Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/lqgEfcRbkeb24s1rinPwDuabyQc.roa
File: lqgEfcRbkeb24s1rinPwDuabyQc.roa (raw, json)
Hash identifier: RtBThyFKdw/du1FAMs/BhqfSKXGXBleknQtBjorxOag=
Subject key identifier: 96:A8:04:7D:C4:5B:91:E6:F6:E2:CD:6B:8A:73:F0:0E:E6:9B:C9:07
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 018C7E2EF873FEBD7B3B6B03DA551B6F1A82
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/lqgEfcRbkeb24s1rinPwDuabyQc.roa
Signing time: Mon 18 Dec 2023 18:27:36 +0000
ROA not before: Mon 18 Dec 2023 18:27:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41897
IP address blocks: 94.248.184.0/21 maxlen: 21
46.40.56.0/22 maxlen: 22
46.40.63.0/24 maxlen: 24
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.6.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.232.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
94.248.232.0/21 maxlen: 21
46.40.15.0/24 maxlen: 24
46.40.12.0/23 maxlen: 23
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.30.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.29.0/24 maxlen: 24
46.40.37.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
91.147.244.0/22 maxlen: 22
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
89.147.84.0/22 maxlen: 22
89.147.82.0/24 maxlen: 24
89.147.80.0/20 maxlen: 20
89.147.83.0/24 maxlen: 24
89.147.80.0/22 maxlen: 22
89.147.80.0/24 maxlen: 24
89.147.81.0/24 maxlen: 24
89.147.89.0/24 maxlen: 24
89.147.88.0/24 maxlen: 24
195.192.244.0/22 maxlen: 22
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
95.85.128.0/22 maxlen: 22
95.85.128.0/18 maxlen: 18
95.85.136.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.144.0/21 maxlen: 21
95.85.152.0/24 maxlen: 24
95.85.152.0/23 maxlen: 23
81.24.240.0/21 maxlen: 21
95.85.156.0/22 maxlen: 22
95.85.154.0/24 maxlen: 24
95.85.155.0/24 maxlen: 24
81.24.247.0/24 maxlen: 24
95.85.153.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.172.0/24 maxlen: 24
185.10.204.0/22 maxlen: 22
185.10.204.0/24 maxlen: 24
217.17.97.0/24 maxlen: 24
217.17.98.0/24 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.96.0/20 maxlen: 24
217.17.100.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
217.17.107.0/24 maxlen: 24
217.17.108.0/24 maxlen: 24
185.37.170.0/24 maxlen: 24
185.37.169.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
80.245.96.0/22 maxlen: 22
45.158.16.0/22 maxlen: 22
46.251.8.0/22 maxlen: 22
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
185.231.128.0/22 maxlen: 22
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
185.169.250.0/23 maxlen: 23
185.169.249.0/24 maxlen: 24
185.156.152.0/22 maxlen: 22
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
85.222.178.0/24 maxlen: 24
85.222.179.0/24 maxlen: 24
85.222.177.0/24 maxlen: 24
85.222.176.0/20 maxlen: 20
85.222.176.0/21 maxlen: 21
85.222.176.0/24 maxlen: 24
85.222.180.0/22 maxlen: 22
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.188.0/24 maxlen: 24
185.6.188.0/22 maxlen: 22
178.20.200.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
178.20.201.0/24 maxlen: 24
2a00:ad07:3000::/36 maxlen: 36
2a0c:6300::/30 maxlen: 30
2a00:ad00::/29 maxlen: 29
2a00:ad03::/32 maxlen: 32
2a00:ad00:2010::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 20 Dec 2023 08:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7e:2e:f8:73:fe:bd:7b:3b:6b:03:da:55:1b:6f:1a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Dec 18 18:27:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96a8047dc45b91e6f6e2cd6b8a73f00ee69bc907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:00:d4:c1:87:81:5f:f3:14:43:5a:93:9f:4b:
24:eb:14:65:8e:1c:57:49:f1:93:c4:aa:b7:d0:db:
e6:bf:b8:76:78:52:18:db:90:34:0e:08:fa:ad:f4:
c7:4e:70:50:c1:58:bc:da:03:d6:30:ac:e1:28:56:
c6:76:eb:40:77:43:99:4e:36:42:ef:64:d4:54:64:
e2:cd:5c:1d:45:53:e6:93:64:5d:33:f8:81:52:0d:
83:61:0d:a3:ab:75:ae:e9:68:ad:06:bc:68:06:5a:
09:ce:95:a7:a2:a7:f4:49:d0:ee:1b:b9:8f:97:9b:
6a:d1:96:0d:28:e6:16:0f:46:0c:51:59:4a:56:6b:
46:78:d0:a3:1a:2c:7b:e4:44:6b:2f:3a:25:fa:98:
2c:9b:21:0d:4b:cc:8f:ef:46:0b:c0:af:48:7a:04:
7d:e4:3f:f3:28:3b:19:7d:1d:61:80:ef:17:a4:83:
c0:d0:eb:15:e7:bd:5c:ce:13:b2:83:d6:24:6a:58:
96:ed:b7:cb:5c:a6:38:6a:5d:33:36:8d:82:a1:1f:
a9:ae:f4:89:77:87:f1:fd:06:4f:79:a9:33:bd:39:
08:72:ec:af:51:81:9b:28:2b:57:e6:d8:a0:45:c1:
51:4f:67:a1:18:83:4a:06:53:c7:23:71:4c:0f:1d:
ed:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A8:04:7D:C4:5B:91:E6:F6:E2:CD:6B:8A:73:F0:0E:E6:9B:C9:07
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/lqgEfcRbkeb24s1rinPwDuabyQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
89.147.80.0/20
91.102.224.0/21
91.147.244.0/22
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.156.152.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
2a0c:6300::/30
Signature Algorithm: sha256WithRSAEncryption
1d:04:63:b2:e0:3f:56:5a:71:20:11:bc:c1:1e:37:d0:15:4d:
b9:8a:02:d2:86:09:8d:66:e6:83:70:78:59:12:30:dc:1e:cd:
47:d1:3e:25:42:df:c3:8c:8b:c9:90:0f:91:2f:fe:1f:a3:2b:
f6:21:15:cd:6a:26:e7:c3:ad:ac:88:04:70:5e:80:69:3f:e9:
a2:ad:11:e1:1f:56:23:03:9f:50:16:b2:f2:99:99:23:7c:4d:
78:da:42:8b:8c:db:1d:eb:ed:29:7f:9e:91:ed:04:2c:18:89:
94:12:e6:14:14:86:5d:22:9f:f3:59:5e:a7:c6:eb:a0:e6:b9:
dc:9a:f5:2c:b4:22:b7:e9:00:22:3c:48:f0:54:48:90:8f:ce:
02:02:c9:53:36:ef:86:03:1e:a5:31:d9:b8:c5:7b:1d:ea:bc:
55:de:b1:45:24:6c:aa:9b:ad:9a:68:3b:8e:ef:f9:cb:70:dd:
bc:2d:8f:82:96:51:27:71:35:35:cb:4b:73:9a:22:62:5e:b6:
83:8b:4a:04:7b:78:53:b1:e3:1c:a9:77:01:23:5b:db:52:aa:
94:98:e9:c2:dd:6b:3c:e1:62:6e:43:a7:2a:70:40:54:aa:b7:
5b:e5:45:b2:ca:dc:de:30:a3:8e:36:fc:d6:75:ce:db:c1:05:
e7:bf:2d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:31 2024 by rpki-client on console-ams.rpki-client.org