Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/MzoFsSDqaF8YNPS5r9LwxdY3qfI.roa
File: MzoFsSDqaF8YNPS5r9LwxdY3qfI.roa (raw, json)
Hash identifier: 6RrL1pW4EaislNF9ZOn4z47IkaHIvmNBtzvpVOGLG5I=
Subject key identifier: 33:3A:05:B1:20:EA:68:5F:18:34:F4:B9:AF:D2:F0:C5:D6:37:A9:F2
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018CC9BCA99A2D763B3C63D17AD685CE0493
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/MzoFsSDqaF8YNPS5r9LwxdY3qfI.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210906
IP address blocks: 82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
89.117.34.0/24 maxlen: 24
89.117.189.0/24 maxlen: 24
89.117.191.0/24 maxlen: 24
89.117.131.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.116.110.0/23 maxlen: 23
89.116.109.0/24 maxlen: 24
89.116.114.0/24 maxlen: 24
89.116.122.0/24 maxlen: 24
89.116.120.0/23 maxlen: 23
89.116.133.0/24 maxlen: 24
89.116.136.0/24 maxlen: 24
89.116.134.0/24 maxlen: 24
89.116.138.0/23 maxlen: 23
89.116.145.0/24 maxlen: 24
89.116.142.0/24 maxlen: 24
89.116.152.0/24 maxlen: 24
89.116.159.0/24 maxlen: 24
89.116.157.0/24 maxlen: 24
89.116.57.0/24 maxlen: 24
89.116.55.0/24 maxlen: 24
86.38.206.0/24 maxlen: 24
86.38.206.0/23 maxlen: 23
89.116.71.0/24 maxlen: 24
86.38.207.0/24 maxlen: 24
89.116.78.0/23 maxlen: 23
89.116.77.0/24 maxlen: 24
89.116.78.0/24 maxlen: 24
89.116.79.0/24 maxlen: 24
86.38.222.0/24 maxlen: 24
89.116.90.0/24 maxlen: 24
89.116.94.0/23 maxlen: 23
89.116.98.0/24 maxlen: 24
89.116.97.0/24 maxlen: 24
89.116.94.0/24 maxlen: 24
89.116.95.0/24 maxlen: 24
89.116.93.0/24 maxlen: 24
89.116.104.0/23 maxlen: 23
89.116.101.0/24 maxlen: 24
86.38.236.0/24 maxlen: 24
86.38.234.0/24 maxlen: 24
89.116.216.0/23 maxlen: 23
89.116.219.0/24 maxlen: 24
89.116.222.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
89.116.238.0/24 maxlen: 24
89.116.240.0/24 maxlen: 24
82.140.128.0/23 maxlen: 23
89.116.245.0/24 maxlen: 24
89.116.251.0/24 maxlen: 24
89.116.249.0/24 maxlen: 24
89.117.4.0/24 maxlen: 24
89.116.254.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.116.167.0/24 maxlen: 24
89.116.170.0/24 maxlen: 24
89.116.188.0/24 maxlen: 24
89.116.187.0/24 maxlen: 24
89.116.192.0/24 maxlen: 24
89.116.191.0/24 maxlen: 24
89.116.196.0/23 maxlen: 23
89.116.194.0/24 maxlen: 24
89.116.199.0/24 maxlen: 24
89.116.206.0/23 maxlen: 23
89.116.204.0/23 maxlen: 23
89.116.201.0/24 maxlen: 24
86.38.26.0/24 maxlen: 24
86.38.36.0/24 maxlen: 24
86.38.2.0/24 maxlen: 24
89.116.0.0/24 maxlen: 24
89.116.14.0/24 maxlen: 24
86.38.158.0/23 maxlen: 23
89.116.18.0/24 maxlen: 24
86.38.157.0/24 maxlen: 24
86.38.154.0/24 maxlen: 24
86.38.158.0/24 maxlen: 24
86.38.159.0/24 maxlen: 24
86.38.160.0/24 maxlen: 24
89.116.40.0/24 maxlen: 24
86.38.128.0/23 maxlen: 23
86.38.128.0/24 maxlen: 24
86.38.129.0/24 maxlen: 24
86.38.130.0/24 maxlen: 24
89.117.230.0/23 maxlen: 23
89.117.243.0/24 maxlen: 24
89.117.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a9:9a:2d:76:3b:3c:63:d1:7a:d6:85:ce:04:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=333a05b120ea685f1834f4b9afd2f0c5d637a9f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e4:05:10:ee:b0:8c:f9:64:50:d4:c6:b9:a4:
76:d4:32:62:e6:31:2d:76:c6:8a:3b:69:42:22:cb:
f3:50:51:d8:54:8a:ae:25:30:01:a8:9a:c2:40:06:
15:34:53:54:d7:60:21:b0:f3:6b:d5:83:6a:23:ce:
e6:ca:c3:de:cc:ac:b1:6e:e9:ae:03:94:ea:2b:6a:
e1:bd:dd:21:03:51:7d:9d:4f:30:2d:66:16:23:cd:
72:a2:a6:98:8b:3c:da:ec:b9:dc:08:8e:95:28:63:
69:0d:dc:ad:a4:05:a3:d0:3f:36:d3:91:6a:1c:ff:
a2:68:5d:0d:28:b2:07:75:12:a6:0b:bf:8f:34:2e:
c5:ec:0c:88:a4:aa:de:7a:a9:ee:23:08:61:8e:46:
e2:99:1d:04:2a:c7:de:50:02:4a:36:cf:e3:57:10:
05:46:74:3e:0b:28:97:cf:ed:1a:92:07:aa:b0:4b:
90:ba:66:8d:a5:55:8a:2b:42:55:c8:f0:26:8b:cc:
07:f0:f4:27:72:6d:95:1f:d5:8f:61:45:0c:49:0f:
b7:54:13:0d:e8:fa:85:6b:57:28:61:a5:70:71:d5:
2c:f9:ce:4c:7c:00:c6:52:fc:4b:b8:84:ba:2e:4f:
5e:21:62:3e:81:3a:c4:18:b3:f0:cd:0b:24:c2:cb:
aa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3A:05:B1:20:EA:68:5F:18:34:F4:B9:AF:D2:F0:C5:D6:37:A9:F2
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/MzoFsSDqaF8YNPS5r9LwxdY3qfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.46.204.0/24
84.46.207.0/24
86.38.2.0/24
86.38.26.0/24
86.38.36.0/24
86.38.128.0-86.38.130.255
86.38.154.0/24
86.38.157.0-86.38.160.255
86.38.206.0/23
86.38.222.0/24
86.38.234.0/24
86.38.236.0/24
89.116.0.0/24
89.116.14.0/24
89.116.18.0/24
89.116.40.0/24
89.116.55.0/24
89.116.57.0/24
89.116.71.0/24
89.116.77.0-89.116.79.255
89.116.90.0/24
89.116.93.0-89.116.95.255
89.116.97.0-89.116.98.255
89.116.101.0/24
89.116.104.0/23
89.116.109.0-89.116.111.255
89.116.114.0/24
89.116.120.0-89.116.122.255
89.116.133.0-89.116.134.255
89.116.136.0/24
89.116.138.0/23
89.116.142.0/24
89.116.145.0/24
89.116.152.0/24
89.116.157.0/24
89.116.159.0/24
89.116.167.0/24
89.116.170.0/24
89.116.187.0-89.116.188.255
89.116.191.0-89.116.192.255
89.116.194.0/24
89.116.196.0/23
89.116.199.0/24
89.116.201.0/24
89.116.204.0/22
89.116.216.0/23
89.116.219.0/24
89.116.222.0/24
89.116.238.0/24
89.116.240.0/24
89.116.245.0/24
89.116.249.0/24
89.116.251.0/24
89.116.254.0/24
89.117.4.0/24
89.117.34.0/24
89.117.131.0/24
89.117.189.0/24
89.117.191.0/24
89.117.230.0/23
89.117.243.0-89.117.244.255
Signature Algorithm: sha256WithRSAEncryption
a2:ab:02:fe:7b:5e:23:ca:9e:41:05:26:48:d7:14:32:97:5c:
8c:df:9a:78:69:b2:bb:02:cf:cb:d5:47:fe:5b:e4:5b:92:77:
4c:10:67:f7:7a:05:69:39:e8:c8:01:61:fd:c3:3c:b5:a3:04:
f8:b7:79:c9:7b:a1:9b:d5:04:1d:c0:d8:11:ba:e0:74:e7:d5:
dd:6b:01:86:03:4b:1e:e1:d2:2d:f7:87:f8:7e:82:43:06:5e:
9a:60:fa:60:e1:d0:15:1a:98:f3:e3:a1:14:ff:eb:14:1c:f7:
29:22:7c:3a:58:79:da:5f:45:72:c3:57:5c:7b:7f:cb:ba:5b:
25:4e:7e:2c:3b:31:d4:62:d0:65:ce:24:e4:c4:1f:6c:0a:8e:
c9:85:14:56:57:28:22:ae:88:12:95:87:0a:b3:4f:d7:d6:9f:
de:df:6a:61:e7:1d:7c:79:65:c5:e8:a2:b4:bf:f6:01:c8:0d:
5f:5e:a4:78:c0:a4:db:19:08:b5:47:71:a3:75:04:12:e5:e6:
28:67:ba:43:0a:12:7e:ab:7a:2b:41:86:2e:3c:c4:27:57:cf:
ca:02:49:4b:55:a5:ca:c4:c5:4d:39:0e:1d:85:75:49:1d:ae:
06:34:59:2c:94:d4:f1:29:8f:b9:79:01:c7:5e:d8:0a:9f:bd:
27:89:b4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 00:22:33 2024 by rpki-client on console-ams.rpki-client.org