Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Swi7jzoiVXpvBflpAzfZ4pUAs7M.roa
File: Swi7jzoiVXpvBflpAzfZ4pUAs7M.roa (raw, json)
Hash identifier: e2J7e/I7w328IKXWCgE3WUHQ4UZ3ImDIbg29+RhHEdw=
Subject key identifier: 4B:08:BB:8F:3A:22:55:7A:6F:05:F9:69:03:37:D9:E2:95:00:B3:B3
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DC51239A58287A971E7EB293510CB
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Swi7jzoiVXpvBflpAzfZ4pUAs7M.roa
Signing time: Sun 01 Jan 2023 20:54:59 +0000
ROA not before: Sun 01 Jan 2023 20:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 949
IP address blocks: 141.98.196.0/22 maxlen: 24
80.66.196.0/22 maxlen: 24
45.142.124.0/22 maxlen: 24
45.87.92.0/22 maxlen: 24
94.124.116.0/24 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
195.245.219.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
185.213.151.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
194.114.136.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
91.200.240.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a06:57c0::/29 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 10 Mar 2023 15:52:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:c5:12:39:a5:82:87:a9:71:e7:eb:29:35:10:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b08bb8f3a22557a6f05f9690337d9e29500b3b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:9e:c2:5b:49:7b:07:50:60:2d:41:9a:9b:
82:54:2a:07:5b:47:07:f4:26:cc:82:29:c7:24:57:
e5:fc:dc:0d:48:d6:f2:d8:6e:de:93:72:dd:9b:b6:
75:c5:25:ef:42:88:d5:6b:b0:ab:98:32:f6:2a:e9:
07:b4:70:78:46:52:88:68:69:07:ef:e2:81:98:f7:
1e:ed:9b:f2:81:2e:77:9e:8d:bc:ce:3d:89:54:54:
25:53:88:12:e5:21:32:42:bf:02:4f:22:84:06:c3:
18:a9:41:2e:4a:d3:41:e3:0a:5d:cc:00:a5:67:8b:
a2:87:2f:01:36:a6:99:79:23:c1:ec:b5:3f:f9:e9:
3c:10:f8:2e:38:8e:d9:61:5d:57:6a:97:c3:ce:91:
3a:59:6c:d2:35:3d:ff:e5:ab:26:8f:29:57:f8:a5:
e5:a8:3e:2b:30:b7:0d:b3:da:ef:51:64:4f:15:ae:
6d:a6:19:6f:6d:1a:27:94:58:7d:82:42:1e:06:bd:
78:6c:b3:94:5e:2b:81:67:ba:fe:0a:07:b8:88:93:
c5:44:89:8c:d7:c8:ad:06:6d:f7:62:6f:c8:33:56:
79:73:44:0c:c1:17:9c:39:52:a3:e1:47:5f:5f:b1:
84:c9:54:de:d3:24:ec:16:ef:2a:bb:75:ab:da:a1:
a9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:08:BB:8F:3A:22:55:7A:6F:05:F9:69:03:37:D9:E2:95:00:B3:B3
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Swi7jzoiVXpvBflpAzfZ4pUAs7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.92.0/22
45.130.20.0/22
45.139.192.0/22
45.141.44.0/22
45.142.124.0/22
45.143.232.0/22
45.147.48.0/22
80.66.196.0/22
91.200.240.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.213.151.0/24
185.222.216.0/21
193.32.148.0/22
194.36.27.0/24
194.104.144.0/24
194.104.152.0/22
194.114.136.0/24
194.169.54.0/23
195.245.219.0/24
195.245.229.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09:6::/32
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
27:f9:a5:7a:6e:b7:95:b7:b1:18:ed:9f:32:51:ac:9f:b4:e7:
56:6e:5e:45:09:fc:bb:20:c0:bc:c2:9e:ff:b5:85:95:bf:a3:
c3:5c:5e:07:42:1e:af:01:59:d9:00:69:e0:1a:9f:12:c2:b2:
aa:07:0a:1f:d8:29:02:b6:a8:0c:e4:3b:09:16:0d:59:00:ba:
db:8a:f0:32:3e:57:36:45:d5:3c:b1:fa:eb:0d:21:9c:dc:bd:
84:ad:f5:38:33:af:2c:0b:e9:06:e8:0b:bb:da:e3:26:23:e4:
74:da:2f:f2:61:ac:1b:6d:0e:08:bd:29:b0:62:ef:16:69:36:
46:9d:e1:bd:7e:ce:a9:a5:59:c7:61:82:73:db:79:81:09:d1:
d6:fa:bb:0c:90:c2:94:14:f8:69:93:15:4f:8c:b5:e7:f7:46:
02:d6:65:5a:83:56:dd:44:a2:52:97:5c:c8:b9:51:b3:ad:8b:
04:30:ce:5b:ea:be:ae:b0:27:05:e0:9d:0e:8a:ba:6a:ce:5b:
fb:83:4f:4f:82:6c:43:e1:34:9c:88:44:4c:1b:09:68:10:23:
2f:33:e2:1a:e7:33:a0:5f:05:aa:26:0a:53:0c:6e:dd:b3:3b:
05:aa:ae:a6:a0:b9:b0:9a:11:c9:ab:04:70:b6:96:85:64:e7:
36:62:0e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org