Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/UpKsPVCPdxlZHP4Dhoi-fy6K4nQ.roa
File: UpKsPVCPdxlZHP4Dhoi-fy6K4nQ.roa (raw, json)
Hash identifier: y37HMEICh3fJW7EihlGyHjiQLDmPruNcAm8zxPlNv6Y=
Subject key identifier: 52:92:AC:3D:50:8F:77:19:59:1C:FE:03:86:88:BE:7F:2E:8A:E2:74
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 01898CA678B95FA9B29A4A12BCC513D690AA
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/UpKsPVCPdxlZHP4Dhoi-fy6K4nQ.roa
Signing time: Tue 25 Jul 2023 10:44:27 +0000
ROA not before: Tue 25 Jul 2023 10:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41833
IP address blocks: 95.141.48.0/20 maxlen: 20
95.141.49.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.200.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
93.185.231.0/29 maxlen: 29
93.185.229.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
93.185.232.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
93.185.230.0/24 maxlen: 24
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.237.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
89.249.212.0/24 maxlen: 24
89.249.213.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
141.138.179.0/24 maxlen: 24
141.138.178.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
89.249.217.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
141.138.176.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 21 Sep 2023 09:15:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8c:a6:78:b9:5f:a9:b2:9a:4a:12:bc:c5:13:d6:90:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Jul 25 10:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5292ac3d508f7719591cfe038688be7f2e8ae274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:33:0b:40:00:d2:b7:b5:44:65:38:8c:63:a1:
cb:ed:c3:48:8e:3f:a8:14:60:53:ec:09:e2:fb:a6:
87:58:ce:f1:54:ed:93:b3:6c:a3:15:c9:07:eb:e0:
68:31:20:43:80:0e:fe:35:30:7d:c5:36:5c:ce:e2:
5e:0c:ff:8c:87:82:2a:de:3f:9d:d1:b9:59:95:50:
bb:ca:6d:1f:47:79:30:62:bf:23:68:51:d9:87:62:
8e:da:f0:bb:c6:9d:b9:17:36:e7:c5:14:3d:c3:7b:
df:4c:4d:41:88:f3:f8:f9:d7:ce:53:36:40:a1:50:
b8:de:2d:ec:71:38:87:a2:06:2c:fc:1c:00:54:7f:
a1:e0:34:c4:40:d0:48:3d:92:7a:4d:1e:5f:97:1a:
a5:3e:87:82:49:5d:83:23:df:02:85:04:00:cf:a3:
f7:fb:e1:38:c3:12:55:31:e5:fa:61:18:35:30:a0:
83:ce:82:19:dd:16:36:93:39:77:9c:df:1c:dd:56:
2f:4a:3c:9f:34:0c:ad:cc:f7:67:ce:21:0c:f9:d8:
d8:40:db:1a:72:f7:85:0b:20:5b:3a:56:2f:44:49:
75:6b:ce:2b:22:b8:63:bb:f1:0d:1f:7e:40:9d:21:
3c:b0:40:7b:93:d7:d5:95:37:ed:1b:cd:a2:12:8f:
23:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:92:AC:3D:50:8F:77:19:59:1C:FE:03:86:88:BE:7F:2E:8A:E2:74
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/UpKsPVCPdxlZHP4Dhoi-fy6K4nQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
c4:5a:78:6d:06:b9:4a:f2:df:70:77:7f:1d:e4:0e:f5:84:dd:
58:d1:52:40:1e:69:c5:dc:a2:06:23:43:8c:55:dc:db:01:59:
70:6e:c7:0e:33:32:f9:fd:a4:61:2f:cf:fb:c1:8d:0c:cd:40:
b7:9d:27:26:6b:05:e5:a4:09:94:42:7b:cd:ea:2f:19:f6:d6:
aa:8e:d5:f6:23:7d:d4:39:b8:fc:4b:1e:7a:07:d3:1d:a8:91:
8a:f0:85:f2:83:66:0b:0c:c6:7f:59:06:c9:f2:44:96:09:61:
50:85:d2:99:79:cb:2b:f2:15:ed:f8:d1:03:12:8e:3b:d4:21:
63:1c:ae:74:f7:25:04:50:87:57:d8:d5:95:d1:13:8e:70:08:
fa:dc:40:92:30:19:61:93:e1:2c:da:3d:fe:4d:3e:ce:2a:be:
c4:c7:48:f7:7f:35:19:0b:4a:9f:02:71:1f:2d:04:09:8b:5c:
2d:91:e3:f7:d7:6d:7f:90:46:2e:cf:dd:a2:0b:52:c7:05:e0:
92:19:13:b5:6e:27:db:18:8e:09:0b:55:9f:a9:3f:12:8b:91:
68:3c:3a:80:7e:a4:8b:f7:00:6d:0a:16:f6:fa:e3:75:91:4f:
21:84:5f:38:45:88:a5:56:63:b4:f1:11:4e:98:13:95:f9:4c:
9c:c7:44:9a
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYmMpni5X6mymkoSvMUT1pCqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NDI5ZGU4YmNjM2JlNDc0YWJiZGEyYmUyYTg5ZDBmMzIw
OGMzODUwHhcNMjMwNzI1MTA0NDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjkyYWMzZDUwOGY3NzE5NTkxY2ZlMDM4Njg4YmU3ZjJlOGFlMjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTMLQADSt7VEZTiMY6HL7cNIjj+o
FGBT7Ani+6aHWM7xVO2Ts2yjFckH6+BoMSBDgA7+NTB9xTZczuJeDP+Mh4Iq3j+d
0blZlVC7ym0fR3kwYr8jaFHZh2KO2vC7xp25FzbnxRQ9w3vfTE1BiPP4+dfOUzZA
oVC43i3scTiHogYs/BwAVH+h4DTEQNBIPZJ6TR5flxqlPoeCSV2DI98ChQQAz6P3
++E4wxJVMeX6YRg1MKCDzoIZ3RY2kzl3nN8c3VYvSjyfNAytzPdnziEM+djYQNsa
cveFCyBbOlYvREl1a84rIrhju/ENH35AnSE8sEB7k9fVlTftG82iEo8jWwIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFFKSrD1Qj3cZWRz+A4aIvn8uiuJ0MB8GA1UdIwQY
MBaAFJdCnei8w75HSrvaK+KonQ8yCMOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMt
MDQ5YmRjNmI4ZWYzLzEvVXBLc1BWQ1BkeGxaSFA0RGhvaS1meTZLNG5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMtMDQ5YmRjNmI4ZWYz
LzEvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDLuP4AwQE
WfnQAwQEXbngAwQEX40wAwQEjYqwAwQCuTrIMA0EAgACMAcDBQAqAg9QMA0GCSqG
SIb3DQEBCwUAA4IBAQDEWnhtBrlK8t9wd38d5A71hN1Y0VJAHmnF3KIGI0OMVdzb
AVlwbscOMzL5/aRhL8/7wY0MzUC3nScmawXlpAmUQnvN6i8Z9taqjtX2I33UObj8
Sx56B9MdqJGK8IXyg2YLDMZ/WQbJ8kSWCWFQhdKZecsr8hXt+NEDEo471CFjHK50
9yUEUIdX2NWV0ROOcAj63ECSMBlhk+Es2j3+TT7OKr7Ex0j3fzUZC0qfAnEfLQQJ
i1wtkeP3121/kEYuz92iC1LHBeCSGRO1bifbGI4JC1WfqT8Si5FoPDqAfqSL9wBt
Chb2+uN1kU8hhF84RYilVmO08RFOmBOV+Uycx0Sa
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:42 2024 by rpki-client on console-ams.rpki-client.org