Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/6NvUyvpMggHDG0gAO5AsrdtDkUo.roa
File: 6NvUyvpMggHDG0gAO5AsrdtDkUo.roa (raw, json)
Hash identifier: UUgpVeHe+O8cz7s8iMVIkfx8aK0nHjPV0gk7yNztN/Y=
Subject key identifier: E8:DB:D4:CA:FA:4C:82:01:C3:1B:48:00:3B:90:2C:AD:DB:43:91:4A
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0188295FA53776E1344F089CBB5690BD04A7
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/6NvUyvpMggHDG0gAO5AsrdtDkUo.roa
Signing time: Wed 17 May 2023 11:01:54 +0000
ROA not before: Wed 17 May 2023 11:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/23 maxlen: 23
45.151.137.0/24 maxlen: 24
45.151.136.0/22 maxlen: 22
45.151.136.0/24 maxlen: 24
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.208.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:f000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:7000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 30 Aug 2023 07:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:5f:a5:37:76:e1:34:4f:08:9c:bb:56:90:bd:04:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: May 17 11:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8dbd4cafa4c8201c31b48003b902caddb43914a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7b:d5:0c:2e:b6:a4:fa:33:53:82:b1:c1:c0:
b9:3f:65:75:5b:75:1d:67:eb:3f:37:4a:81:9d:5e:
fd:bc:b5:93:a3:99:66:09:84:e4:dc:af:a0:03:ec:
22:6c:f1:f6:84:eb:e4:e6:4b:7c:68:ae:59:aa:ef:
6d:b1:8b:38:41:23:e6:c7:bf:b2:35:36:58:02:38:
f7:15:70:c4:c1:ca:02:e9:3a:44:61:01:5e:a0:9e:
20:79:a3:f2:1f:1e:23:6c:52:e3:bf:8d:67:fd:28:
05:5a:8f:07:e9:41:b2:73:2c:99:78:2b:84:f7:cb:
3e:8c:57:d2:dd:98:6f:59:6f:42:9a:53:08:87:d4:
a3:63:8b:d2:91:b0:1b:d5:45:45:15:31:17:bd:eb:
69:5a:e1:0b:fe:dc:57:6d:22:77:2e:f0:0b:c3:fe:
9a:19:6b:28:62:7d:be:a5:b7:72:d0:26:fc:79:cd:
08:99:c5:19:b9:7e:c8:9a:82:3b:f4:d0:59:17:6c:
aa:76:95:f0:f4:ad:05:26:37:7d:6b:7b:a2:98:df:
1a:55:1b:c2:1d:1f:b5:45:10:e2:c6:90:41:73:c2:
bd:ab:a3:9d:34:56:70:02:0b:f6:41:77:fd:18:fc:
85:ae:96:75:04:4a:22:fd:d5:63:f7:8b:a7:e9:64:
4b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DB:D4:CA:FA:4C:82:01:C3:1B:48:00:3B:90:2C:AD:DB:43:91:4A
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/6NvUyvpMggHDG0gAO5AsrdtDkUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/24
45.151.136.0/22
80.76.40.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
01:b4:95:74:e3:2d:17:ab:e3:de:68:b7:19:3a:ca:8e:e5:5f:
33:45:6d:e5:30:ab:8d:75:b2:8b:26:eb:4d:f6:e5:33:db:d4:
cc:4c:03:26:e0:2b:cc:51:e3:51:55:82:63:77:fc:0f:51:3e:
85:d4:1a:c0:c3:7a:b2:1f:d6:bb:ba:cc:09:cf:a2:fa:c7:50:
6f:62:d0:5c:77:44:5c:d1:aa:c8:c6:b9:63:3e:1c:32:e7:46:
29:53:6e:fa:c7:c5:91:36:d0:9f:d6:0d:a2:45:02:80:da:b9:
8f:5b:ed:01:22:39:50:ca:90:0f:fe:09:80:6b:9f:47:db:f5:
26:0f:26:9d:46:24:de:c6:77:c1:5f:79:a9:87:30:ab:c1:8d:
f7:9c:cc:ec:1c:32:b7:7c:69:14:1f:4d:aa:02:58:f5:52:e0:
8a:70:87:a7:8a:85:fe:c0:ef:21:d2:b4:5f:1d:65:86:03:97:
08:f4:f1:78:51:79:f7:bb:75:97:16:62:63:e7:d2:91:35:b7:
3c:ee:92:39:53:1f:99:66:85:42:f6:a2:db:7b:c8:51:c5:56:
7c:08:84:d8:50:75:ea:86:16:a5:a9:a5:9f:57:3c:3f:52:e6:
47:8f:47:7a:e0:e6:de:f3:f8:77:8b:6b:19:a5:9b:02:ad:da:
a1:3b:14:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org