Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/S2tafmJYwz8PWMNuBTlTu59sFuk.roa
File: S2tafmJYwz8PWMNuBTlTu59sFuk.roa (raw, json)
Hash identifier: AAe1upeuVQ/8Af3Br/SBsn7kl8GGkManYilnW1YpbYI=
Subject key identifier: 4B:6B:5A:7E:62:58:C3:3F:0F:58:C3:6E:05:39:53:BB:9F:6C:16:E9
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0186CC390204379434DCA1616FF0D190A2CA
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/S2tafmJYwz8PWMNuBTlTu59sFuk.roa
Signing time: Fri 10 Mar 2023 15:52:13 +0000
ROA not before: Fri 10 Mar 2023 15:52:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 949
IP address blocks: 141.98.196.0/22 maxlen: 24
80.66.196.0/22 maxlen: 24
45.142.124.0/22 maxlen: 24
45.87.92.0/22 maxlen: 24
94.124.116.0/24 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
195.245.219.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
185.213.151.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
194.114.136.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
91.200.240.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a06:57c0::/29 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 11 Aug 2023 07:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:39:02:04:37:94:34:dc:a1:61:6f:f0:d1:90:a2:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 10 15:52:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b6b5a7e6258c33f0f58c36e053953bb9f6c16e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:47:88:5c:e5:ad:04:f6:9c:67:c6:68:6b:20:
88:39:1e:ad:d8:46:59:ee:4d:03:cb:f0:49:29:fd:
3f:0e:b4:b0:1d:26:e2:4b:33:0d:20:53:ba:4b:cb:
0b:9f:2f:83:1b:1e:17:ba:19:80:0c:38:7a:2a:3a:
c8:00:37:ad:fa:9a:3e:d5:c0:67:5d:74:37:d4:f6:
ea:e9:0d:47:71:66:56:9f:92:0f:ab:d3:7a:06:75:
5e:2a:75:f8:e8:9d:87:79:66:93:07:0a:b2:87:7f:
ca:4c:41:b8:fa:6b:c6:a5:f4:15:b7:fa:eb:09:4b:
2c:7b:c8:7b:50:16:bb:02:e0:d4:32:3a:53:c2:a4:
01:30:1d:9c:20:d7:49:8f:8c:28:23:fd:e5:6a:38:
dc:54:0b:91:ea:4a:95:30:4c:fd:16:a9:11:e5:51:
46:59:98:b4:36:d7:85:ab:4a:e3:c2:b2:cf:e8:34:
a2:d9:5a:51:ca:4f:b0:73:d6:8a:32:a9:72:00:86:
6d:6e:79:d0:48:e9:0b:f9:64:e2:e9:d8:e9:f2:3a:
fd:e8:34:7a:76:1f:52:d2:97:f3:79:90:99:f1:22:
4c:94:b4:f3:25:f1:49:69:07:03:b2:ef:20:a8:3d:
fc:e0:cb:a3:d4:a5:b1:77:50:c3:73:65:03:d0:c8:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6B:5A:7E:62:58:C3:3F:0F:58:C3:6E:05:39:53:BB:9F:6C:16:E9
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/S2tafmJYwz8PWMNuBTlTu59sFuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.92.0/22
45.130.20.0/22
45.139.192.0/22
45.141.44.0/22
45.142.124.0/22
45.143.232.0/22
80.66.196.0/22
91.200.240.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.213.151.0/24
185.222.216.0/21
193.32.148.0/22
194.36.27.0/24
194.104.144.0/24
194.104.152.0/22
194.114.136.0/24
194.169.54.0/23
195.245.219.0/24
195.245.229.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09:6::/32
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
54:6f:7a:b2:96:9e:9d:e5:08:93:0d:e7:e6:b2:f4:95:28:9a:
5d:94:f1:b3:62:aa:6c:07:bd:4c:5c:bb:8f:89:4d:b6:0c:bc:
dc:05:28:de:72:d3:b9:6f:4d:c2:09:d5:0e:08:f3:75:60:d2:
e6:af:4b:d5:7a:af:9c:30:35:74:98:1a:1a:00:39:58:05:7e:
82:ab:40:7d:3b:90:23:d3:86:57:c0:da:81:65:05:10:cd:38:
68:56:33:66:e8:13:24:16:22:22:8e:81:98:04:d6:1c:6c:b2:
20:1d:b6:8d:fc:38:f0:94:43:95:9e:ab:2d:b0:e8:8d:bc:b1:
82:4f:e7:c2:ac:5b:c0:bc:c1:a2:a2:c0:23:c1:35:68:d4:1f:
47:a7:27:65:62:41:de:85:3e:be:13:ce:d1:43:14:35:d5:d9:
82:1d:7a:c2:ec:d6:80:61:b9:1a:71:80:0a:56:2e:0e:a1:e4:
81:cf:59:d7:6e:4b:42:a9:d3:60:ec:20:a2:94:7a:f1:57:22:
01:7d:b4:5d:5a:9a:de:b2:ca:6b:4a:6a:ff:1f:92:73:35:5e:
1f:42:be:34:04:be:0e:4a:a3:e0:f4:17:cf:30:eb:82:e9:71:
d1:06:fb:35:56:c5:69:00:c5:5f:02:ac:bc:10:19:63:63:db:
40:7a:ff:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org