Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/U1HsHkDopGKFKUVuCXa_5TX9kqA.roa
File: U1HsHkDopGKFKUVuCXa_5TX9kqA.roa (raw, json)
Hash identifier: d60/aFJ+wTsOSprMRuaSc1Baz5BIfNLjBMZPZzgK+js=
Subject key identifier: 53:51:EC:1E:40:E8:A4:62:85:29:45:6E:09:76:BF:E5:35:FD:92:A0
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 019442D195425F9F143598D8EF9E082695C9
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/U1HsHkDopGKFKUVuCXa_5TX9kqA.roa
Signing time: Tue 07 Jan 2025 22:10:18 +0000
ROA not before: Tue 07 Jan 2025 22:10:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13335
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.75.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.82.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.87.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.107.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.112.0/23 maxlen: 23
141.101.114.0/23 maxlen: 23
141.101.120.0/22 maxlen: 22
188.114.96.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.98.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c0:1c25::/48 maxlen: 48
2a06:98c0:1c26::/48 maxlen: 48
2a06:98c0:1c27::/48 maxlen: 48
2a06:98c0:1c28::/48 maxlen: 48
2a06:98c0:1c29::/48 maxlen: 48
2a06:98c0:1c2a::/48 maxlen: 48
2a06:98c0:1c2b::/48 maxlen: 48
2a06:98c0:1c2c::/48 maxlen: 48
2a06:98c0:1c2d::/48 maxlen: 48
2a06:98c0:1c2e::/48 maxlen: 48
2a06:98c0:1c2f::/48 maxlen: 48
2a06:98c0:1c30::/48 maxlen: 48
2a06:98c0:1c31::/48 maxlen: 48
2a06:98c0:1c32::/48 maxlen: 48
2a06:98c0:1c33::/48 maxlen: 48
2a06:98c0:1c34::/48 maxlen: 48
2a06:98c0:1c35::/48 maxlen: 48
2a06:98c0:1c36::/48 maxlen: 48
2a06:98c0:1c37::/48 maxlen: 48
2a06:98c0:1c38::/48 maxlen: 48
2a06:98c0:1c39::/48 maxlen: 48
2a06:98c0:1c3a::/48 maxlen: 48
2a06:98c0:1c3b::/48 maxlen: 48
2a06:98c0:1c3c::/48 maxlen: 48
2a06:98c0:1c3d::/48 maxlen: 48
2a06:98c0:1c3e::/48 maxlen: 48
2a06:98c0:1c3f::/48 maxlen: 48
2a06:98c0:1c40::/48 maxlen: 48
2a06:98c0:1c41::/48 maxlen: 48
2a06:98c0:1c42::/48 maxlen: 48
2a06:98c0:1c43::/48 maxlen: 48
2a06:98c0:1c44::/48 maxlen: 48
2a06:98c0:1c45::/48 maxlen: 48
2a06:98c0:1c46::/48 maxlen: 48
2a06:98c0:1c47::/48 maxlen: 48
2a06:98c0:1c48::/48 maxlen: 48
2a06:98c0:1c49::/48 maxlen: 48
2a06:98c0:1c4b::/48 maxlen: 48
2a06:98c0:1c4c::/48 maxlen: 48
2a06:98c0:1c4d::/48 maxlen: 48
2a06:98c0:1c4e::/48 maxlen: 48
2a06:98c0:1c4f::/48 maxlen: 48
2a06:98c0:1c50::/48 maxlen: 48
2a06:98c0:1c51::/48 maxlen: 48
2a06:98c0:1c52::/48 maxlen: 48
2a06:98c0:1c53::/48 maxlen: 48
2a06:98c0:1c54::/48 maxlen: 48
2a06:98c0:1c55::/48 maxlen: 48
2a06:98c0:1c56::/48 maxlen: 48
2a06:98c0:3619::/48 maxlen: 48
2a06:98c0:361a::/48 maxlen: 48
2a06:98c1:40::/48 maxlen: 48
2a06:98c1:41::/48 maxlen: 48
