Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/p5t9szG9uXbxI6cHSbKUZtWTYaU.roa
File: p5t9szG9uXbxI6cHSbKUZtWTYaU.roa (raw, json)
Hash identifier: UYkWpVTBuULGJcO4NmAKpQ875sIIfT5jYIXBlMvr3+g=
Subject key identifier: A7:9B:7D:B3:31:BD:B9:76:F1:23:A7:07:49:B2:94:66:D5:93:61:A5
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018C67C58308045492C2800CDF0898B78EDE
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/p5t9szG9uXbxI6cHSbKUZtWTYaU.roa
Signing time: Thu 14 Dec 2023 10:00:46 +0000
ROA not before: Thu 14 Dec 2023 10:00:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 95.174.98.0/24 maxlen: 24
95.174.96.0/23 maxlen: 23
95.174.102.0/24 maxlen: 24
95.174.101.0/24 maxlen: 24
95.174.100.0/24 maxlen: 24
95.174.99.0/24 maxlen: 24
95.174.105.0/24 maxlen: 24
95.174.104.0/24 maxlen: 24
95.174.103.0/24 maxlen: 24
95.174.112.0/24 maxlen: 24
95.174.111.0/24 maxlen: 24
95.174.110.0/24 maxlen: 24
95.174.109.0/24 maxlen: 24
95.174.108.0/24 maxlen: 24
95.174.107.0/24 maxlen: 24
95.174.106.0/24 maxlen: 24
95.174.116.0/24 maxlen: 24
95.174.115.0/24 maxlen: 24
95.174.114.0/24 maxlen: 24
95.174.113.0/24 maxlen: 24
95.174.118.0/24 maxlen: 24
95.174.117.0/24 maxlen: 24
95.174.125.0/24 maxlen: 24
95.174.124.0/24 maxlen: 24
95.174.123.0/24 maxlen: 24
95.174.120.0/24 maxlen: 24
95.174.119.0/24 maxlen: 24
95.174.127.0/24 maxlen: 24
95.174.126.0/24 maxlen: 24
185.9.186.0/24 maxlen: 24
185.9.184.0/24 maxlen: 24
185.9.187.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
185.230.241.0/24 maxlen: 24
185.230.240.0/24 maxlen: 24
46.226.160.0/21 maxlen: 32
80.72.16.0/21 maxlen: 32
80.72.16.0/23 maxlen: 23
80.72.24.0/24 maxlen: 24
80.72.20.0/23 maxlen: 32
80.72.24.0/22 maxlen: 32
80.72.25.0/24 maxlen: 24
80.72.26.0/23 maxlen: 23
92.118.73.0/24 maxlen: 24
92.118.72.0/24 maxlen: 24
2a00:8740:25::/48 maxlen: 48
2a00:8740:ff00::/48 maxlen: 48
2a00:8740:100::/48 maxlen: 48
2a00:8740:1b::/48 maxlen: 48
2a00:8740:36::/48 maxlen: 48
2a00:8740:2f::/48 maxlen: 48
2a00:8740:18::/48 maxlen: 48
2a00:8740:33::/48 maxlen: 48
2a00:8740:111::/48 maxlen: 48
2a00:8740:11::/48 maxlen: 48
2a00:8740:2c::/48 maxlen: 48
2a00:8740:15::/48 maxlen: 48
2a00:8740:30::/48 maxlen: 48
2a00:8740:26::/48 maxlen: 48
2a00:8740:29::/48 maxlen: 48
2a00:8740:1f::/48 maxlen: 48
2a00:8740:2d::/48 maxlen: 48
2a00:8740:23::/48 maxlen: 48
2a00:8740:1c::/48 maxlen: 48
2a00:8740:112::/48 maxlen: 48
2a00:8740:500::/40 maxlen: 40
2a00:8740:20::/48 maxlen: 48
2a00:8740::/47 maxlen: 47
2a00:8740:16::/48 maxlen: 48
2a00:8740:34::/48 maxlen: 48
2a00:8740:1d::/48 maxlen: 48
2a00:8740:2e::/48 maxlen: 48
2a00:8740:27::/48 maxlen: 48
2a00:8740:2::/48 maxlen: 48
2a00:8740:35::/48 maxlen: 48
2a00:8740:110::/48 maxlen: 48
2a00:8740:10::/48 maxlen: 48
2a00:8740:2b::/48 maxlen: 48
2a00:8740:24::/48 maxlen: 48
2a00:8740:1a::/48 maxlen: 48
2a00:8740:28::/48 maxlen: 48
2a00:8740:1e::/48 maxlen: 48
