Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EZFX54DXigC9b4OhXkxBJGi4zuo.roa
File: EZFX54DXigC9b4OhXkxBJGi4zuo.roa (raw, json)
Hash identifier: zoWS8CQOFiK4zEWDd1vVhYXZYOtE/nHhkaO+kTDTTCQ=
Subject key identifier: 11:91:57:E7:80:D7:8A:00:BD:6F:83:A1:5E:4C:41:24:68:B8:CE:EA
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 0189CF95F3018267430C5B547E4B38FECCD2
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EZFX54DXigC9b4OhXkxBJGi4zuo.roa
Signing time: Mon 07 Aug 2023 10:40:57 +0000
ROA not before: Mon 07 Aug 2023 10:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 95.174.98.0/24 maxlen: 24
95.174.96.0/23 maxlen: 23
95.174.102.0/24 maxlen: 24
95.174.101.0/24 maxlen: 24
95.174.100.0/24 maxlen: 24
95.174.99.0/24 maxlen: 24
95.174.105.0/24 maxlen: 24
95.174.104.0/24 maxlen: 24
95.174.103.0/24 maxlen: 24
95.174.109.0/24 maxlen: 24
95.174.108.0/24 maxlen: 24
95.174.107.0/24 maxlen: 24
95.174.106.0/24 maxlen: 24
95.174.112.0/24 maxlen: 24
95.174.111.0/24 maxlen: 24
95.174.110.0/24 maxlen: 24
95.174.116.0/24 maxlen: 24
95.174.115.0/24 maxlen: 24
95.174.114.0/24 maxlen: 24
95.174.113.0/24 maxlen: 24
95.174.118.0/24 maxlen: 24
95.174.117.0/24 maxlen: 24
95.174.125.0/24 maxlen: 24
95.174.124.0/24 maxlen: 24
95.174.123.0/24 maxlen: 24
95.174.120.0/24 maxlen: 24
95.174.119.0/24 maxlen: 24
95.174.127.0/24 maxlen: 24
95.174.126.0/24 maxlen: 24
185.9.186.0/24 maxlen: 24
185.9.184.0/24 maxlen: 24
185.9.187.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
185.230.241.0/24 maxlen: 24
185.230.240.0/24 maxlen: 24
80.72.24.0/24 maxlen: 24
80.72.25.0/24 maxlen: 24
92.118.72.0/24 maxlen: 24
2a00:8740:25::/48 maxlen: 48
2a00:8740:100::/48 maxlen: 48
2a00:8740:ff00::/48 maxlen: 48
2a00:8740:1b::/48 maxlen: 48
2a00:8740:2f::/48 maxlen: 48
2a00:8740:18::/48 maxlen: 48
2a00:8740:33::/48 maxlen: 48
2a00:8740:11::/48 maxlen: 48
2a00:8740:111::/48 maxlen: 48
2a00:8740:2c::/48 maxlen: 48
2a00:8740:15::/48 maxlen: 48
2a00:8740:30::/48 maxlen: 48
2a00:8740:26::/48 maxlen: 48
2a00:8740:29::/48 maxlen: 48
2a00:8740:1f::/48 maxlen: 48
2a00:8740:2d::/48 maxlen: 48
2a00:8740:23::/48 maxlen: 48
2a00:8740:1c::/48 maxlen: 48
2a00:8740:112::/48 maxlen: 48
2a00:8740:20::/48 maxlen: 48
2a00:8740::/47 maxlen: 47
2a00:8740:16::/48 maxlen: 48
2a00:8740:1d::/48 maxlen: 48
2a00:8740:2e::/48 maxlen: 48
2a00:8740:27::/48 maxlen: 48
2a00:8740:2::/48 maxlen: 48
2a00:8740:35::/48 maxlen: 48
2a00:8740:10::/48 maxlen: 48
