Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5yktxmB35Xer5Eya6LW6Cyk4xiU.roa
File: 5yktxmB35Xer5Eya6LW6Cyk4xiU.roa (raw, json)
Hash identifier: WR4Nj6ob1hU2oV762C3RaN6lejRAE9O/swSpzlArzsw=
Subject key identifier: E7:29:2D:C6:60:77:E5:77:AB:E4:4C:9A:E8:B5:BA:0B:29:38:C6:25
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018B4D35D838AF2ECEDA7920F26FEB5288DA
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5yktxmB35Xer5Eya6LW6Cyk4xiU.roa
Signing time: Fri 20 Oct 2023 13:10:56 +0000
ROA not before: Fri 20 Oct 2023 13:10:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/23 maxlen: 23
45.151.137.0/24 maxlen: 24
45.151.136.0/22 maxlen: 22
45.151.136.0/24 maxlen: 24
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.211.0/24 maxlen: 24
45.142.209.0/24 maxlen: 24
45.142.208.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.67.0/24 maxlen: 24
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:f000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:7000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4d:35:d8:38:af:2e:ce:da:79:20:f2:6f:eb:52:88:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Oct 20 13:10:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7292dc66077e577abe44c9ae8b5ba0b2938c625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a3:80:02:fb:4f:e6:ef:82:bc:3f:9e:11:d3:
41:93:ae:4b:35:03:db:33:7f:25:b6:bf:69:b8:8d:
d0:97:fa:41:19:00:ab:af:8f:58:d7:7c:dc:12:c2:
08:0e:07:60:0b:7b:66:e5:ea:f6:b7:51:28:97:3a:
d8:85:b8:94:92:87:1a:fe:ec:ac:9a:64:69:8d:8a:
82:0c:2c:cc:1c:57:84:7e:92:28:b2:85:57:0a:73:
24:fe:cb:b7:79:cd:5a:13:b1:eb:53:89:8a:85:ba:
a7:48:b8:36:31:40:2f:f6:98:f6:c6:86:86:fa:49:
58:62:12:42:69:ba:39:a7:34:c4:34:9d:e9:03:56:
4e:e6:f5:47:15:21:e1:6b:da:10:3b:c7:8e:40:4b:
61:38:15:4e:5f:31:dd:08:59:c4:45:6d:e5:ba:27:
83:f3:e3:3d:04:b6:dd:d6:e8:ee:19:cd:27:e9:7d:
4f:92:93:9c:dc:fb:7c:4a:69:8e:bd:73:b0:b7:e1:
c4:26:17:f0:9e:61:c1:56:06:45:09:d5:ea:fd:04:
a3:bf:ec:23:c9:2b:02:3a:e3:2d:ea:61:74:6d:13:
90:82:87:85:70:67:68:3e:1e:7c:e5:23:71:c8:ec:
bb:17:7a:f9:d0:84:2b:3b:72:19:5d:7c:aa:b0:d3:
85:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:29:2D:C6:60:77:E5:77:AB:E4:4C:9A:E8:B5:BA:0B:29:38:C6:25
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5yktxmB35Xer5Eya6LW6Cyk4xiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/23
45.142.211.0/24
45.151.136.0/22
80.76.40.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
9a:07:ba:20:df:b0:a0:c8:b0:f0:2c:b7:42:a8:97:e7:b9:42:
2f:bf:1e:b8:f5:49:58:35:ad:71:6e:0e:94:47:f0:9a:c3:33:
e6:ff:9d:63:2b:cb:af:94:a1:ae:37:56:f4:d1:3c:9e:55:67:
22:35:d7:3d:39:b8:41:b6:4f:c4:59:87:b8:61:d3:94:20:3f:
ae:db:94:5b:af:99:98:44:76:bf:46:bd:b5:5f:ed:55:5b:7d:
65:a5:7d:5a:e5:52:e4:d0:67:b0:c8:77:61:c3:97:db:bb:5c:
e0:9e:a9:5a:04:1f:2e:27:1b:49:21:cd:cd:c8:52:a6:5e:17:
b2:87:93:75:d2:20:f6:24:ab:97:ee:da:6d:d2:fa:26:2d:7a:
c8:cd:61:7c:16:50:bd:f7:7f:f2:83:a8:83:fa:c1:e7:34:dd:
47:91:c9:f0:9b:83:1a:1b:fb:9d:de:fa:f4:7e:f6:20:88:d8:
93:f8:9a:4b:6e:64:76:53:04:a7:9f:fa:38:1c:76:e7:22:12:
5d:21:5e:8e:00:3e:22:f5:69:28:3a:c7:ab:b6:c9:e9:2f:91:
b9:d3:09:5d:37:b2:c6:c7:7c:51:b3:26:9f:79:5c:4a:82:31:
2f:68:3f:cf:db:72:b4:2b:fc:72:34:e5:74:a5:f4:b3:7a:f3:
b4:52:34:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org