Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/4sYpgpqL1HIdtMx21eyEvL_eJsA.roa
File: 4sYpgpqL1HIdtMx21eyEvL_eJsA.roa (raw, json)
Hash identifier: DKyiHs1aKbOrEEDu7CtwdSPSUlr3sLY8v2p75nyzfnM=
Subject key identifier: E2:C6:29:82:9A:8B:D4:72:1D:B4:CC:76:D5:EC:84:BC:BF:DE:26:C0
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018C85DFCE988DDFD27616B0DE98A3EE1F5E
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/4sYpgpqL1HIdtMx21eyEvL_eJsA.roa
Signing time: Wed 20 Dec 2023 06:18:06 +0000
ROA not before: Wed 20 Dec 2023 06:18:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:85:df:ce:98:8d:df:d2:76:16:b0:de:98:a3:ee:1f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Dec 20 06:18:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c629829a8bd4721db4cc76d5ec84bcbfde26c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:08:f0:6d:e6:c4:12:74:b2:61:20:3a:2e:1b:
63:83:99:d3:70:b4:51:78:b7:e5:62:65:0d:0c:7b:
95:29:d4:56:1a:a3:42:a9:b9:92:0f:35:6c:67:ae:
20:51:86:13:53:fb:8a:99:c1:65:d0:07:56:ac:fe:
ce:b4:29:d5:71:fd:16:f4:54:66:60:c5:cd:2c:4a:
ca:4a:74:88:11:1e:d9:76:3e:f7:ff:01:04:b2:92:
e0:a3:f3:46:ff:db:20:bf:a2:13:ee:be:3f:23:1f:
bb:17:96:6f:65:0a:e4:60:78:08:db:4f:a1:98:bb:
67:bd:15:2e:c3:4a:38:b8:29:03:78:25:5a:7d:97:
22:6f:af:9f:0d:2c:fb:96:48:cc:8f:55:74:11:1c:
35:29:6e:1b:9a:0b:ba:08:ad:aa:e9:8e:57:b2:7d:
2c:02:10:10:2b:91:63:cd:8f:97:51:05:23:0b:c4:
81:a8:7b:e4:d5:16:d3:b1:a6:9b:f0:b7:c8:bd:b8:
32:a5:a6:30:28:b2:39:36:60:ff:58:39:4f:12:08:
17:f8:cd:2e:98:4f:6c:68:35:0c:fc:8d:de:b7:16:
85:a2:d3:ac:1f:51:b1:10:63:76:3b:e7:87:13:29:
81:56:70:8a:0e:2f:42:1a:e7:9d:51:fa:14:27:31:
e8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C6:29:82:9A:8B:D4:72:1D:B4:CC:76:D5:EC:84:BC:BF:DE:26:C0
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/4sYpgpqL1HIdtMx21eyEvL_eJsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::/36
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
4e:30:d3:98:d5:a2:64:fb:c7:c6:0b:0b:b4:71:8d:b6:71:31:
81:c9:74:a4:92:ea:fc:35:12:6e:72:56:e1:db:16:d9:c6:15:
6e:d6:81:dd:4a:13:84:ca:08:f9:24:76:4a:a0:a1:19:64:4a:
fe:5c:4a:a8:7a:1c:c6:91:fd:c1:0b:46:af:56:a5:37:62:bd:
f0:cc:1d:1a:4c:bf:e4:00:52:87:b6:ef:f6:cd:d8:7f:85:ec:
4b:01:ad:d2:63:6a:d4:55:89:96:31:ce:69:1d:49:35:a2:95:
44:4e:68:a5:7f:d5:5e:e4:9e:ae:64:43:a1:30:d9:92:84:a1:
