Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/jqapUU5lXKfo5NNVibPN_jms_xU.roa
File: jqapUU5lXKfo5NNVibPN_jms_xU.roa (raw, json)
Hash identifier: bjZuSPRIKrXPdh2d9rLVNlAEcbXQQjJdK8TZnMXDI0U=
Subject key identifier: 8E:A6:A9:51:4E:65:5C:A7:E8:E4:D3:55:89:B3:CD:FE:39:AC:FF:15
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 018B46C523B843E555445C400F8B21C3F85B
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/jqapUU5lXKfo5NNVibPN_jms_xU.roa
Signing time: Thu 19 Oct 2023 07:10:06 +0000
ROA not before: Thu 19 Oct 2023 07:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41833
IP address blocks: 95.141.48.0/20 maxlen: 20
95.141.49.0/24 maxlen: 24
95.141.48.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.200.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
93.185.231.0/29 maxlen: 29
93.185.229.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
93.185.232.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
93.185.230.0/24 maxlen: 24
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.237.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
93.185.229.0/30 maxlen: 30
89.249.212.0/24 maxlen: 24
89.249.213.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
141.138.179.0/24 maxlen: 24
141.138.178.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
89.249.217.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
141.138.176.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 19 Oct 2023 11:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:c5:23:b8:43:e5:55:44:5c:40:0f:8b:21:c3:f8:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Oct 19 07:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ea6a9514e655ca7e8e4d35589b3cdfe39acff15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:e5:af:20:f1:bf:a2:ed:af:f6:62:6a:6d:
09:80:58:55:ce:d6:ba:63:0d:1a:c5:4f:65:fd:69:
36:2c:ee:e2:5b:4b:4f:0b:12:3e:5b:31:22:46:6c:
75:d4:25:87:e0:a5:85:8c:3c:64:ce:b1:68:63:ec:
36:e8:82:fd:cb:c6:22:9c:27:aa:f5:ec:3f:5a:84:
73:ed:75:8b:14:97:c9:5c:a0:fe:e9:19:e9:13:b7:
43:88:18:21:1e:37:30:d4:b1:ff:dd:4f:a1:bd:95:
7a:b7:77:76:ef:a5:27:1a:2d:2f:14:b9:5c:13:3d:
d1:a9:9a:09:91:6d:a0:5c:fd:dd:3b:6d:be:c3:94:
f7:16:47:ec:e9:3a:7a:ae:f0:97:96:2e:29:7a:a7:
18:da:36:be:8b:6f:71:7d:7f:54:c6:a2:e0:7e:ba:
e7:2a:46:38:7e:10:34:a3:8a:50:9e:19:18:ca:f1:
d9:a2:ab:0b:f4:d6:a4:1d:b5:24:ed:13:d1:23:9d:
84:da:40:9e:e4:39:79:fc:27:34:25:40:e5:e6:ba:
fb:d6:42:e5:71:31:db:20:6c:f8:dd:dd:0c:4a:b2:
eb:9b:47:85:44:0d:27:ea:45:5a:f2:71:36:ac:69:
4e:80:17:4f:40:d5:08:7d:9e:1c:f0:41:2e:fe:0d:
23:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A6:A9:51:4E:65:5C:A7:E8:E4:D3:55:89:B3:CD:FE:39:AC:FF:15
