Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/j7oU2x2dovSG6sNo19StK9HkT4w.roa
File: j7oU2x2dovSG6sNo19StK9HkT4w.roa (raw, json)
Hash identifier: IBDCs8dIz/QBQD/nfJZDgIQcplgcXiPjf5OaUYjuUnk=
Subject key identifier: 8F:BA:14:DB:1D:9D:A2:F4:86:EA:C3:68:D7:D4:AD:2B:D1:E4:4F:8C
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 0189200491ED0D86B9CCC4EA378135E154E3
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/j7oU2x2dovSG6sNo19StK9HkT4w.roa
Signing time: Tue 04 Jul 2023 08:28:37 +0000
ROA not before: Tue 04 Jul 2023 08:28:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 95.174.98.0/24 maxlen: 24
95.174.96.0/23 maxlen: 23
95.174.102.0/24 maxlen: 24
95.174.101.0/24 maxlen: 24
95.174.100.0/24 maxlen: 24
95.174.99.0/24 maxlen: 24
95.174.105.0/24 maxlen: 24
95.174.104.0/24 maxlen: 24
95.174.103.0/24 maxlen: 24
95.174.109.0/24 maxlen: 24
95.174.108.0/24 maxlen: 24
95.174.107.0/24 maxlen: 24
95.174.106.0/24 maxlen: 24
95.174.112.0/24 maxlen: 24
95.174.111.0/24 maxlen: 24
95.174.110.0/24 maxlen: 24
95.174.116.0/24 maxlen: 24
95.174.115.0/24 maxlen: 24
95.174.114.0/24 maxlen: 24
95.174.113.0/24 maxlen: 24
95.174.118.0/24 maxlen: 24
95.174.117.0/24 maxlen: 24
95.174.125.0/24 maxlen: 24
95.174.124.0/24 maxlen: 24
95.174.123.0/24 maxlen: 24
95.174.120.0/24 maxlen: 24
95.174.119.0/24 maxlen: 24
95.174.127.0/24 maxlen: 24
95.174.126.0/24 maxlen: 24
185.9.186.0/24 maxlen: 24
185.9.184.0/24 maxlen: 24
185.9.187.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
185.230.241.0/24 maxlen: 24
185.230.240.0/24 maxlen: 24
80.72.24.0/24 maxlen: 24
80.72.25.0/24 maxlen: 24
92.118.72.0/24 maxlen: 24
2a00:8740:25::/48 maxlen: 48
2a00:8740:100::/48 maxlen: 48
2a00:8740:1b::/48 maxlen: 48
2a00:8740:2f::/48 maxlen: 48
2a00:8740:18::/48 maxlen: 48
2a00:8740:33::/48 maxlen: 48
2a00:8740:111::/48 maxlen: 48
2a00:8740:11::/48 maxlen: 48
2a00:8740:2c::/48 maxlen: 48
2a00:8740:15::/48 maxlen: 48
2a00:8740:26::/48 maxlen: 48
2a00:8740:29::/48 maxlen: 48
2a00:8740:1f::/48 maxlen: 48
2a00:8740:2d::/48 maxlen: 48
2a00:8740:23::/48 maxlen: 48
2a00:8740:1c::/48 maxlen: 48
2a00:8740:112::/48 maxlen: 48
2a00:8740:20::/48 maxlen: 48
2a00:8740::/47 maxlen: 47
2a00:8740:16::/48 maxlen: 48
2a00:8740:1d::/48 maxlen: 48
2a00:8740:2e::/48 maxlen: 48
2a00:8740:27::/48 maxlen: 48
2a00:8740:2::/48 maxlen: 48
2a00:8740:35::/48 maxlen: 48
2a00:8740:110::/48 maxlen: 48
2a00:8740:10::/48 maxlen: 48
2a00:8740:2b::/48 maxlen: 48
2a00:8740:24::/48 maxlen: 48
2a00:8740:1a::/48 maxlen: 48
2a00:8740:28::/48 maxlen: 48
2a00:8740:1e::/48 maxlen: 48
2a00:8740:21::/48 maxlen: 48
2a00:8740:17::/48 maxlen: 48
