Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/xTGq7iErzcjppUw2M0-gZmhSV5I.roa
File: xTGq7iErzcjppUw2M0-gZmhSV5I.roa (raw, json)
Hash identifier: 0wMnnHuXYq9TtKm0KILKnJpiNPL4Fhfbvi4jQCkYT6o=
Subject key identifier: C5:31:AA:EE:21:2B:CD:C8:E9:A5:4C:36:33:4F:A0:66:68:52:57:92
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 0186A32EA8341DCF3CD2FD1F41E1F94A0DFC
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/xTGq7iErzcjppUw2M0-gZmhSV5I.roa
Signing time: Thu 02 Mar 2023 16:36:29 +0000
ROA not before: Thu 02 Mar 2023 16:36:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41833
IP address blocks: 95.141.48.0/20 maxlen: 20
95.141.49.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.200.0/24 maxlen: 24
185.58.200.0/22 maxlen: 22
93.185.229.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
93.185.232.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
93.185.230.0/24 maxlen: 24
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.237.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
89.249.212.0/24 maxlen: 24
89.249.213.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.208.0/24 maxlen: 24
89.249.209.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
141.138.178.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
141.138.179.0/24 maxlen: 24
89.249.217.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
141.138.176.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
89.249.221.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 25 Jul 2023 10:44:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a3:2e:a8:34:1d:cf:3c:d2:fd:1f:41:e1:f9:4a:0d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Mar 2 16:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c531aaee212bcdc8e9a54c36334fa06668525792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:18:98:c3:ec:a5:93:f6:f1:01:af:e1:a0:c0:
34:87:08:3e:6f:20:3a:64:d2:12:17:95:b8:5f:c3:
65:84:2b:48:fb:ef:b4:7d:a3:03:0a:98:ab:20:fd:
0d:0c:39:30:d6:05:37:62:e5:91:3c:23:da:08:72:
8d:e0:b6:b2:da:af:a1:31:ea:32:46:b2:df:25:c2:
d8:8f:40:5d:20:e9:a5:3b:1b:5b:60:ce:c2:7d:07:
eb:81:38:36:a0:2c:32:16:4e:dd:bf:79:9e:50:e1:
1e:b8:7b:43:08:29:6a:91:61:7e:65:5d:83:a9:65:
f8:99:a1:1e:ed:49:76:2c:88:d4:dd:3c:59:b9:92:
68:03:d3:a9:53:dd:ea:d8:2c:87:4b:bc:7b:b3:e5:
7e:e5:a5:e5:19:9a:3e:14:8a:17:5f:68:e5:7c:f2:
2e:06:95:88:6e:84:76:30:d4:79:9e:2d:42:df:49:
40:d4:4a:72:69:e1:f9:6a:74:56:d2:52:c6:3d:57:
96:3b:80:d9:dc:5a:17:d6:27:0c:f1:24:4c:ea:65:
1c:7c:db:3d:dc:57:19:6a:06:cc:74:e9:db:f3:d2:
29:7e:05:b3:be:30:6c:fa:ac:57:e3:6c:6f:11:f2:
b0:47:23:fa:2e:56:29:34:2a:87:a6:f6:45:a4:2c:
7d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:31:AA:EE:21:2B:CD:C8:E9:A5:4C:36:33:4F:A0:66:68:52:57:92
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/xTGq7iErzcjppUw2M0-gZmhSV5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
32:b5:46:18:24:09:08:6f:fe:3c:79:d0:20:28:4c:98:ad:9b:
cb:98:63:2f:ad:9b:62:71:dd:64:f3:dd:0e:76:f0:2b:8a:fb:
43:df:cc:a2:dd:cf:61:9d:e4:35:d3:5d:e1:7d:b9:06:e6:4b:
52:14:dc:eb:63:01:6b:6b:5f:f6:bb:b5:9e:0b:c7:e2:73:31:
10:03:09:d4:cd:93:bd:6d:60:1d:0e:43:6f:b1:d5:57:9b:4c:
0d:91:13:17:f1:95:d9:79:68:e1:70:d5:5f:3c:e6:a6:a0:57:
5d:6d:8a:89:d2:7e:9e:de:a8:00:b5:18:c0:f4:41:5d:01:10:
40:7f:99:21:a5:71:6f:00:93:76:61:f4:26:89:68:f4:f9:10:
8f:a1:5c:84:16:5c:5f:10:42:02:8a:e8:f2:9e:ca:a8:bc:1e:
4a:f2:72:91:95:2c:2c:76:a3:6e:ee:66:df:b1:86:68:b9:5b:
8e:d3:7b:58:63:11:96:c3:2e:75:5e:40:69:b5:7b:a9:0e:3c:
8f:f4:fa:ec:95:de:9c:5c:a9:8e:29:e7:32:be:a6:a0:9a:f9:
12:09:9b:58:11:6e:26:05:01:aa:38:f3:61:ce:e0:da:95:b5:
13:ad:77:d4:a2:c1:c0:c7:5d:97:e0:a2:09:7c:64:ac:ff:e0:
cf:ad:45:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:42 2024 by rpki-client on console-ams.rpki-client.org