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/jqapUU5lXKfo5NNVibPN_jms_xU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
2b:a8:d4:a3:a6:45:92:3d:34:52:26:35:bd:cd:f1:aa:fd:ee:
c7:e9:ff:92:0c:c3:05:f5:94:2e:26:31:9d:ff:83:23:81:00:
db:14:93:21:85:b5:11:e3:c8:59:5e:c7:dd:b4:19:5d:b9:f8:
a9:1a:5d:1b:0e:e6:f7:db:43:d1:23:da:f6:7f:88:47:23:30:
a9:85:32:b3:ee:9b:77:85:1c:db:7a:30:17:8b:be:a9:73:8d:
f9:56:0f:9c:70:53:7d:e0:a9:20:7b:9a:5e:69:2a:6e:fb:76:
e4:62:f0:e2:63:0a:16:25:5d:dd:cb:42:c8:fc:13:b2:11:f1:
1f:91:b0:b7:cf:b2:f2:76:b6:d5:0e:6a:52:3e:98:7b:b7:35:
fa:8a:14:85:c3:4f:f7:d7:ec:b0:20:5c:aa:71:02:6c:22:ce:
cc:77:e9:bb:60:70:84:2f:cd:47:c6:85:4a:3f:33:07:f6:1f:
5f:6c:4f:21:25:0e:48:95:ad:4a:53:04:b9:8c:ab:ad:70:15:
66:47:e3:93:f6:65:b5:61:d7:7d:88:a8:48:5d:51:9d:91:63:
7e:34:8d:9e:61:e3:d7:71:b4:c5:8d:35:5c:a4:52:eb:85:38:
a9:cb:0c:2b:bc:0a:0a:03:f5:e4:83:d1:e2:f2:0f:b4:a9:f4:
22:c6:5a:de
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYtGxSO4Q+VVRFxAD4shw/hbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NDI5ZGU4YmNjM2JlNDc0YWJiZGEyYmUyYTg5ZDBmMzIw
OGMzODUwHhcNMjMxMDE5MDcxMDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWE2YTk1MTRlNjU1Y2E3ZThlNGQzNTU4OWIzY2RmZTM5YWNmZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoT3lryDxv6Ltr/Ziam0JgFhVzta6
Yw0axU9l/Wk2LO7iW0tPCxI+WzEiRmx11CWH4KWFjDxkzrFoY+w26IL9y8YinCeq
9ew/WoRz7XWLFJfJXKD+6RnpE7dDiBghHjcw1LH/3U+hvZV6t3d276UnGi0vFLlc
Ez3RqZoJkW2gXP3dO22+w5T3Fkfs6Tp6rvCXli4peqcY2ja+i29xfX9UxqLgfrrn
KkY4fhA0o4pQnhkYyvHZoqsL9NakHbUk7RPRI52E2kCe5Dl5/Cc0JUDl5rr71kLl
cTHbIGz43d0MSrLrm0eFRA0n6kVa8nE2rGlOgBdPQNUIfZ4c8EEu/g0jswIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFI6mqVFOZVyn6OTTVYmzzf45rP8VMB8GA1UdIwQY
MBaAFJdCnei8w75HSrvaK+KonQ8yCMOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMt
MDQ5YmRjNmI4ZWYzLzEvanFhcFVVNWxYS2ZvNU5OVmliUE5fam1zX3hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMtMDQ5YmRjNmI4ZWYz
LzEvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDLuP4AwQE
WfnQAwQEXbngAwQEX40wAwQEjYqwAwQCuTrIMA0EAgACMAcDBQAqAg9QMA0GCSqG
SIb3DQEBCwUAA4IBAQArqNSjpkWSPTRSJjW9zfGq/e7H6f+SDMMF9ZQuJjGd/4Mj
gQDbFJMhhbUR48hZXsfdtBldufipGl0bDub320PRI9r2f4hHIzCphTKz7pt3hRzb
ejAXi76pc435Vg+ccFN94Kkge5peaSpu+3bkYvDiYwoWJV3dy0LI/BOyEfEfkbC3
z7LydrbVDmpSPph7tzX6ihSFw0/31+ywIFyqcQJsIs7Md+m7YHCEL81HxoVKPzMH
9h9fbE8hJQ5Ila1KUwS5jKutcBVmR+OT9mW1Ydd9iKhIXVGdkWN+NI2eYePXcbTF
jTVcpFLrhTipywwrvAoKA/Xkg9Hi8g+0qfQixlre
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:42 2024 by rpki-client on console-ams.rpki-client.org