Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/XUBPSkq8dKCxRTiPz6IuC1XTmWA.roa
File: XUBPSkq8dKCxRTiPz6IuC1XTmWA.roa (raw, json)
Hash identifier: tmZv45IpolZYOkE2pXNcvcYrkWceme92TwtaorLf5IQ=
Subject key identifier: 5D:40:4F:4A:4A:BC:74:A0:B1:45:38:8F:CF:A2:2E:0B:55:D3:99:60
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018E53EBC94B77239F2C8DFB8D5C22872B89
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/XUBPSkq8dKCxRTiPz6IuC1XTmWA.roa
Signing time: Mon 18 Mar 2024 23:35:45 +0000
ROA not before: Mon 18 Mar 2024 23:35:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13335
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.75.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.82.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.87.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.107.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.112.0/23 maxlen: 23
141.101.114.0/23 maxlen: 23
141.101.120.0/22 maxlen: 22
188.114.96.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.98.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c0:1c25::/48 maxlen: 48
2a06:98c0:1c26::/48 maxlen: 48
2a06:98c0:1c27::/48 maxlen: 48
2a06:98c0:1c28::/48 maxlen: 48
2a06:98c0:1c29::/48 maxlen: 48
2a06:98c0:1c2a::/48 maxlen: 48
2a06:98c0:1c2b::/48 maxlen: 48
2a06:98c0:1c2c::/48 maxlen: 48
2a06:98c0:1c2d::/48 maxlen: 48
2a06:98c0:1c2e::/48 maxlen: 48
2a06:98c0:1c2f::/48 maxlen: 48
2a06:98c0:1c30::/48 maxlen: 48
2a06:98c0:1c31::/48 maxlen: 48
2a06:98c0:1c32::/48 maxlen: 48
2a06:98c0:1c33::/48 maxlen: 48
2a06:98c0:1c34::/48 maxlen: 48
2a06:98c0:1c35::/48 maxlen: 48
2a06:98c0:1c36::/48 maxlen: 48
2a06:98c0:1c37::/48 maxlen: 48
2a06:98c0:1c38::/48 maxlen: 48
2a06:98c0:1c39::/48 maxlen: 48
2a06:98c0:1c3a::/48 maxlen: 48
2a06:98c0:1c3b::/48 maxlen: 48
2a06:98c0:1c3c::/48 maxlen: 48
2a06:98c0:1c3d::/48 maxlen: 48
2a06:98c0:1c3e::/48 maxlen: 48
2a06:98c0:1c3f::/48 maxlen: 48
2a06:98c0:1c40::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Apr 2024 18:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:53:eb:c9:4b:77:23:9f:2c:8d:fb:8d:5c:22:87:2b:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Mar 18 23:35:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d404f4a4abc74a0b145388fcfa22e0b55d39960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:59:72:06:42:e7:d3:7d:78:25:b6:28:fa:
56:9d:24:ae:e0:05:24:bf:9c:fe:93:18:a8:0a:a3:
a6:ca:9d:31:57:d6:d0:69:d4:24:bf:a7:83:b5:48:
e8:0a:57:10:a0:aa:b8:4a:e9:55:47:f9:e4:61:82:
31:30:8f:cc:b4:72:a4:33:f8:6e:d9:2f:a6:f6:b4:
c9:d6:34:20:72:52:6f:43:ed:eb:77:84:7a:d8:37:
03:db:5d:24:a0:22:91:a7:a4:73:f2:71:1e:6e:02:
e0:b5:2f:7a:7b:07:b9:72:89:c0:30:ec:0b:c8:ab:
b3:40:07:e6:6f:68:00:48:80:a0:43:41:4a:85:8e:
f8:d2:2a:be:36:b5:75:39:08:1c:91:61:76:57:9b:
20:24:34:41:43:ad:0c:51:99:82:04:21:04:8c:5e:
8a:8c:91:bd:88:87:ee:e1:ac:99:cc:c1:5c:6a:fe:
7a:d5:fe:61:de:ce:5b:1f:7f:93:39:20:05:4d:34:
2c:e1:ae:6b:fb:87:24:9f:e1:4e:f5:f6:93:db:6a:
04:df:de:7c:d4:b5:5c:75:e2:e6:03:cf:28:cb:fe:
5f:5d:0d:97:03:05:91:ff:1e:ed:1d:9f:96:c3:b8:
fc:d3:44:90:b2:92:93:31:8f:d6:78:bd:1b:21:bd:
fa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:40:4F:4A:4A:BC:74:A0:B1:45:38:8F:CF:A2:2E:0B:55:D3:99:60
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/XUBPSkq8dKCxRTiPz6IuC1XTmWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::-2a06:98c0:1c40:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
1f:7a:c7:0f:4b:86:33:06:97:e0:3f:4b:f3:e3:17:dd:b8:39:
51:6d:d0:bf:b4:ef:eb:f1:1a:f2:e9:48:d4:35:28:97:61:fa:
08:2c:b2:26:6b:9a:ab:71:5d:fb:d4:f4:c5:56:d6:fe:94:1a:
ff:c6:cc:27:73:ca:1e:51:00:41:06:ee:20:20:d6:3b:6c:77:
a9:73:1f:e2:31:49:e3:6a:88:c7:f0:6f:35:c5:f7:c4:c1:04:
d0:85:d6:0c:f9:e4:24:5e:65:56:04:c5:4c:87:32:f3:2a:f2:
45:86:a7:7b:4d:23:34:72:fd:8f:80:19:59:61:f2:4c:f6:dd:
18:f8:28:97:2e:ba:4f:63:40:4c:19:ea:28:aa:0e:6a:0e:e0:
da:b5:e0:9a:df:c9:a1:fa:f0:2a:9a:4b:d1:35:ca:38:b8:fc:
1d:19:58:94:3d:8f:85:1e:de:e8:6d:0d:0b:cd:73:1f:ab:f9:
59:e8:de:b3:2a:dc:9b:43:6a:33:08:52:78:e7:05:bc:5d:60:
e9:85:36:2b:65:3e:2f:aa:71:6f:d3:02:43:1e:ff:94:c3:54:
c9:9b:06:4b:39:57:75:43:28:6e:dd:17:5c:8e:ea:8e:b1:ff:
54:32:2a:a6:b2:74:b8:e4:5f:a3:67:df:ca:bd:c7:bc:f9:38:
23:14:19:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 22:16:24 2024 by rpki-client on console-fra.rpki-client.org