Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/4r8vek1djD3SLaKVQPgbBbn7iYs.roa
File: 4r8vek1djD3SLaKVQPgbBbn7iYs.roa (raw, json)
Hash identifier: zcC0o4bRoD3bvGfHUOd4OhqCYrxm+zeOA1mIx42jSKI=
Subject key identifier: E2:BF:2F:7A:4D:5D:8C:3D:D2:2D:A2:95:40:F8:1B:05:B9:FB:89:8B
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 01856E2F7FB846A829D0207B4099B75086A9
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/4r8vek1djD3SLaKVQPgbBbn7iYs.roa
Signing time: Sun 01 Jan 2023 16:34:44 +0000
ROA not before: Sun 01 Jan 2023 16:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49531
IP address blocks: 91.214.204.0/22 maxlen: 22
185.42.108.0/22 maxlen: 22
94.159.96.0/20 maxlen: 20
94.159.92.0/24 maxlen: 24
94.159.108.0/22 maxlen: 22
94.159.107.0/24 maxlen: 24
94.159.112.0/21 maxlen: 21
94.159.124.0/22 maxlen: 22
94.159.120.0/22 maxlen: 22
93.92.32.0/24 maxlen: 24
93.92.32.0/21 maxlen: 21
93.92.36.0/23 maxlen: 23
93.92.33.0/24 maxlen: 24
93.92.34.0/23 maxlen: 23
93.92.38.0/23 maxlen: 23
94.159.42.0/23 maxlen: 23
94.159.40.0/23 maxlen: 23
94.159.44.0/23 maxlen: 23
94.159.38.0/23 maxlen: 23
94.159.46.0/23 maxlen: 23
94.159.50.0/23 maxlen: 23
94.159.48.0/23 maxlen: 23
94.159.52.0/23 maxlen: 23
94.159.56.0/23 maxlen: 23
94.159.54.0/23 maxlen: 23
94.159.58.0/23 maxlen: 23
94.159.60.0/23 maxlen: 23
93.186.48.0/20 maxlen: 20
93.186.50.0/23 maxlen: 23
94.159.64.0/23 maxlen: 23
93.186.48.0/23 maxlen: 23
94.159.62.0/23 maxlen: 23
94.159.64.0/19 maxlen: 19
94.159.70.0/23 maxlen: 23
94.159.68.0/23 maxlen: 23
93.186.56.0/23 maxlen: 23
93.186.58.0/23 maxlen: 23
93.186.54.0/23 maxlen: 23
93.186.52.0/23 maxlen: 23
94.159.66.0/23 maxlen: 23
93.186.60.0/23 maxlen: 23
94.159.74.0/23 maxlen: 23
94.159.72.0/23 maxlen: 23
94.159.78.0/23 maxlen: 23
93.186.62.0/23 maxlen: 23
94.159.76.0/23 maxlen: 23
94.159.84.0/23 maxlen: 23
94.159.85.0/24 maxlen: 24
94.159.82.0/23 maxlen: 23
94.159.80.0/23 maxlen: 23
94.159.88.0/22 maxlen: 22
94.159.86.0/23 maxlen: 23
94.159.88.0/21 maxlen: 21
94.159.0.0/23 maxlen: 23
94.159.0.0/18 maxlen: 18
94.159.4.0/23 maxlen: 23
94.159.2.0/23 maxlen: 23
94.159.8.0/23 maxlen: 23
94.159.6.0/23 maxlen: 23
94.159.10.0/23 maxlen: 23
94.159.14.0/23 maxlen: 23
94.159.16.0/23 maxlen: 23
94.159.12.0/23 maxlen: 23
94.159.18.0/23 maxlen: 23
94.159.22.0/23 maxlen: 23
94.159.20.0/23 maxlen: 23
94.159.24.0/23 maxlen: 23
94.159.28.0/23 maxlen: 23
94.159.30.0/23 maxlen: 23
