91:e0:bb:63:0e:63:d0:de:c6:1f:5f:
7c:0c:86:3a:9c:70:22:76:25:52:93:32:04:f4:c1:
e2:1b:36:9d:c2:3f:b3:f3:e9:16:79:f7:50:a8:e3:
a5:1f:6d:3c:3c:18:77:cd:ee:e0:2d:0f:53:52:51:
57:a0:c7:54:a3:e6:91:c0:98:77:50:69:31:55:b8:
86:26:ac:6f:00:e6:08:34:a5:87:ad:a3:11:60:41:
90:5e:3d:c1:5c:77:61:03:c5:a7:93:ca:83:98:a1:
f0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:4E:5E:BA:8B:F2:48:58:59:C2:31:E0:3D:D8:B3:0A:8E:6D:02:93
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/qE5euovySFhZwjHgPdizCo5tApM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
2a10:fa44:a00::/40
Signature Algorithm: sha256WithRSAEncryption
62:50:81:7b:4b:d9:10:3c:66:7c:82:19:fa:c5:aa:72:c0:43:
89:bc:76:08:ec:e2:06:da:ea:e6:d7:79:1f:00:45:77:29:95:
39:97:a8:bf:6e:51:49:30:af:fa:5a:79:1b:d7:ae:5b:05:49:
13:99:f7:b0:35:34:0e:f6:6b:c4:fc:28:3a:01:f8:ef:9c:9b:
d5:58:b6:00:1a:5e:fd:5a:74:45:2a:fb:45:74:21:a9:9f:5e:
4d:fc:1e:f1:39:d7:c8:e1:53:dd:70:fc:bb:1e:67:97:a2:16:
7f:1f:cc:f8:84:16:c2:8a:64:f7:91:35:04:f0:e3:b9:68:83:
97:4b:b1:a7:85:9b:99:be:a0:ed:f4:42:b5:96:af:11:72:e8:
09:78:ac:7b:6d:80:48:3c:1a:6f:00:e5:3b:19:16:cb:00:29:
09:72:da:36:c7:dc:79:29:84:81:85:d3:5b:d9:db:d0:8a:88:
cb:6d:1d:a1:e5:b0:c1:d2:f8:b3:69:2e:dc:25:e8:da:6c:a8:
34:13:78:e3:b6:19:ff:3c:b6:e4:de:57:f2:66:ee:5d:58:ea:
31:84:65:ec:f7:68:1a:d5:e4:a9:55:ff:86:54:ab:4a:85:61:
b9:3e:a8:85:89:a3:d6:5e:be:e9:7d:65:6c:38:fd:15:cd:19:
04:37:e7:04
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAZNLM5HqfOtygIFtbwXXOBlQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk
ODVjZDYwHhcNMjQxMTIwMjAxMTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODRlNWViYThiZjI0ODU4NTljMjMxZTAzZGQ4YjMwYThlNmQwMjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoCyvFIB1oaanCHseHyDdx9z9djk
EE9PjGVy7dZFFaUopfJiXl19zvmaMRGhDF01brUdUd1g9QYesukRwxtt56/yWYsq
pyEkw4pK9Xt21m8l2gcRZNC2PQnnTY2cAL42zd85/DxewqCcorihgI4WGKYtC0sb
8JaQys/umuhhjZ29yB/Z1QIMSxsf9UWdJPPrCADoGXrSha5PkeC7Yw5j0N7GH198
DIY6nHAidiVSkzIE9MHiGzadwj+z8+kWefdQqOOlH208PBh3ze7gLQ9TUlFXoMdU
o+aRwJh3UGkxVbiGJqxvAOYINKWHraMRYEGQXj3BXHdhA8Wnk8qDmKHwwwIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFKhOXrqL8khYWcIx4D3YswqObQKTMB8GA1UdIwQY
MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct
NjQ5NDVhNGY4ZTEyLzEvcUU1ZXVvdnlTRmhad2pIZ1BkaXpDbzV0QXBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy
LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBOBAIAATBIAwQAH9+5AwQA
LXHvAwQAVmncAwQBVm+WAwQAXXP8AwQAXrAoAwQAZ+VQAwQAuRAZAwQAuWCgAwQA
uXFoAwQAuXFqAwQAwQOJMBUEAgACMA8DBQEqEPpCAwYAKhD6RAowDQYJKoZIhvcN
AQELBQADggEBAGJQgXtL2RA8ZnyCGfrFqnLAQ4m8dgjs4gba6ubXeR8ARXcplTmX
qL9uUUkwr/paeRvXrlsFSROZ97A1NA72a8T8KDoB+O+cm9VYtgAaXv1adEUq+0V0
IamfXk38HvE518jhU91w/LseZ5eiFn8fzPiEFsKKZPeRNQTw47log5dLsaeFm5m+
oO30QrWWrxFy6Al4rHttgEg8Gm8A5TsZFssAKQly2jbH3HkphIGF01vZ29CKiMtt
HaHlsMHS+LNpLtwl6NpsqDQTeOO2Gf88tuTeV/Jm7l1Y6jGEZez3aBrV5KlV/4ZU
q0qFYbk+qIWJo9Zevul9ZWw4/RXNGQQ35wQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:02 2025 by rpki-client