Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/9ogNS2rRRJBLVLGxxzwZYcANFnU.roa
File: 9ogNS2rRRJBLVLGxxzwZYcANFnU.roa (raw, json)
Hash identifier: yDOXlQDyWJjyuLucvbuiGyXExmLk/j9AOtKepmPWAfY=
Subject key identifier: F6:88:0D:4B:6A:D1:44:90:4B:54:B1:B1:C7:3C:19:61:C0:0D:16:75
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018BEC0F360732B2739D6BF52A815232C6DF
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/9ogNS2rRRJBLVLGxxzwZYcANFnU.roa
Signing time: Mon 20 Nov 2023 09:28:21 +0000
ROA not before: Mon 20 Nov 2023 09:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:a000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Mon 20 Nov 2023 09:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:0f:36:07:32:b2:73:9d:6b:f5:2a:81:52:32:c6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 20 09:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6880d4b6ad144904b54b1b1c73c1961c00d1675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7a:e1:94:e9:07:ce:46:08:26:26:93:ef:27:
91:c0:55:73:25:fc:f1:d2:b6:46:0d:49:a6:7e:b0:
9f:5e:21:f2:b1:c8:ee:fe:c2:57:96:fd:11:44:86:
32:fd:ec:67:65:57:69:6f:47:c7:49:da:2f:a2:48:
77:38:32:d0:a1:b2:a6:42:21:c1:6b:77:f5:30:5c:
72:a0:18:92:61:4a:4f:93:23:5f:94:47:7a:45:dc:
09:72:92:6e:26:af:5b:b0:db:56:d1:b0:41:50:58:
46:a7:44:c1:63:a6:3c:19:94:db:2e:36:a7:2a:81:
1a:b0:e7:dc:62:af:35:68:09:e7:45:6c:5d:e1:10:
2d:4a:d1:14:d3:48:fa:08:5d:02:a9:69:0f:00:6d:
1c:0d:85:ba:17:83:9c:ef:e4:71:b5:b5:75:1f:24:
cf:fd:2f:d1:aa:7d:b8:1c:91:8a:ad:fc:54:c6:4f:
51:26:12:a5:9f:85:24:58:d9:4a:3f:29:24:a4:e7:
b0:4f:43:4f:35:d8:fe:ac:51:88:d5:b3:b6:00:70:
3c:d3:9a:2d:9a:30:66:74:a3:1c:e7:e9:69:71:10:
53:71:1e:d8:1f:d3:51:57:1d:b5:ad:ed:65:13:3f:
c7:84:d4:09:41:fb:5c:2d:43:5d:17:1c:80:d2:b9:
6e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:88:0D:4B:6A:D1:44:90:4B:54:B1:B1:C7:3C:19:61:C0:0D:16:75
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/9ogNS2rRRJBLVLGxxzwZYcANFnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3506::/32
2a09:3800::/31
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:200:a000::/36
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
93:8a:d0:ac:a0:28:48:16:40:f6:3d:39:b6:15:52:72:5f:66:
ea:53:18:c3:92:c3:af:1f:bd:79:3a:76:4e:46:c7:d8:89:e1:
af:51:1c:8b:e0:97:a0:35:60:08:8d:12:09:ee:c3:33:54:a2:
