Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/dd2VCl68l_RhqpY8NOxnmY6hpAY.roa
File: dd2VCl68l_RhqpY8NOxnmY6hpAY.roa (raw, json)
Hash identifier: K7lmIissodlZbmVkaXGAEjfKGymUt/XsvW+pEyZvP6w=
Subject key identifier: 75:DD:95:0A:5E:BC:97:F4:61:AA:96:3C:34:EC:67:99:8E:A1:A4:06
Certificate issuer: /CN=eebe79d147882422ec275417dfd2affa93a02757
Certificate serial: 018CA11B6CAAF8A5E0C8DA458F5A9F160668
Authority key identifier: EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/dd2VCl68l_RhqpY8NOxnmY6hpAY.roa
Signing time: Mon 25 Dec 2023 13:12:58 +0000
ROA not before: Mon 25 Dec 2023 13:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34876
IP address blocks: 95.86.188.0/24 maxlen: 24
95.86.189.0/24 maxlen: 24
95.86.190.0/24 maxlen: 24
95.86.191.0/24 maxlen: 24
95.86.138.0/24 maxlen: 24
95.86.139.0/24 maxlen: 24
95.86.133.0/24 maxlen: 24
95.86.134.0/24 maxlen: 24
95.86.136.0/24 maxlen: 24
95.86.137.0/24 maxlen: 24
95.86.135.0/24 maxlen: 24
95.86.140.0/24 maxlen: 24
95.86.141.0/24 maxlen: 24
95.86.143.0/24 maxlen: 24
95.86.144.0/21 maxlen: 21
95.86.142.0/24 maxlen: 24
95.86.152.0/24 maxlen: 24
95.86.154.0/24 maxlen: 24
95.86.153.0/24 maxlen: 24
95.86.157.0/24 maxlen: 24
95.86.158.0/24 maxlen: 24
95.86.155.0/24 maxlen: 24
95.86.156.0/24 maxlen: 24
95.86.159.0/24 maxlen: 24
95.86.166.0/24 maxlen: 24
95.86.161.0/24 maxlen: 24
95.86.160.0/24 maxlen: 24
95.86.164.0/24 maxlen: 24
95.86.165.0/24 maxlen: 24
95.86.162.0/24 maxlen: 24
95.86.163.0/24 maxlen: 24
95.86.168.0/22 maxlen: 22
95.86.167.0/24 maxlen: 24
95.86.172.0/24 maxlen: 24
95.86.175.0/24 maxlen: 24
95.86.173.0/24 maxlen: 24
95.86.174.0/24 maxlen: 24
95.86.178.0/24 maxlen: 24
95.86.179.0/24 maxlen: 24
95.86.176.0/24 maxlen: 24
95.86.177.0/24 maxlen: 24
95.86.182.0/24 maxlen: 24
95.86.180.0/24 maxlen: 24
95.86.181.0/24 maxlen: 24
95.86.183.0/24 maxlen: 24
95.86.184.0/22 maxlen: 22
95.86.129.0/24 maxlen: 24
95.86.130.0/24 maxlen: 24
95.86.128.0/24 maxlen: 24
95.86.128.0/18 maxlen: 18
95.86.131.0/24 maxlen: 24
95.86.132.0/24 maxlen: 24
193.8.62.0/23 maxlen: 23
193.8.62.0/24 maxlen: 24
193.8.63.0/24 maxlen: 24
193.8.73.0/24 maxlen: 24
193.8.72.0/23 maxlen: 23
193.8.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a1:1b:6c:aa:f8:a5:e0:c8:da:45:8f:5a:9f:16:06:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebe79d147882422ec275417dfd2affa93a02757
Validity
Not Before: Dec 25 13:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75dd950a5ebc97f461aa963c34ec67998ea1a406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c9:d4:da:57:e3:70:53:9a:cf:66:65:d8:a1:
bf:25:c1:53:7e:4c:8a:56:34:86:ac:78:13:76:fc:
62:97:07:ea:41:bd:d0:41:c7:d1:d3:50:c1:32:08:
32:12:22:54:71:93:59:c4:02:ce:4d:e1:90:72:ff:
8c:1d:16:06:b2:01:c0:4b:75:eb:9e:d7:d9:fa:db:
21:f9:6d:4f:e2:97:f8:d8:64:50:86:8c:da:d7:1b:
30:23:54:6c:75:28:67:3f:6a:6e:ee:25:76:bb:28:
7e:0f:96:31:ce:a7:f2:f0:72:4f:94:bc:f7:36:2c:
35:5c:5d:ff:b5:09:87:2d:3b:72:bc:84:8b:40:44:
10:38:d2:0e:56:a2:b3:c3:f1:cb:e9:4d:54:b9:a0:
97:8b:df:f1:32:f6:d7:08:2a:21:4a:ea:e6:f6:c0:
ce:4b:51:10:b3:f2:fc:32:69:7f:f5:3d:1f:d1:23:
b0:56:45:c2:f3:e1:2d:75:c2:22:1e:f0:1f:a3:93:
3c:91:8e:07:b8:22:20:80:ca:f2:12:26:f7:cd:d8:
d9:19:e2:a6:99:98:f9:c0:d8:d7:8b:b5:23:52:8f:
0a:fe:c3:8d:79:41:8f:8d:44:72:ac:76:5f:2f:3a:
8d:b9:7d:47:6d:df:fa:a0:6e:83:5a:25:e5:7e:58:
76:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DD:95:0A:5E:BC:97:F4:61:AA:96:3C:34:EC:67:99:8E:A1:A4:06
X509v3 Authority Key Identifier:
keyid:EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/dd2VCl68l_RhqpY8NOxnmY6hpAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.86.128.0/18
193.8.62.0/23
193.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
51:1c:b4:14:1c:0d:9d:d4:dd:25:f8:70:d2:6d:04:c6:a5:87:
26:30:59:d1:58:89:85:75:82:ed:91:ba:17:ea:0f:d6:ea:a5:
8e:9c:10:df:6b:6b:4d:c2:68:da:71:ca:0b:09:39:8a:ba:9a:
27:5d:af:2f:4c:a1:10:43:07:4a:71:41:39:57:e8:1d:c1:95:
50:a1:e1:76:ab:3e:e3:9b:f0:66:df:11:79:28:1d:fb:80:9b:
16:3b:e4:08:96:cf:e3:0b:10:74:e1:11:92:ce:c7:11:43:1c:
43:81:b1:28:23:b4:ab:69:d3:bf:b8:0d:9f:7f:b3:a9:a2:85:
03:45:a3:a4:ad:e1:53:d1:83:d1:29:dc:07:cd:f6:e7:9c:8e:
4b:36:d6:00:3a:85:15:5a:25:13:27:d1:f4:b8:d9:24:ed:00:
c7:35:b3:d4:b9:3f:02:fc:f7:56:59:9a:c6:ed:5a:5a:54:69:
a2:63:e1:7a:1c:9c:a7:61:3a:57:8b:f5:75:3a:43:2b:f8:9b:
7c:6a:ef:a6:50:0c:0e:8a:af:68:f8:b0:83:00:15:24:75:10:
36:9e:d9:b4:f3:c4:b8:46:78:7f:b4:89:05:c1:e1:dd:e7:1b:
94:52:6b:ec:2d:bc:f4:67:4f:9d:ce:8d:a6:70:16:7e:55:ed:
68:9f:b0:19
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYyhG2yq+KXgyNpFj1qfFgZoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmU3OWQxNDc4ODI0MjJlYzI3NTQxN2RmZDJhZmZhOTNh
MDI3NTcwHhcNMjMxMjI1MTMxMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWRkOTUwYTVlYmM5N2Y0NjFhYTk2M2MzNGVjNjc5OThlYTFhNDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMnU2lfjcFOaz2Zl2KG/JcFTfkyK
VjSGrHgTdvxilwfqQb3QQcfR01DBMggyEiJUcZNZxALOTeGQcv+MHRYGsgHAS3Xr
ntfZ+tsh+W1P4pf42GRQhoza1xswI1RsdShnP2pu7iV2uyh+D5Yxzqfy8HJPlLz3
Niw1XF3/tQmHLTtyvISLQEQQONIOVqKzw/HL6U1UuaCXi9/xMvbXCCohSurm9sDO
S1EQs/L8Mml/9T0f0SOwVkXC8+EtdcIiHvAfo5M8kY4HuCIggMryEib3zdjZGeKm
mZj5wNjXi7UjUo8K/sONeUGPjURyrHZfLzqNuX1Hbd/6oG6DWiXlflh2wQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHXdlQpevJf0YaqWPDTsZ5mOoaQGMB8GA1UdIwQY
MBaAFO6+edFHiCQi7CdUF9/Sr/qToCdXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3I1NTBVZUlKQ0xzSjFRWDM5S3YtcE9nSjFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9jNDRiN2YtNWJjZC00ZWU3LTg3MTIt
Mzg4MjNjMTQ0OWFmLzEvZGQyVkNsNjhsX1JocXBZOE5PeG5tWTZocEFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9jNDRiN2YtNWJjZC00ZWU3LTg3MTItMzg4MjNjMTQ0OWFm
LzEvN3I1NTBVZUlKQ0xzSjFRWDM5S3YtcE9nSjFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQGX1aAAwQB
wQg+AwQBwQhIMA0GCSqGSIb3DQEBCwUAA4IBAQBRHLQUHA2d1N0l+HDSbQTGpYcm
MFnRWImFdYLtkboX6g/W6qWOnBDfa2tNwmjaccoLCTmKuponXa8vTKEQQwdKcUE5
V+gdwZVQoeF2qz7jm/Bm3xF5KB37gJsWO+QIls/jCxB04RGSzscRQxxDgbEoI7Sr
adO/uA2ff7OpooUDRaOkreFT0YPRKdwHzfbnnI5LNtYAOoUVWiUTJ9H0uNkk7QDH
NbPUuT8C/PdWWZrG7VpaVGmiY+F6HJynYTpXi/V1OkMr+Jt8au+mUAwOiq9o+LCD
ABUkdRA2ntm088S4Rnh/tIkFweHd5xuUUmvsLbz0Z0+dzo2mcBZ+Ve1on7AZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:13 2024 by rpki-client on console-ams.rpki-client.org