87:54:1e:ad:13:ec:d9:fd:4f:04:da:80:d9:a6:7b:ad:0f:ea:
f7:55:70:67:8c:7b:a5:cb:02:bd:a0:f6:47:f7:5e:38:b1:76:
9d:0f:e7:34:7c:23:fe:e2:e5:66:53:0a:c8:ec:0e:4b:01:a4:
4b:b9:1f:36:9b:f7:b6:10:73:2c:7e:81:cb:e8:2b:5e:d7:c8:
40:6f:40:b9:f1:f3:1c:c8:7c:49:91:f6:94:91:18:b7:9e:b5:
58:be:6e:34:ef:44:e5:ea:48:15:aa:0a:8f:42:1a:a9:bc:fe:
49:b1:6f:d2:9f:1a:6a:bf:de:46:d5:3f:6e:d5:3d:43:2e:ee:
c6:45:40:7e
-----BEGIN CERTIFICATE-----
MIIGcTCCBVmgAwIBAgISAYyF386Yjd/Sdhaw3pij7h9eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjMxMjIwMDYxODA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmM2Mjk4MjlhOGJkNDcyMWRiNGNjNzZkNWVjODRiY2JmZGUyNmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwjwbebEEnSyYSA6Lhtjg5nTcLRR
eLflYmUNDHuVKdRWGqNCqbmSDzVsZ64gUYYTU/uKmcFl0AdWrP7OtCnVcf0W9FRm
YMXNLErKSnSIER7Zdj73/wEEspLgo/NG/9sgv6IT7r4/Ix+7F5ZvZQrkYHgI20+h
mLtnvRUuw0o4uCkDeCVafZcib6+fDSz7lkjMj1V0ERw1KW4bmgu6CK2q6Y5Xsn0s
AhAQK5FjzY+XUQUjC8SBqHvk1RbTsaab8LfIvbgypaYwKLI5NmD/WDlPEggX+M0u
mE9saDUM/I3etxaFotOsH1GxEGN2O+eHEymBVnCKDi9CGuedUfoUJzHogQIDAQAB
o4IDfTCCA3kwHQYDVR0OBBYEFOLGKYKai9RyHbTMdtXshLy/3ibAMB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvNHNZcGdwcUwxSElkdE14MjFleUV2TF9lSnNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBkQYIKwYBBQUHAQcBAf8EggGAMIIBfDAqBAIAATAkAwQA
LY7SAwQALZeLAwQCU6vwAwQAVDYkAwQAX9dtAwQAwnFpMIIBTAQCAAIwggFEAwUD
KgbZAAMGBCoJNQWQAwYEKgk1BbADBQAqCTUGMA0DBAMqCTgDBQAqCTgCAwYEKgk4
BAAwDgMFACoJOAUDBQMqCTgAAwUDKgk7AAMFAyoJPQAwEAMGBCoJTgEwAwYFKglO
AUAwEAMGBCoJTgGQAwYEKglOAaADBQAqCU4DAwUDKgm2gAMFACoMIQQDBQMqDOjA
AwUDKg1ewDAOAwUAKg2LAwMFACoNiwQDBQAqDYsHAwUAKg/MgQMGBCoPzIcAAwUD
KhDAwAMFAyoQw0ADBgQqEQIAAAMGBSoRAgBAMBADBgQqEQIAcAMGBCoRAgCgMBAD
BgYqEQIAwAMGBCoRAgDgMA4DBQAqEQIBAwUAKhECAgMFAioRAgQDBQMqEQeAAwUD
KhEJgAMFAyoRC4ADBQAqEQ6CAwYEKhEOh2ADBQAqEa8BMA0GCSqGSIb3DQEBCwUA
A4IBAQBOMNOY1aJk+8fGCwu0cY22cTGByXSkkur8NRJuclbh2xbZxhVu1oHdShOE
ygj5JHZKoKEZZEr+XEqoehzGkf3BC0avVqU3Yr3wzB0aTL/kAFKHtu/2zdh/hexL
Aa3SY2rUVYmWMc5pHUk1opVETmilf9Ve5J6uZEOhMNmShKGHVB6tE+zZ/U8E2oDZ
pnutD+r3VXBnjHulywK9oPZH9144sXadD+c0fCP+4uVmUwrI7A5LAaRLuR82m/e2
EHMsfoHL6Cte18hAb0C58fMcyHxJkfaUkRi3nrVYvm4070Tl6kgVqgqPQhqpvP5J
sW/Snxpqv95G1T9u1T1DLu7GRUB+
-----END CERTIFICATE-----
Generated at Wed Dec 20 08:19:48 2023 by rpki-client on console-ams.rpki-client.org