f3:8a:09:67:8f:53:2c:65:d5:25:3c:3e:a6:ce:5e:dd:db:20:
b4:0c:d7:52:d0:40:65:8c:fa:5b:df:cd:3a:d9:b4:a6:7a:d7:
50:b4:aa:42:f9:95:e1:28:19:f3:22:3a:a2:95:c6:48:5b:69:
48:f1:ba:61:d9:36:0c:a3:ec:da:dd:3c:de:36:1a:0d:5a:8f:
d4:58:41:8b:db:0d:db:fd:17:80:33:ea:ad:6d:27:64:f0:cd:
8b:52:c6:f3:67:c9:1f:81:3f:28:bd:49:e9:a5:d8:09:e7:6a:
8b:31:7f:77:f6:56:11:32:ef:40:d9:12:f7:4e:f0:60:e5:d8:
10:79:7d:f9:c3:65:07:fb:a6:46:f4:34:71:ba:40:0c:32:05:
71:a1:a3:c8:20:02:fd:5a:b5:1f:9b:64:e2:ea:07:a4:f9:92:
7f:bd:c2:d3:ee:41:85:de:ee:09:e6:da:73:56:45:6c:77:a3:
79:c3:a4:65:03:2f:80:89:85:18:14:d8:e4:1e:a6:f2:03:08:
17:fc:4d:de
-----BEGIN CERTIFICATE-----
MIIGODCCBSCgAwIBAgISAYvsDzYHMrJznWv1KoFSMsbfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjMxMTIwMDkyODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjg4MGQ0YjZhZDE0NDkwNGI1NGIxYjFjNzNjMTk2MWMwMGQxNjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXrhlOkHzkYIJiaT7yeRwFVzJfzx
0rZGDUmmfrCfXiHyscju/sJXlv0RRIYy/exnZVdpb0fHSdovokh3ODLQobKmQiHB
a3f1MFxyoBiSYUpPkyNflEd6RdwJcpJuJq9bsNtW0bBBUFhGp0TBY6Y8GZTbLjan
KoEasOfcYq81aAnnRWxd4RAtStEU00j6CF0CqWkPAG0cDYW6F4Oc7+RxtbV1HyTP
/S/Rqn24HJGKrfxUxk9RJhKln4UkWNlKPykkpOewT0NPNdj+rFGI1bO2AHA805ot
mjBmdKMc5+lpcRBTcR7YH9NRVx21re1lEz/HhNQJQftcLUNdFxyA0rlujwIDAQAB
o4IDRDCCA0AwHQYDVR0OBBYEFPaIDUtq0USQS1Sxscc8GWHADRZ1MB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvOW9nTlMyclJSSkJMVkxHeHh6d1pZY0FORm5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWAYIKwYBBQUHAQcBAf8EggFHMIIBQzAqBAIAATAkAwQA
LY7SAwQALZeLAwQCU6vwAwQAVDYkAwQAX9dtAwQAwnFpMIIBEwQCAAIwggELAwUD
KgbZAAMGBCoJNQWQAwUAKgk1BgMFASoJOAADBQMqCTsAAwUDKgk9ADAQAwYEKglO
ATADBgUqCU4BQDAQAwYEKglOAZADBgQqCU4BoAMFACoJTgMDBQMqCbaAAwUAKgwh
BAMFAyoM6MADBQMqDV7AMA4DBQAqDYsDAwUAKg2LBAMFACoPzIEDBgQqD8yHAAMF
AyoQwMADBQMqEMNAAwYEKhECAAADBgUqEQIAQDAQAwYEKhECAHADBgQqEQIAgAMG
BCoRAgCgMA4DBQAqEQIBAwUAKhECAgMFAioRAgQDBQMqEQeAAwUDKhEJgAMFAyoR
C4ADBQAqEQ6CAwYEKhEOh2ADBQAqEa8BMA0GCSqGSIb3DQEBCwUAA4IBAQCTitCs
oChIFkD2PTm2FVJyX2bqUxjDksOvH715OnZORsfYieGvURyL4JegNWAIjRIJ7sMz
VKLziglnj1MsZdUlPD6mzl7d2yC0DNdS0EBljPpb38062bSmetdQtKpC+ZXhKBnz
IjqilcZIW2lI8bph2TYMo+za3TzeNhoNWo/UWEGL2w3b/ReAM+qtbSdk8M2LUsbz
Z8kfgT8ovUnppdgJ52qLMX939lYRMu9A2RL3TvBg5dgQeX35w2UH+6ZG9DRxukAM
MgVxoaPIIAL9WrUfm2Ti6gek+ZJ/vcLT7kGF3u4J5tpzVkVsd6N5w6RlAy+AiYUY
FNjkHqbyAwgX/E3e
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org