Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/loFRzUnijBlJxR7EtHA7IddMe24.roa
File: loFRzUnijBlJxR7EtHA7IddMe24.roa (raw, json)
Hash identifier: X/N5K2TGhzO10NaMplBJcwxa++mg0SEU6XPFMvC8kgE=
Subject key identifier: 96:81:51:CD:49:E2:8C:19:49:C5:1E:C4:B4:70:3B:21:D7:4C:7B:6E
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018D649BEB15D41C2CC82591FCBD3727F1E5
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/loFRzUnijBlJxR7EtHA7IddMe24.roa
Signing time: Thu 01 Feb 2024 12:19:16 +0000
ROA not before: Thu 01 Feb 2024 12:19:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200736
IP address blocks: 94.131.128.0/19 maxlen: 24
94.131.130.0/24 maxlen: 24
94.131.131.0/24 maxlen: 24
94.131.132.0/24 maxlen: 24
94.131.133.0/24 maxlen: 24
94.131.134.0/24 maxlen: 24
94.131.135.0/24 maxlen: 24
94.131.136.0/24 maxlen: 24
94.131.137.0/24 maxlen: 24
94.131.138.0/24 maxlen: 24
94.131.139.0/24 maxlen: 24
94.131.140.0/24 maxlen: 24
94.131.141.0/24 maxlen: 24
94.131.142.0/24 maxlen: 24
94.131.143.0/24 maxlen: 24
94.131.144.0/23 maxlen: 23
94.131.144.0/24 maxlen: 24
94.131.145.0/24 maxlen: 24
94.131.146.0/24 maxlen: 24
94.131.147.0/24 maxlen: 24
94.131.148.0/24 maxlen: 24
94.131.149.0/24 maxlen: 24
94.131.150.0/24 maxlen: 24
94.131.151.0/24 maxlen: 24
94.131.152.0/24 maxlen: 24
94.131.153.0/24 maxlen: 24
94.131.154.0/24 maxlen: 24
94.131.155.0/24 maxlen: 24
94.131.156.0/24 maxlen: 24
94.131.157.0/24 maxlen: 24
94.131.158.0/24 maxlen: 24
94.131.159.0/24 maxlen: 24
94.131.160.0/20 maxlen: 24
94.131.161.0/24 maxlen: 24
94.131.162.0/24 maxlen: 24
94.131.163.0/24 maxlen: 24
94.131.165.0/24 maxlen: 24
94.131.166.0/24 maxlen: 24
94.131.167.0/24 maxlen: 24
94.131.169.0/24 maxlen: 24
94.131.170.0/24 maxlen: 24
94.131.172.0/24 maxlen: 24
94.131.173.0/24 maxlen: 24
94.131.174.0/24 maxlen: 24
95.164.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 00:17:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:64:9b:eb:15:d4:1c:2c:c8:25:91:fc:bd:37:27:f1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Feb 1 12:19:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=968151cd49e28c1949c51ec4b4703b21d74c7b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a4:c5:be:b5:c8:ec:62:96:63:95:66:c8:27:
ce:73:25:99:a9:6d:4b:36:33:26:83:10:b5:6a:44:
5d:9d:92:a7:0f:49:1e:7c:31:ec:7f:6e:cd:d1:f1:
ba:72:00:4f:59:d1:9b:a8:42:f2:6f:97:da:ac:be:
5a:86:d1:72:76:22:ee:7d:38:1c:3c:0d:f1:cc:72:
ac:ec:d9:00:c5:ee:30:ab:8b:f8:88:3b:65:9b:3e:
ba:bb:c1:d6:fe:ee:ea:3f:49:e7:72:22:e7:85:87:
64:2d:11:26:0c:1a:33:f9:88:65:51:cf:80:de:53:
e7:ba:80:b6:be:35:1b:27:6e:42:a8:98:a5:b9:2b:
1a:40:98:2e:79:3c:14:2f:58:2b:58:00:f4:12:43:
0c:5f:61:18:5e:9b:3f:f4:03:c3:1e:ea:b6:3f:ee:
dd:c1:40:5e:76:6e:13:17:cb:a5:88:ad:bb:e9:99:
ca:98:57:7d:8b:6e:7a:05:e3:5e:75:e2:44:92:cb:
19:7e:81:8e:39:c7:a8:fd:18:6a:f4:3b:a1:9b:f5:
d4:b4:b5:96:5b:ba:7d:48:d2:2b:f6:52:f9:8b:a5:
90:b4:5a:4d:c8:1c:ca:51:56:cb:5c:6b:95:43:4c:
d3:25:c7:df:08:8f:b4:74:89:c6:a4:ea:f2:13:85:
26:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:81:51:CD:49:E2:8C:19:49:C5:1E:C4:B4:70:3B:21:D7:4C:7B:6E
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/loFRzUnijBlJxR7EtHA7IddMe24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.128.0-94.131.175.255
95.164.176.0/20
Signature Algorithm: sha256WithRSAEncryption
24:cf:76:5d:4d:e1:9f:6e:0a:70:33:bf:74:45:14:4a:40:35:
50:4b:66:19:d0:b0:0c:21:82:49:6a:03:a4:f6:b0:fc:3f:04:
ad:66:40:a5:1f:9c:93:71:67:fc:e5:2f:55:e3:7b:64:bc:1e:
e0:84:ef:54:d5:8c:75:9a:0c:3c:46:57:de:c8:10:ae:de:ae:
aa:1c:08:78:63:39:52:22:1c:77:06:11:01:89:51:14:8e:e0:
65:26:a5:30:39:39:c8:9f:07:ee:66:53:a6:95:dc:f3:8e:20:
aa:ca:75:4d:5c:3d:cd:4f:1c:ca:7c:83:b6:a7:0a:a5:71:33:
c2:bb:36:82:75:4a:5c:fa:66:da:11:be:e0:45:d1:8c:72:a3:
d5:e3:a4:6c:38:bd:ed:ec:37:50:89:fb:93:42:db:91:c0:4d:
b8:33:de:c1:94:7e:a3:14:02:d9:95:f0:4d:d3:34:a0:15:0f:
d3:48:3c:ed:3b:c2:0f:b2:cb:a2:63:d8:0d:88:a6:e1:d4:7b:
8d:3b:53:68:cf:6e:c3:e0:bc:1d:b2:fa:fb:14:d7:32:0f:25:
5d:5a:aa:10:bf:7c:e3:0c:2a:3c:74:35:0f:88:25:d9:d3:cd:
85:2a:87:d8:e5:20:44:b8:97:87:19:36:e7:cd:49:13:99:92:
cf:de:fd:ff
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org