Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/AQGy5MLF7GEPOK6vzndjw5xb4DU.roa
File: AQGy5MLF7GEPOK6vzndjw5xb4DU.roa (raw, json)
Hash identifier: jSXeu+KoDcevyHh1m4DebFYcRWiheT2Ib897qsSVxcY=
Subject key identifier: 01:01:B2:E4:C2:C5:EC:61:0F:38:AE:AF:CE:77:63:C3:9C:5B:E0:35
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018CB4DDB71DF3F7A61C9F4B0B287875278A
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/AQGy5MLF7GEPOK6vzndjw5xb4DU.roa
Signing time: Fri 29 Dec 2023 09:17:58 +0000
ROA not before: Fri 29 Dec 2023 09:17:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a11:200:5000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804:2000::/36 maxlen: 36
2a09:3804::/36 maxlen: 36
2a09:3804:1000::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:dd:b7:1d:f3:f7:a6:1c:9f:4b:0b:28:78:75:27:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Dec 29 09:17:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0101b2e4c2c5ec610f38aeafce7763c39c5be035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a1:ea:25:8f:d8:9c:6d:4d:55:f1:16:c5:ee:
b8:eb:e7:7d:ce:c2:3e:69:78:33:ef:cf:ea:bd:f2:
cb:3d:1a:67:68:77:ac:74:6b:a9:69:b9:43:f9:0d:
4d:eb:44:0b:a5:d4:65:0a:16:f7:3b:17:c2:19:2b:
9e:99:4d:e8:11:43:5f:75:ca:d0:4b:64:e0:aa:92:
52:c7:0b:df:96:7a:24:7f:65:13:7d:20:e1:f8:f6:
de:56:e2:32:83:14:c3:65:cc:c5:21:ba:d0:c6:0c:
24:42:bd:13:88:15:5e:36:94:44:11:7a:b0:09:34:
07:af:cb:7b:c0:38:59:45:84:6e:0a:65:01:43:d7:
9f:1a:36:04:6d:a8:74:4c:43:1c:1f:7d:ad:37:b4:
5d:3d:cb:e0:4f:a0:ef:24:c3:0e:57:50:da:86:1b:
5b:79:02:af:9b:56:e6:0e:2d:b4:08:5a:16:ee:90:
e1:f2:fe:f2:25:f0:a4:b2:11:bf:23:ad:10:0b:76:
8a:bc:7f:5f:af:7f:c6:10:7d:3b:6d:73:91:41:fb:
fe:2b:2c:7f:49:31:49:45:c0:65:e0:6a:13:c7:a2:
96:ef:75:5b:eb:63:18:cf:b4:e1:0a:70:9e:ea:e9:
9b:53:7c:72:fc:73:49:15:ec:d5:b4:21:50:56:18:
71:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:01:B2:E4:C2:C5:EC:61:0F:38:AE:AF:CE:77:63:C3:9C:5B:E0:35
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/AQGy5MLF7GEPOK6vzndjw5xb4DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:2fff:ffff:ffff:ffff:ffff:ffff
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a09:bd80::/32
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
b5:a3:be:bb:54:de:1b:bb:ce:37:eb:c1:92:81:98:b2:7b:ac:
f9:25:09:20:d4:91:d6:85:45:7c:33:cd:75:8f:c0:8e:77:ac:
b5:95:5c:27:00:1b:de:df:72:6b:50:d0:1a:b9:f4:3a:7d:01:
73:4a:82:1a:5c:fc:d1:26:35:70:da:cb:55:2d:65:65:1e:24:
53:6f:90:03:5e:19:e0:17:7f:3e:6c:0b:cd:cb:c7:34:e8:c2:
ae:5c:99:e9:d4:35:6a:a4:e3:17:8e:6e:d2:1f:7f:f4:a4:79:
1f:6e:7c:c7:44:99:35:01:50:c3:c3:ab:ac:62:e7:c2:a4:34:
ba:e8:0f:d6:46:a8:b7:36:03:3d:b2:9d:07:44:5b:e9:3e:27:
10:e3:0d:66:ad:b7:18:ba:d0:79:22:9a:12:ae:2c:2e:f3:4d:
02:d7:b9:3e:c4:2a:66:ce:ed:86:e7:f0:76:39:94:df:25:27:
14:30:47:b9:78:50:77:14:fa:a9:5d:bb:8b:c5:06:77:65:b3:
ca:25:c2:9e:55:cb:4c:fe:cc:44:f4:21:82:4a:27:71:bd:23:
f6:45:bf:30:24:b9:35:f2:b6:09:db:fb:42:57:fb:c2:e0:eb:
b6:ec:c2:77:f8:6b:2b:be:21:69:a5:d1:0c:c0:bf:79:ca:52:
71:dc:0d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org