Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_0Lcs6QshIaGM93rEBIpsGzmEcw.roa
File: _0Lcs6QshIaGM93rEBIpsGzmEcw.roa (raw, json)
Hash identifier: gQ0Zjq9P7q9pnHi5UC22bcEDL99cUnWfeItmJGhaB/A=
Subject key identifier: FF:42:DC:B3:A4:2C:84:86:86:33:DD:EB:10:12:29:B0:6C:E6:11:CC
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018CC500D729B05E76679CAB9F89CA1D6A79
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_0Lcs6QshIaGM93rEBIpsGzmEcw.roa
Signing time: Mon 01 Jan 2024 12:30:15 +0000
ROA not before: Mon 01 Jan 2024 12:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49037
IP address blocks: 95.174.98.0/24 maxlen: 24
95.174.96.0/23 maxlen: 23
95.174.102.0/24 maxlen: 24
95.174.101.0/24 maxlen: 24
95.174.100.0/24 maxlen: 24
95.174.99.0/24 maxlen: 24
95.174.105.0/24 maxlen: 24
95.174.104.0/24 maxlen: 24
95.174.103.0/24 maxlen: 24
95.174.112.0/24 maxlen: 24
95.174.111.0/24 maxlen: 24
95.174.110.0/24 maxlen: 24
95.174.109.0/24 maxlen: 24
95.174.108.0/24 maxlen: 24
95.174.107.0/24 maxlen: 24
95.174.106.0/24 maxlen: 24
95.174.116.0/24 maxlen: 24
95.174.115.0/24 maxlen: 24
95.174.114.0/24 maxlen: 24
95.174.113.0/24 maxlen: 24
95.174.118.0/24 maxlen: 24
95.174.117.0/24 maxlen: 24
95.174.125.0/24 maxlen: 24
95.174.124.0/24 maxlen: 24
95.174.123.0/24 maxlen: 24
95.174.120.0/24 maxlen: 24
95.174.119.0/24 maxlen: 24
95.174.127.0/24 maxlen: 24
95.174.126.0/24 maxlen: 24
185.9.186.0/24 maxlen: 24
185.9.184.0/24 maxlen: 24
185.9.187.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
185.230.241.0/24 maxlen: 24
185.230.240.0/24 maxlen: 24
46.226.160.0/21 maxlen: 32
80.72.16.0/21 maxlen: 32
80.72.16.0/23 maxlen: 23
80.72.24.0/24 maxlen: 24
80.72.20.0/23 maxlen: 32
80.72.24.0/22 maxlen: 32
80.72.25.0/24 maxlen: 24
80.72.26.0/23 maxlen: 23
92.118.73.0/24 maxlen: 24
92.118.72.0/24 maxlen: 24
2a00:8740:25::/48 maxlen: 48
2a00:8740:ff00::/48 maxlen: 48
2a00:8740:100::/48 maxlen: 48
2a00:8740:1b::/48 maxlen: 48
2a00:8740:36::/48 maxlen: 48
2a00:8740:2f::/48 maxlen: 48
2a00:8740:18::/48 maxlen: 48
2a00:8740:33::/48 maxlen: 48
2a00:8740:111::/48 maxlen: 48
2a00:8740:11::/48 maxlen: 48
2a00:8740:2c::/48 maxlen: 48
2a00:8740:15::/48 maxlen: 48
2a00:8740:30::/48 maxlen: 48
2a00:8740:26::/48 maxlen: 48
2a00:8740:29::/48 maxlen: 48
2a00:8740:1f::/48 maxlen: 48
2a00:8740:2d::/48 maxlen: 48
2a00:8740:23::/48 maxlen: 48
2a00:8740:1c::/48 maxlen: 48
2a00:8740:112::/48 maxlen: 48
2a00:8740:500::/40 maxlen: 40
2a00:8740:20::/48 maxlen: 48
2a00:8740::/47 maxlen: 47
2a00:8740:16::/48 maxlen: 48
2a00:8740:34::/48 maxlen: 48
2a00:8740:1d::/48 maxlen: 48
2a00:8740:2e::/48 maxlen: 48
2a00:8740:27::/48 maxlen: 48
2a00:8740:2::/48 maxlen: 48
2a00:8740:35::/48 maxlen: 48
2a00:8740:110::/48 maxlen: 48
2a00:8740:10::/48 maxlen: 48
2a00:8740:2b::/48 maxlen: 48
2a00:8740:24::/48 maxlen: 48
2a00:8740:1a::/48 maxlen: 48
2a00:8740:28::/48 maxlen: 48
2a00:8740:1e::/48 maxlen: 48
2a00:8740:21::/48 maxlen: 48
