Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/D_zsnpa3tk8gg5xh_Gjj906q6eA.roa
File: D_zsnpa3tk8gg5xh_Gjj906q6eA.roa (raw, json)
Hash identifier: cDFhUV0IiEBxTqnyUDTXBrtGi179MF5yGfEQ4V4pcLM=
Subject key identifier: 0F:FC:EC:9E:96:B7:B6:4F:20:83:9C:61:FC:68:E3:F7:4E:AA:E9:E0
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018B950D41D92577028EAD41047394EBA175
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/D_zsnpa3tk8gg5xh_Gjj906q6eA.roa
Signing time: Fri 03 Nov 2023 11:59:15 +0000
ROA not before: Fri 03 Nov 2023 11:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.88.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:0d:41:d9:25:77:02:8e:ad:41:04:73:94:eb:a1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Nov 3 11:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ffcec9e96b7b64f20839c61fc68e3f74eaae9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ff:84:25:f2:bf:95:f8:46:54:68:f0:3b:4b:
7b:5b:f1:38:73:08:45:37:9a:da:83:63:d2:e4:40:
db:5e:e0:a9:8f:9f:37:27:ae:4d:05:5a:20:2c:3f:
2a:fb:85:91:6e:7b:fb:35:af:7b:5d:99:3a:b3:05:
1c:3a:97:2e:41:b3:96:af:11:f0:ec:0e:a4:65:c6:
7d:99:72:3d:94:6b:8b:ce:e1:10:98:23:5f:8e:b2:
07:77:3f:90:84:93:63:97:34:55:1f:28:9c:59:db:
96:2a:a5:16:ce:a9:c0:2f:0c:ee:41:b0:ba:ec:b0:
38:f1:2f:c5:b6:20:33:6b:ca:68:d1:5d:9f:a2:e5:
05:a2:59:9a:63:ee:3e:01:0f:65:8f:6e:e5:b5:af:
b4:aa:22:8b:0f:84:36:30:e1:c2:d1:d0:6e:f9:e0:
24:86:08:fa:6a:a7:b4:b1:76:d2:e5:42:ac:65:17:
c2:3d:92:05:ea:26:a4:14:62:72:9f:79:69:27:0b:
86:c3:a0:a7:3f:37:26:79:00:8c:1c:c5:69:c6:ab:
2f:b4:dd:1c:2c:bd:f1:42:82:e4:49:69:76:cb:b4:
78:6f:45:fe:91:3c:52:aa:22:f0:5e:ee:a9:1a:44:
0c:20:e3:37:f9:e1:e0:18:a7:b4:8a:ab:91:be:87:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FC:EC:9E:96:B7:B6:4F:20:83:9C:61:FC:68:E3:F7:4E:AA:E9:E0
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/D_zsnpa3tk8gg5xh_Gjj906q6eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.216.0-86.48.218.255
86.48.220.0/22
86.48.240.0/24
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
3f:c9:0b:36:b4:21:6b:04:b1:7a:ba:6a:6a:61:f8:7a:40:3b:
9a:9b:09:c8:cb:c1:f1:ff:1e:75:de:ed:4a:a1:23:22:1d:03:
ea:c0:65:a1:11:ed:38:4e:07:5e:c3:c4:2f:5b:fc:57:25:49:
60:db:61:40:13:bb:bf:b9:1f:3c:53:3e:ae:53:6c:47:a7:76:
6c:15:97:04:cc:72:b5:32:5a:c9:57:0c:95:63:d1:fc:3e:dd:
c7:ab:ad:c0:6b:6b:87:94:61:c0:1f:15:02:4f:a8:2c:dc:94:
45:f9:61:ad:eb:81:19:ac:47:d6:2b:55:d1:e5:f2:de:57:1d:
07:20:35:28:ff:66:7f:32:62:ba:25:54:54:bc:4e:06:dd:56:
6f:b5:1e:d7:28:2c:db:51:38:d7:c0:06:e6:89:19:3f:dc:36:
97:25:f7:a6:72:95:24:f9:3b:a0:e1:5b:02:a1:fa:93:fb:1d:
98:a5:ea:8c:df:a5:17:78:d7:64:9a:22:40:17:0b:e8:31:ac:
da:55:e4:93:6b:f7:53:bc:6e:55:ff:6a:21:d6:6b:d0:ea:a4:
5d:4e:e9:d3:1c:1a:35:37:79:fc:0e:a6:c7:56:4b:e4:a0:7e:
f7:25:bf:fb:e3:58:ce:f4:7d:c5:77:c8:71:94:62:bf:65:dc:
65:53:77:62
-----BEGIN CERTIFICATE-----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Generated at Sat Nov 4 13:28:16 2023 by rpki-client on console-ams.rpki-client.org