2a00:8740:110::/48 maxlen: 48
2a00:8740:2b::/48 maxlen: 48
2a00:8740:24::/48 maxlen: 48
2a00:8740:1a::/48 maxlen: 48
2a00:8740:28::/48 maxlen: 48
2a00:8740:1e::/48 maxlen: 48
2a00:8740:21::/48 maxlen: 48
2a00:8740:17::/48 maxlen: 48
2a00:8740:32::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Nov 2023 08:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:95:f3:01:82:67:43:0c:5b:54:7e:4b:38:fe:cc:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Aug 7 10:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=119157e780d78a00bd6f83a15e4c412468b8ceea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:21:36:dc:0f:8d:d6:fd:9e:93:f9:17:08:74:
9a:96:52:52:ca:a0:af:85:ec:5b:4c:f0:21:62:83:
55:52:8f:a6:3f:88:de:18:31:27:00:bc:a8:5a:22:
d9:39:16:d2:d7:a5:8d:2a:14:c0:62:75:cd:05:be:
21:da:f5:27:e9:d1:ba:98:48:f6:9f:7d:ee:3c:2e:
2e:f5:f2:cb:66:f9:34:2c:41:58:ca:33:3d:e3:84:
c1:f0:a0:8e:9d:8f:49:24:a9:01:15:30:0f:e9:c3:
51:92:b1:81:ef:df:f8:1c:9d:98:02:e0:88:f2:d3:
b8:70:ee:ce:fe:14:24:42:0c:04:51:64:b2:33:5f:
7c:a8:bc:73:23:06:b1:2d:19:a9:16:49:71:9c:04:
4f:2a:0f:a0:ea:0f:a8:c1:11:47:a6:0d:20:b0:b3:
08:a5:72:42:b7:04:29:ec:20:c5:f8:7a:c9:69:d1:
85:58:31:a8:c1:87:52:e8:28:57:57:e5:ae:a5:41:
16:1a:c4:09:1c:67:59:55:29:71:76:e2:6c:d0:5f:
04:28:79:63:fb:0f:dd:95:5f:3b:a5:9c:0a:2a:78:
b4:e9:e8:68:a9:f3:5a:41:7f:6a:11:ea:de:8e:90:
ba:ef:0e:5b:f8:d8:0a:94:88:dc:3b:42:1b:42:12:
02:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:91:57:E7:80:D7:8A:00:BD:6F:83:A1:5E:4C:41:24:68:B8:CE:EA
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EZFX54DXigC9b4OhXkxBJGi4zuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.24.0/23
92.118.72.0/24
95.174.96.0-95.174.120.255
95.174.123.0-95.174.127.255
185.9.184.0/24
185.9.186.0/23
185.230.240.0-185.230.242.255
IPv6:
2a00:8740::-2a00:8740:2:ffff:ffff:ffff:ffff:ffff
2a00:8740:10::/47
2a00:8740:15::-2a00:8740:18:ffff:ffff:ffff:ffff:ffff
2a00:8740:1a::-2a00:8740:21:ffff:ffff:ffff:ffff:ffff
2a00:8740:23::-2a00:8740:29:ffff:ffff:ffff:ffff:ffff
2a00:8740:2b::-2a00:8740:30:ffff:ffff:ffff:ffff:ffff
2a00:8740:32::/47
2a00:8740:35::/48
2a00:8740:100::/48
2a00:8740:110::-2a00:8740:112:ffff:ffff:ffff:ffff:ffff
2a00:8740:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
64:b9:33:4b:f6:d1:3e:34:a9:07:5d:5d:08:fe:08:f9:64:a0:
5a:49:7f:70:69:27:08:57:bf:7c:43:ca:81:aa:91:d5:55:0c:
22:d5:35:f2:68:5d:0f:0d:e9:65:45:fc:5c:70:73:56:f7:d2:
5a:fd:35:09:82:70:9e:77:c3:51:ab:25:36:fb:14:ff:f6:14:
77:a2:60:ac:3a:52:a3:a0:96:5b:83:19:e5:d8:67:e9:58:8f:
fb:e9:a5:05:7a:b4:67:05:f9:14:4c:5f:4b:35:27:f1:31:b8:
7e:54:60:7c:f3:6c:51:84:5c:25:42:1d:53:a6:2d:4b:53:5a:
c4:81:52:ab:b9:44:b9:ff:9a:01:7a:18:00:57:f6:89:59:00:
62:0b:a0:4d:e1:4e:26:80:21:0d:72:4f:44:a6:08:52:2f:2f:
bb:fc:c0:e3:37:93:2c:19:5b:7e:76:48:41:d4:4b:c3:4e:48:
f1:52:27:3b:2d:19:b3:04:70:95:65:02:ca:96:58:7a:9c:52:
24:a4:eb:db:c0:9d:4f:7d:f6:a5:49:19:6a:74:3a:e7:92:d5:
c4:b2:89:d3:c3:39:98:51:f3:3e:d7:5e:3c:8f:7e:c2:b7:54:
e4:a7:82:00:f2:0c:60:ff:ba:0a:79:46:c9:20:75:ce:ab:4c:
82:b5:57:28
-----BEGIN CERTIFICATE-----
MIIF6jCCBNKgAwIBAgISAYnPlfMBgmdDDFtUfks4/szSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZTk3MDMzYTM2YWE5YmNjMGMyZjE2N2U2MjBkN2NhMTQ5
M2NiZWEwHhcNMjMwODA3MTA0MDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTkxNTdlNzgwZDc4YTAwYmQ2ZjgzYTE1ZTRjNDEyNDY4YjhjZWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziE23A+N1v2ek/kXCHSallJSyqCv
hexbTPAhYoNVUo+mP4jeGDEnALyoWiLZORbS16WNKhTAYnXNBb4h2vUn6dG6mEj2
n33uPC4u9fLLZvk0LEFYyjM944TB8KCOnY9JJKkBFTAP6cNRkrGB79/4HJ2YAuCI
8tO4cO7O/hQkQgwEUWSyM198qLxzIwaxLRmpFklxnARPKg+g6g+owRFHpg0gsLMI
pXJCtwQp7CDF+HrJadGFWDGowYdS6ChXV+WupUEWGsQJHGdZVSlxduJs0F8EKHlj
+w/dlV87pZwKKni06ehoqfNaQX9qEerejpC67w5b+NgKlIjcO0IbQhICIwIDAQAB
o4IC9jCCAvIwHQYDVR0OBBYEFBGRV+eA14oAvW+DoV5MQSRouM7qMB8GA1UdIwQY
MBaAFNPpcDOjaqm8wMLxZ+Yg18oUk8vqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMt
ZGJmOWQ0MWYxNzk4LzEvRVpGWDU0RFhpZ0M5YjRPaFhreEJKR2k0enVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMtZGJmOWQ0MWYxNzk4
LzEvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCgYIKwYBBQUHAQcBAf8EgfowgfcwSAQCAAEwQgMEAVBI
GAMEAFx2SDAMAwQFX65gAwQAX654MAwDBABfrnsDBAdfrgADBAC5CbgDBAG5Cbow
DAMEBLnm8AMEALnm8jCBqgQCAAIwgaMwEAMFBioAh0ADBwAqAIdAAAIDBwEqAIdA
ABAwEgMHACoAh0AAFQMHACoAh0AAGDASAwcBKgCHQAAaAwcBKgCHQAAgMBIDBwAq
AIdAACMDBwEqAIdAACgwEgMHACoAh0AAKwMHACoAh0AAMAMHASoAh0AAMgMHACoA
h0AANQMHACoAh0ABADASAwcEKgCHQAEQAwcAKgCHQAESAwcAKgCHQP8AMA0GCSqG
SIb3DQEBCwUAA4IBAQBkuTNL9tE+NKkHXV0I/gj5ZKBaSX9waScIV798Q8qBqpHV
VQwi1TXyaF0PDellRfxccHNW99Ja/TUJgnCed8NRqyU2+xT/9hR3omCsOlKjoJZb
gxnl2GfpWI/76aUFerRnBfkUTF9LNSfxMbh+VGB882xRhFwlQh1Tpi1LU1rEgVKr
uUS5/5oBehgAV/aJWQBiC6BN4U4mgCENck9EpghSLy+7/MDjN5MsGVt+dkhB1EvD
TkjxUic7LRmzBHCVZQLKllh6nFIkpOvbwJ1PffalSRlqdDrnktXEsonTwzmYUfM+
1148j37Ct1Tkp4IA8gxg/7oKeUbJIHXOq0yCtVco
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org