2a00:8740:17::/48 maxlen: 48
2a00:8740:32::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 21 Jan 2024 14:42:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:d7:29:b0:5e:76:67:9c:ab:9f:89:ca:1d:6a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jan 1 12:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff42dcb3a42c84868633ddeb101229b06ce611cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ec:a4:ad:fa:dd:7c:52:90:13:73:df:6b:08:
55:5c:3f:97:f5:78:3d:72:4b:e7:77:a9:e2:ac:fe:
c8:aa:de:67:59:ce:da:a1:d4:01:7f:91:92:ab:4a:
f7:41:a7:7c:26:5b:ad:1f:67:d1:47:a2:ec:32:7f:
95:89:0f:c5:9e:0b:b6:52:f5:81:73:56:b8:3e:a2:
08:ed:ee:ed:01:e9:87:0d:e1:2d:f4:b2:b4:e4:7a:
a0:dc:65:1f:5a:ea:e5:eb:b5:e8:2f:96:b4:69:56:
95:af:ec:6e:0a:c5:66:94:9a:f4:3d:a0:7e:b8:74:
ff:2c:d6:5c:53:91:52:70:69:ee:64:3f:51:a7:5b:
f5:80:db:96:7d:f8:56:a1:17:6c:ee:1c:e2:40:53:
17:fe:d6:17:07:a4:3c:47:1b:b0:d7:38:e3:49:8f:
c5:f2:ee:2d:84:3a:a4:bb:d7:ec:19:e0:f8:5d:a7:
b0:9c:e9:fa:31:3c:91:4f:0b:f9:f2:e5:19:7d:28:
a6:bc:69:33:11:72:f8:1e:9b:8b:ad:dc:09:67:09:
fc:fa:95:31:01:93:31:ba:ea:a9:0a:4a:59:7c:b6:
80:02:e1:ac:74:1f:3d:b2:71:e3:79:26:c0:96:87:
0a:ba:85:68:f1:be:2e:42:05:b9:b8:70:ef:a4:f4:
e8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:42:DC:B3:A4:2C:84:86:86:33:DD:EB:10:12:29:B0:6C:E6:11:CC
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/_0Lcs6QshIaGM93rEBIpsGzmEcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
80.72.16.0-80.72.27.255
92.118.72.0/23
95.174.96.0-95.174.120.255
95.174.123.0-95.174.127.255
185.9.184.0/24
185.9.186.0/23
185.230.240.0-185.230.242.255
IPv6:
2a00:8740::-2a00:8740:2:ffff:ffff:ffff:ffff:ffff
2a00:8740:10::/47
2a00:8740:15::-2a00:8740:18:ffff:ffff:ffff:ffff:ffff
2a00:8740:1a::-2a00:8740:21:ffff:ffff:ffff:ffff:ffff
2a00:8740:23::-2a00:8740:29:ffff:ffff:ffff:ffff:ffff
2a00:8740:2b::-2a00:8740:30:ffff:ffff:ffff:ffff:ffff
2a00:8740:32::-2a00:8740:36:ffff:ffff:ffff:ffff:ffff
2a00:8740:100::/48
2a00:8740:110::-2a00:8740:112:ffff:ffff:ffff:ffff:ffff
2a00:8740:500::/40
2a00:8740:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
3d:d4:1c:5b:6d:4c:7b:2e:89:ae:ad:1f:50:c1:be:9a:24:46:
de:9a:cd:eb:47:60:71:bd:d6:c0:fd:e5:0a:35:61:04:91:f5:
99:06:ec:a5:fa:0f:da:f2:65:5e:a9:73:07:66:35:51:33:0a:
73:3a:42:51:d9:ba:f4:4c:40:44:7c:15:d3:0b:b3:8e:4b:7f:
8f:98:cf:f7:9f:cf:3e:f6:cf:09:a4:9f:15:de:5e:24:6e:27:
17:34:20:17:8d:dd:82:f6:bb:4a:a5:ab:0e:fc:4d:d2:10:1c:
0c:80:60:34:89:06:f8:c8:4b:31:1d:d8:09:0a:70:5c:ba:11:
ef:8a:f2:df:ea:af:d2:19:a0:50:45:ee:cf:69:53:d3:6b:ff:
b7:55:7a:9b:bf:13:b6:36:48:8b:b8:5e:6d:e2:fd:3c:e0:fc:
c8:0d:d9:58:42:82:87:a1:b9:03:49:fe:cf:96:a5:80:2e:04:
db:6a:6a:b8:c3:10:d7:76:d9:07:84:5c:cf:38:6e:b1:65:ef:
00:52:33:d8:bd:68:4b:05:b1:c9:22:8a:43:ee:00:67:b7:73:
d7:ab:06:92:a6:32:bf:d5:63:93:22:d6:98:6e:f7:57:6d:ae:
dc:ab:e0:24:61:8b:30:d0:60:c6:98:e2:63:f2:82:24:b4:da:
b9:53:a7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org