Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/v3CsHPe0jSPxvuQa8G3M4x10RMA.roa
File: v3CsHPe0jSPxvuQa8G3M4x10RMA.roa (raw, json)
Hash identifier: GSoJI8U83JhT66XVu8gflbuqM0LLH4zEWetkI+tPJbs=
Subject key identifier: BF:70:AC:1C:F7:B4:8D:23:F1:BE:E4:1A:F0:6D:CC:E3:1D:74:44:C0
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018D37562F42056A175F70FEBE6A3A8858B3
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/v3CsHPe0jSPxvuQa8G3M4x10RMA.roa
Signing time: Tue 23 Jan 2024 17:20:11 +0000
ROA not before: Tue 23 Jan 2024 17:20:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13335
IP address blocks: 141.101.64.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.75.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.82.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.86.0/24 maxlen: 24
141.101.87.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.92.0/24 maxlen: 24
141.101.93.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.99.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.100.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.107.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.112.0/23 maxlen: 23
141.101.114.0/23 maxlen: 23
141.101.120.0/22 maxlen: 22
188.114.96.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.98.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c0:1c0f::/48 maxlen: 48
2a06:98c0:1c10::/48 maxlen: 48
2a06:98c0:1c20::/48 maxlen: 48
2a06:98c0:1c21::/48 maxlen: 48
2a06:98c0:1c22::/48 maxlen: 48
2a06:98c0:1c23::/48 maxlen: 48
2a06:98c0:1c24::/48 maxlen: 48
2a06:98c0:1c25::/48 maxlen: 48
2a06:98c0:1c26::/48 maxlen: 48
2a06:98c0:1c27::/48 maxlen: 48
2a06:98c0:1c28::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:56::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 12:50:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:37:56:2f:42:05:6a:17:5f:70:fe:be:6a:3a:88:58:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 23 17:20:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf70ac1cf7b48d23f1bee41af06dcce31d7444c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:64:52:d5:1b:f0:7c:6d:b2:c8:8e:d1:64:
b5:7d:bb:69:c2:3c:0e:80:b9:cb:f2:6b:41:07:25:
2b:44:35:16:07:f6:ca:65:fa:93:d5:4e:77:c6:d0:
ec:40:cf:de:3b:57:c7:0d:88:13:74:20:6f:61:67:
7b:e5:b0:67:98:71:b7:e4:bb:ad:df:35:88:37:80:
07:07:74:5c:3a:c0:25:46:d3:c3:86:e1:9d:0c:67:
a1:c6:2f:26:aa:c2:b2:0d:d5:92:a5:f0:6e:86:e2:
bb:d2:35:df:de:e3:ef:c1:cf:54:39:15:06:bc:0e:
d1:92:8b:75:fc:59:ee:63:7d:f0:15:33:c9:6c:f1:
7b:fc:16:ae:8f:5e:ce:47:bc:a9:2e:fd:28:63:42:
99:64:ae:16:74:46:6e:7f:ea:1d:3e:91:a0:c0:e5:
b4:ff:1c:1d:a2:4e:8f:57:08:f8:b8:33:c2:65:7c:
24:0a:bb:57:fc:92:08:64:c5:d6:eb:aa:ce:9b:f0:
24:5d:9f:af:7f:51:fc:47:03:37:6d:23:e1:61:7f:
be:d8:92:0d:0f:56:f3:0b:29:cc:73:3d:7e:fe:e4:
d2:a0:46:5d:4f:e7:9f:e1:71:d3:eb:28:0f:0b:b2:
71:6f:19:c4:53:65:04:76:4a:71:e1:90:c7:c0:9d:
35:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:70:AC:1C:F7:B4:8D:23:F1:BE:E4:1A:F0:6D:CC:E3:1D:74:44:C0
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/v3CsHPe0jSPxvuQa8G3M4x10RMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c10:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c20::-2a06:98c0:1c28:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
46:1f:ba:ed:7c:b3:b5:b0:ee:1a:93:ff:ef:df:27:2e:88:fa:
5d:9d:46:9e:3b:a3:1d:b3:47:62:4f:9b:c1:ac:35:74:1c:09:
ba:34:f8:05:22:1f:a3:88:47:2e:5b:01:1d:d3:36:b1:a9:c4:
fa:51:57:d7:fc:65:75:24:45:f8:7d:57:79:38:ce:ec:b5:9a:
a0:bd:20:b0:fb:c1:b6:15:a1:b6:00:1e:16:a3:0d:2d:9c:06:
66:02:57:54:c1:38:67:64:3d:75:e7:61:02:c7:33:55:c4:c0:
a7:8c:d7:01:e6:9d:3c:15:d6:58:02:4f:ef:04:29:87:22:11:
41:02:3f:8b:45:fc:d3:19:84:df:bc:a9:8f:ac:44:73:79:f9:
3d:4f:5c:83:2e:1c:5e:ad:c5:8d:8f:ab:3a:3a:9a:ea:7a:6e:
01:69:e4:9d:28:97:d4:36:f2:4a:c9:a2:f6:7d:7a:dd:1d:36:
53:80:dd:df:97:23:61:f9:ec:0a:e2:2b:7b:43:d1:c2:15:f5:
00:87:25:4b:39:bd:5c:a3:89:57:59:28:36:d9:65:26:eb:f2:
2b:db:ca:26:c4:27:0f:95:69:ed:0a:70:ce:4d:b0:b0:81:01:
82:2b:96:72:6c:f1:dd:b9:8f:07:b3:44:46:9b:75:03:05:5c:
9f:0b:10:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org