94.159.26.0/23 maxlen: 23
94.159.32.0/23 maxlen: 23
94.159.36.0/23 maxlen: 23
94.159.34.0/23 maxlen: 23
2a04:8f00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:7f:b8:46:a8:29:d0:20:7b:40:99:b7:50:86:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 16:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2bf2f7a4d5d8c3dd22da29540f81b05b9fb898b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f1:89:af:58:7c:bf:60:f0:0b:e0:52:54:f9:
0c:b0:f8:b2:73:9a:4d:b1:bd:b0:67:07:fc:a2:2c:
31:a4:e4:ed:b3:0b:97:c6:33:44:19:c0:01:c1:3a:
8d:58:11:e3:9e:5a:00:af:a0:d9:e6:fb:52:73:45:
67:86:f2:27:fa:3a:80:42:2e:23:59:ff:d0:7f:2c:
a1:95:bb:96:a5:12:7a:54:4b:b8:a3:ac:9e:bf:a2:
34:5c:81:8d:5d:0d:9f:32:ee:03:44:9a:4c:e5:04:
5f:95:99:a3:d1:88:28:9e:0b:40:50:10:e9:73:8f:
7b:04:32:1a:fe:2f:6d:15:53:01:f2:2e:dd:e7:64:
4f:0a:6f:60:d2:06:a5:b7:ae:91:5b:f0:bc:90:c9:
4e:9b:83:e2:74:e0:cc:9f:8e:ec:40:18:7c:82:9d:
dc:19:a7:03:c4:95:99:a9:59:3f:56:04:94:8e:a7:
4e:b1:3a:47:a1:73:9c:70:07:d9:ce:18:c1:46:d9:
57:73:8d:71:13:bb:99:92:9b:40:4d:1b:52:ba:15:
5b:0c:b1:fa:d0:3b:6d:2f:44:65:01:62:67:e4:1a:
3d:df:88:8c:c0:7b:57:79:5c:b4:8b:31:3d:25:e0:
f7:4d:42:f8:67:bb:f9:4c:48:67:fd:09:27:f5:bc:
4c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BF:2F:7A:4D:5D:8C:3D:D2:2D:A2:95:40:F8:1B:05:B9:FB:89:8B
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/4r8vek1djD3SLaKVQPgbBbn7iYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.204.0/22
93.92.32.0/21
93.186.48.0/20
94.159.0.0/17
185.42.108.0/22
IPv6:
2a04:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
83:79:a0:83:10:60:b4:d6:46:34:c8:dd:55:1d:f8:bd:58:d1:
36:9e:4c:85:46:36:9e:1c:cb:f4:ce:0a:fd:4e:2d:30:d9:13:
ad:aa:01:fa:e0:1c:d1:f8:50:0d:85:a9:c2:1d:48:3f:4b:a4:
b9:ed:ba:35:00:8d:22:fa:c1:cf:cc:d1:7f:86:c2:58:03:28:
d2:7f:bc:0d:a4:21:e6:bd:98:a6:da:b8:78:2b:21:1e:1b:9b:
48:e2:41:24:a4:cc:3c:0a:2a:b4:51:a6:9a:b9:74:03:76:4a:
26:9d:54:31:9d:a2:1d:f2:1b:ab:68:3d:b5:03:e6:0a:3d:31:
06:60:9f:03:43:64:26:98:22:1c:f9:e9:f1:d8:8b:58:1d:61:
79:e0:9d:7e:df:d8:96:9d:6c:36:e0:1b:d5:14:64:eb:29:63:
30:b3:8e:4c:83:ab:27:b1:57:64:b3:41:1e:f2:93:42:b4:72:
6e:dc:b0:c4:0d:4d:2e:b6:46:8c:88:47:ce:13:05:26:41:f1:
28:38:26:50:0d:d8:43:e7:87:dd:eb:65:84:3e:fc:46:83:64:
ef:0a:74:56:7e:76:93:6a:6e:e4:7a:ea:8d:cd:e1:c5:29:0e:
e7:a1:24:36:30:c6:8f:e7:2c:a8:ee:36:6e:ed:d8:6e:59:79:
ee:14:40:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org