Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ABljJwkmASZDO0wrXbdR7SjL2qo.roa
File: ABljJwkmASZDO0wrXbdR7SjL2qo.roa (raw, json)
Hash identifier: egTM4g1UJ6vXJiqXmol0UvScQ249H9qIA8qNtgJ6GQQ=
Subject key identifier: 00:19:63:27:09:26:01:26:43:3B:4C:2B:5D:B7:51:ED:28:CB:DA:AA
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018CF7807800FD65234D668E9D8EEA10FCAF
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ABljJwkmASZDO0wrXbdR7SjL2qo.roa
Signing time: Thu 11 Jan 2024 07:50:40 +0000
ROA not before: Thu 11 Jan 2024 07:50:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.240.0/24 maxlen: 24
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a11:205::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a11:200:a000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a12:7c00::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a11:af02::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:3804:2000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804:1000::/36 maxlen: 36
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Fri 12 Jan 2024 09:21:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:80:78:00:fd:65:23:4d:66:8e:9d:8e:ea:10:fc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 11 07:50:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0019632709260126433b4c2b5db751ed28cbdaaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:66:50:ef:e1:59:a3:74:ec:32:98:db:83:
3b:db:5b:f1:0d:1c:ae:fb:31:52:5f:a1:c3:1c:90:
00:42:f0:80:5c:20:78:ae:53:91:51:8d:1f:c8:f7:
e0:8c:44:7f:be:49:2d:da:07:23:b8:09:e7:31:7a:
ea:96:a0:18:da:a7:30:f8:dd:cf:10:0d:bd:0e:09:
1e:5c:ba:83:bd:24:5a:ff:94:80:ad:f3:04:33:a3:
1e:38:b9:33:a9:92:74:d1:37:f5:b7:cd:f9:33:df:
87:f2:61:d0:6a:17:51:79:f5:90:ff:83:b2:e8:2a:
75:88:4f:b7:1d:c2:af:36:5a:79:6d:e0:4d:fe:7f:
ed:c2:84:8a:b7:9b:7d:c7:35:62:c1:e9:56:76:24:
a3:d0:50:b0:b6:7e:ca:95:98:1b:89:44:85:ad:45:
34:46:24:db:7d:4c:41:68:3c:ea:94:a7:57:01:3c:
9e:32:c1:d4:af:fd:d6:4d:f7:40:f0:39:36:0a:f8:
d1:5a:ed:d3:d7:e5:78:fd:0e:a4:21:7c:16:03:f9:
78:aa:4e:8d:e4:0a:98:77:55:bd:f1:09:69:33:ad:
34:bc:c5:62:de:a1:d1:03:9b:eb:0d:df:dc:e8:cf:
0a:ee:8b:84:4e:88:ce:d5:a6:c9:e1:2b:b6:fb:de:
c8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:19:63:27:09:26:01:26:43:3B:4C:2B:5D:B7:51:ED:28:CB:DA:AA
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ABljJwkmASZDO0wrXbdR7SjL2qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:2fff:ffff:ffff:ffff:ffff:ffff
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a09:bd80::/32
2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::-2a11:af02:ffff:ffff:ffff:ffff:ffff:ffff
2a12:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
b6:44:ed:32:47:17:dc:12:34:46:64:6b:6e:89:51:23:fc:93:
3f:76:73:0d:a3:55:39:86:15:98:13:b0:06:fd:a7:1b:e7:5c:
69:df:a5:2a:e7:ef:c7:13:18:9c:b2:71:c6:01:30:cb:4a:78:
86:3f:ef:25:30:b3:03:a0:14:d3:9d:f9:72:09:b2:2d:70:05:
ca:a0:14:d0:47:55:bd:7a:6e:2a:e1:33:dc:9d:fe:92:b0:9f:
3e:0b:e3:ef:26:a3:35:61:63:c1:04:cd:3d:27:b9:dc:3a:16:
ae:14:36:c7:5a:16:af:31:15:3c:1c:eb:dd:91:53:35:e4:1f:
28:e7:8c:23:cf:45:9c:82:40:81:6b:45:9b:3b:22:c1:b7:f6:
30:78:c7:7b:ad:b9:79:56:1b:c5:de:56:56:03:57:68:f7:04:
6c:f8:65:46:dc:47:c0:69:60:cd:a9:23:17:5d:8a:4e:64:9d:
b3:ee:e5:27:eb:4a:68:db:ee:d5:1d:33:cb:a3:8f:c6:83:49:
6e:fb:88:b5:8b:d7:17:ed:33:19:23:3f:8d:6b:1b:4e:f5:39:
b8:4e:82:46:70:23:76:23:4f:da:78:5f:e8:6b:39:47:54:1a:
09:af:4f:1e:2b:f9:d6:d2:31:18:50:f6:7c:9c:19:3f:7f:17:
4e:1d:e8:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org