Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/EEnkcMqXE1-N_8jFt4kWllLU10E.roa
File: EEnkcMqXE1-N_8jFt4kWllLU10E.roa (raw, json)
Hash identifier: tdQEdX8Rf3B0kIacnLczdvHaB1S4f50iyugDknLshzQ=
Subject key identifier: 10:49:E4:70:CA:97:13:5F:8D:FF:C8:C5:B7:89:16:96:52:D4:D7:41
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 018B47C7514A181441BDD30FEFB5E73E6599
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/EEnkcMqXE1-N_8jFt4kWllLU10E.roa
Signing time: Thu 19 Oct 2023 11:52:06 +0000
ROA not before: Thu 19 Oct 2023 11:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41833
IP address blocks: 95.141.48.0/20 maxlen: 20
95.141.49.0/24 maxlen: 24
95.141.48.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
141.138.186.96/29 maxlen: 29
46.227.255.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
89.249.221.80/29 maxlen: 29
141.138.186.144/29 maxlen: 29
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.200.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
93.185.231.0/29 maxlen: 29
89.249.212.0/28 maxlen: 28
93.185.229.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
93.185.232.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
93.185.230.0/24 maxlen: 24
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.237.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
93.185.229.0/30 maxlen: 30
89.249.212.0/24 maxlen: 24
89.249.213.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
141.138.179.0/24 maxlen: 24
141.138.178.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
89.249.217.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
141.138.176.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 08 Dec 2023 10:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:c7:51:4a:18:14:41:bd:d3:0f:ef:b5:e7:3e:65:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Oct 19 11:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1049e470ca97135f8dffc8c5b789169652d4d741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:49:2f:b1:69:b2:ed:67:31:0a:c3:88:81:74:
a7:0c:bd:25:46:b0:f3:e3:f1:9d:51:30:f4:4d:a0:
b8:c0:79:dd:3b:e0:29:2c:eb:3a:23:b9:74:cf:e3:
15:1f:f3:3e:a9:46:f9:0f:f9:7d:21:00:1a:99:36:
fd:4b:f3:21:e4:ce:bf:25:5a:9b:a6:0b:f9:67:30:
b9:1c:01:7d:e7:a9:84:fe:aa:12:8d:06:ed:cf:54:
ab:3a:b1:32:f1:b4:90:1e:77:e9:2c:35:2e:6a:f7:
27:50:66:58:88:b5:7e:96:6b:1c:08:ef:05:5d:1f:
95:78:92:c2:df:6b:b2:8a:06:d8:3f:a3:43:bf:c0:
20:db:97:74:b5:0c:28:9d:41:3f:79:d6:4a:33:49:
e3:8c:cb:7e:7d:8d:a7:35:64:67:96:69:69:dc:e7:
3e:37:0d:51:be:8d:71:50:38:c9:65:9c:03:80:c5:
4f:f0:90:96:9d:77:c7:a0:aa:59:5b:44:65:ff:e2:
b2:c0:a9:af:a9:8e:32:e3:dd:2c:ed:d4:e9:5f:82:
f9:64:71:9d:ac:40:01:c9:ab:7a:7c:ba:fb:76:37:
2d:78:20:f6:72:28:04:04:56:16:0d:8f:7b:6b:9e:
a0:96:71:fd:61:d4:3a:c0:5e:68:1c:f0:c8:59:7e:
6a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:49:E4:70:CA:97:13:5F:8D:FF:C8:C5:B7:89:16:96:52:D4:D7:41
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/EEnkcMqXE1-N_8jFt4kWllLU10E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
65:8f:da:d4:b7:af:b4:05:ee:e0:0b:61:82:2b:1f:dd:6c:fe:
8a:39:3d:08:2d:bd:11:f2:65:59:29:96:0e:c6:fe:75:40:07:
b9:aa:ee:b0:cc:2c:2b:a7:02:2c:27:30:5b:1a:97:4f:84:06:
a0:a2:4a:5c:76:09:72:4b:d0:e6:4b:35:f2:ec:9d:ba:b7:bb:
f1:62:d4:1c:c4:ff:f5:f3:f3:b1:66:3c:73:68:97:59:6f:8b:
3c:76:ac:e7:06:5b:d6:9b:57:47:82:12:03:21:50:d0:6a:2d:
79:74:cb:2e:85:4d:c4:59:80:6a:6f:e9:ed:73:ee:93:9b:4a:
82:1b:6d:72:fc:56:ae:6d:60:89:e9:61:6c:29:1a:25:19:28:
d2:0c:7c:4a:77:b4:bc:1b:85:1a:f1:80:a2:58:4d:25:c7:9c:
00:04:70:21:20:f2:78:85:82:c1:ea:a6:ed:cd:0c:85:b8:c4:
0d:9e:8c:18:4f:0f:74:53:93:34:ca:e3:67:48:be:09:1b:d3:
23:57:ef:54:0f:13:67:5d:b7:4e:e0:26:e6:9e:86:ea:52:db:
89:a7:36:a8:0e:23:35:59:d4:2d:ac:fa:9b:a2:6b:fb:64:23:
8b:52:75:38:94:08:b6:b1:be:90:8c:62:7b:a8:a7:a2:fe:d3:
c8:6c:31:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:46 2024 by rpki-client on console-fra.rpki-client.org