2a00:8740:32::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 07 Aug 2023 10:40:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:04:91:ed:0d:86:b9:cc:c4:ea:37:81:35:e1:54:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jul 4 08:28:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fba14db1d9da2f486eac368d7d4ad2bd1e44f8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:72:5d:d9:d8:9f:7d:d6:67:3f:ba:84:5a:c3:
0c:37:66:13:60:54:7f:9b:09:ed:e2:cc:ab:bc:92:
41:ac:c7:09:a8:8c:b1:76:4b:c2:d7:83:b2:2b:10:
2e:98:bf:3a:3d:32:08:87:68:57:49:04:5a:73:b9:
7f:93:76:90:be:c1:b0:e7:40:a6:b4:cb:99:83:41:
38:31:37:34:21:9d:39:1e:e4:3a:ac:b4:31:81:7d:
46:3f:de:1f:2f:c1:7f:87:b8:cb:d5:1e:03:c9:de:
45:14:7e:66:39:61:97:95:78:99:5d:67:2d:4d:cc:
52:7b:d1:12:3b:db:17:a5:e5:a0:7f:2e:72:15:d7:
72:8d:6c:0a:64:93:da:ad:94:e3:f5:54:cb:49:36:
76:e4:b9:5b:0b:5c:4b:d8:01:01:e4:93:8b:19:59:
43:81:ca:19:cf:05:da:7a:71:bf:88:da:2b:e2:77:
c1:45:75:20:2b:fe:6b:15:24:61:70:91:76:74:d5:
27:7d:2a:5d:53:af:14:d5:86:30:ad:a7:d4:6f:d1:
ce:b9:75:ea:db:52:c9:2b:60:15:ab:f1:a0:1b:8a:
63:b1:67:93:41:67:e5:c4:9a:41:a9:18:26:90:21:
e1:c9:8b:a9:69:cf:78:f6:e4:ab:82:19:6a:ab:97:
3c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BA:14:DB:1D:9D:A2:F4:86:EA:C3:68:D7:D4:AD:2B:D1:E4:4F:8C
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/j7oU2x2dovSG6sNo19StK9HkT4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.24.0/23
92.118.72.0/24
95.174.96.0-95.174.120.255
95.174.123.0-95.174.127.255
185.9.184.0/24
185.9.186.0/23
185.230.240.0-185.230.242.255
IPv6:
2a00:8740::-2a00:8740:2:ffff:ffff:ffff:ffff:ffff
2a00:8740:10::/47
2a00:8740:15::-2a00:8740:18:ffff:ffff:ffff:ffff:ffff
2a00:8740:1a::-2a00:8740:21:ffff:ffff:ffff:ffff:ffff
2a00:8740:23::-2a00:8740:29:ffff:ffff:ffff:ffff:ffff
2a00:8740:2b::-2a00:8740:2f:ffff:ffff:ffff:ffff:ffff
2a00:8740:32::/47
2a00:8740:35::/48
2a00:8740:100::/48
2a00:8740:110::-2a00:8740:112:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
99:07:46:4d:39:f5:85:a5:e1:03:07:d8:e2:45:74:a7:04:5d:
8d:fe:93:e7:00:d7:47:d8:e8:0b:a7:f5:1d:e0:b5:3a:f8:3f:
b6:87:05:ae:33:d6:53:a3:37:f5:27:28:6b:e4:ed:ba:f4:44:
32:d7:b7:03:96:7f:b8:22:53:70:03:b2:43:50:55:81:d5:0a:
4b:2b:25:b7:c9:d2:f5:79:7e:57:64:15:6e:84:35:eb:aa:73:
db:b7:a9:7e:44:7f:9f:18:f8:b0:62:8b:a5:51:cb:7e:41:ff:
b5:73:d2:2a:b9:6a:94:ea:6f:be:0b:fd:bd:c7:f5:a2:3e:23:
97:2d:27:12:14:3b:1d:11:0d:85:c8:8d:ff:d7:de:ec:cb:a2:
65:da:7c:e5:cb:9d:63:3d:c1:59:37:60:d6:52:0b:f8:52:6e:
f2:a9:b3:f3:80:2c:3e:5d:bc:93:59:43:a4:93:69:54:d0:98:
b5:05:31:59:0c:47:97:c4:da:ec:3d:47:3b:0e:81:7e:41:49:
38:a3:f5:86:7e:45:a0:6c:0d:ce:ed:68:62:b3:ac:49:3d:94:
74:e0:bd:1d:35:2c:8a:88:cf:79:97:b5:53:50:3a:b1:02:08:
97:8f:82:5a:bd:4f:a4:bf:70:5f:dd:b1:25:82:82:d4:b2:2d:
2e:99:7e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org