2a06:98c1:42::/48 maxlen: 48
2a06:98c1:43::/48 maxlen: 48
2a06:98c1:48::/48 maxlen: 48
2a06:98c1:49::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Jan 2025 23:13:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:42:d1:95:42:5f:9f:14:35:98:d8:ef:9e:08:26:95:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 7 22:10:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5351ec1e40e8a4628529456e0976bfe535fd92a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a0:d5:7a:16:5d:ef:9a:50:e4:ea:cd:2d:03:
1a:f3:50:69:42:b1:7e:8a:f5:c0:d9:58:d7:df:95:
52:ac:09:31:a7:88:a7:98:a0:32:f5:0b:5c:70:35:
72:39:59:e4:f8:b8:c7:cf:f4:19:34:83:67:45:aa:
52:cb:a7:28:38:04:87:42:3f:99:fe:2f:1d:59:78:
67:73:a6:22:db:c6:c7:f6:9f:26:05:16:34:a0:87:
04:0c:8f:d6:e9:56:2f:67:57:f0:6c:77:be:7e:3f:
4b:c9:bd:3e:ea:2e:15:0a:41:d7:93:7e:e5:87:43:
52:96:46:f4:ac:1b:3d:d9:97:7a:38:c9:84:a6:0e:
6d:8b:02:07:51:2b:3b:4d:c0:74:70:cc:b3:aa:b3:
2e:b1:13:7b:1b:43:84:42:08:ff:98:a6:14:b4:81:
1c:f0:64:76:ac:06:42:0e:4d:04:be:82:88:c7:7f:
35:d7:a7:61:0d:bb:c6:4b:fc:96:c5:7d:74:ec:a6:
fc:43:2a:22:79:bd:4d:fb:06:09:77:2f:df:8a:7c:
b3:3b:32:d8:49:47:ff:f8:3b:d5:e6:e2:76:7b:ca:
70:9f:f4:e2:da:39:de:cd:36:92:41:47:15:45:7f:
27:ef:ba:6e:63:cb:e8:20:c2:d9:50:61:88:79:3a:
7e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:51:EC:1E:40:E8:A4:62:85:29:45:6E:09:76:BF:E5:35:FD:92:A0
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/U1HsHkDopGKFKUVuCXa_5TX9kqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c01::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::-2a06:98c0:1c49:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c4b::-2a06:98c0:1c56:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3619::-2a06:98c0:361a:ffff:ffff:ffff:ffff:ffff
2a06:98c1:40::/46
2a06:98c1:48::/47
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
09:8e:cf:57:ff:c6:fe:51:e6:8f:0a:22:06:ca:59:35:2e:a8:
5e:3e:2d:04:25:a3:d7:5d:f8:dd:65:a3:b7:2b:fe:49:b9:0e:
ff:46:9f:c3:9e:11:fc:a6:88:2a:2c:22:ea:a2:0e:e8:2c:ac:
f0:4b:79:d9:a0:5e:31:c4:8f:1f:51:71:c6:cf:68:ec:22:f8:
a6:4d:74:b5:02:c0:94:bf:30:c9:05:8a:47:63:53:da:6c:56:
a5:93:1f:e7:7b:b3:bf:15:52:b2:9b:0c:a7:ba:47:27:ca:f0:
92:ca:4c:f6:29:c6:ac:1b:7d:15:08:16:b7:0c:b5:7b:f2:c6:
35:da:6b:b3:85:ed:c5:73:11:52:0e:f1:87:33:3a:83:16:fd:
dc:73:f7:f1:78:4b:7c:ba:7d:4c:fb:63:1a:48:0a:9c:9b:e1:
40:e0:4c:6b:35:32:e6:f5:40:50:85:bf:9d:7e:14:3b:86:43:
ca:e3:64:a9:f6:95:c1:31:4e:c5:aa:95:fa:3f:fb:c6:77:8d:
bb:5c:77:5f:fb:40:ec:79:e2:e0:32:a8:98:d4:18:ca:b7:a2:
5a:7c:90:f4:18:bf:1b:72:5a:0b:8c:6c:15:c8:ac:f7:82:06:
99:1d:40:5d:62:dc:87:8c:e6:34:34:83:cc:28:b5:9f:d0:b8:
cd:d1:a5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 08:21:01 2025 by rpki-client