2a00:8740:21::/48 maxlen: 48
2a00:8740:17::/48 maxlen: 48
2a00:8740:32::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:c5:83:08:04:54:92:c2:80:0c:df:08:98:b7:8e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Dec 14 10:00:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a79b7db331bdb976f123a70749b29466d59361a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d4:21:73:db:e7:fe:1d:72:3f:14:8f:43:29:
9c:e9:fc:78:d8:76:0e:89:4c:16:0c:1c:27:77:29:
3d:5b:98:06:65:57:0e:87:5e:b7:b9:1e:6f:94:10:
e3:35:c9:ce:07:c3:9c:54:85:b9:47:bb:f7:25:ac:
88:13:23:01:3d:68:29:5d:38:29:39:b3:84:51:e7:
cb:be:95:89:a7:e4:11:76:25:70:c0:79:05:d0:1d:
39:fa:3d:9e:80:2b:1a:96:fd:f7:ac:38:3a:f0:ce:
53:02:d9:ed:ca:a0:e2:5b:be:58:1c:a9:1f:b5:10:
cf:16:82:41:c1:68:f5:6b:d7:b0:93:73:b9:7a:06:
22:19:6e:d3:ea:a6:9c:9c:5e:b6:25:8f:41:d6:cc:
5d:49:6b:f8:b6:8d:b2:bc:ed:d6:74:db:95:11:fc:
5b:22:3f:ac:ba:4a:7d:5d:f1:f5:82:93:b5:bd:9b:
51:0c:58:0d:76:66:20:b5:a8:d5:91:07:3c:af:cb:
02:fa:e3:80:dd:72:38:0b:96:b7:14:67:0c:d1:b4:
d3:9d:de:82:e4:9d:90:a2:22:7e:a8:8c:27:9a:3e:
b6:9a:c8:14:85:7f:d7:ce:f4:8d:38:5b:8a:20:18:
ab:63:36:0d:66:62:e8:2a:af:90:d0:15:b3:a9:55:
d6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9B:7D:B3:31:BD:B9:76:F1:23:A7:07:49:B2:94:66:D5:93:61:A5
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/p5t9szG9uXbxI6cHSbKUZtWTYaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
80.72.16.0-80.72.27.255
92.118.72.0/23
95.174.96.0-95.174.120.255
95.174.123.0-95.174.127.255
185.9.184.0/24
185.9.186.0/23
185.230.240.0-185.230.242.255
IPv6:
2a00:8740::-2a00:8740:2:ffff:ffff:ffff:ffff:ffff
2a00:8740:10::/47
2a00:8740:15::-2a00:8740:18:ffff:ffff:ffff:ffff:ffff
2a00:8740:1a::-2a00:8740:21:ffff:ffff:ffff:ffff:ffff
2a00:8740:23::-2a00:8740:29:ffff:ffff:ffff:ffff:ffff
2a00:8740:2b::-2a00:8740:30:ffff:ffff:ffff:ffff:ffff
2a00:8740:32::-2a00:8740:36:ffff:ffff:ffff:ffff:ffff
2a00:8740:100::/48
2a00:8740:110::-2a00:8740:112:ffff:ffff:ffff:ffff:ffff
2a00:8740:500::/40
2a00:8740:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
56:28:a2:70:96:c8:c2:1f:c8:43:75:92:cf:bc:0e:72:a5:f6:
d3:25:77:a5:b9:22:97:37:53:b9:2f:5c:60:d8:bf:af:74:6d:
a0:26:c9:29:93:80:7e:4c:ff:b7:f6:5d:d0:8c:96:4f:5d:35:
4e:e4:6a:12:08:97:55:fa:26:13:88:f9:1b:78:05:5e:6a:62:
de:3a:4d:2a:17:dc:d1:c9:a2:14:85:2d:d9:fe:40:8a:48:c7:
6f:6c:6e:1e:f8:6b:07:15:95:92:c3:ce:8b:36:90:69:af:ef:
54:66:bf:45:53:55:5a:e0:bc:a3:fc:ae:9b:a9:e7:21:44:a8:
4f:53:d7:0a:e9:24:a1:9b:00:28:26:15:07:6f:2e:d9:81:dc:
7b:6f:85:1b:b1:9c:28:15:56:73:d3:7d:41:88:7d:54:7d:34:
13:3f:e8:de:25:da:a1:ee:3e:25:f0:3e:d4:b7:a8:c8:3c:18:
95:30:f5:cc:e7:98:e9:00:7f:e6:ff:43:7d:65:c1:89:3f:86:
d8:44:fd:9a:4f:bb:ca:bb:b7:c3:94:5b:45:c4:ee:84:3c:15:
c2:4e:1b:f1:89:fa:6b:f9:1b:df:59:8c:9c:b9:18:57:af:c7:
c2:bf:f9:4d:43:ca:8d:a9:f2:dd:47:59:12:48:aa:f2:09:a8:
6b:ce:17:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org