Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/C0mcOwDPzbao2aLYDVrJAGLrVns.roa
File: C0mcOwDPzbao2aLYDVrJAGLrVns.roa (raw, json)
Hash identifier: w0ItrkASqXSt91Wh4+PAXIkHbTwYpozY0Akvki4jh9k=
Subject key identifier: 0B:49:9C:3B:00:CF:CD:B6:A8:D9:A2:D8:0D:5A:C9:00:62:EB:56:7B
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018B3C0986F25B914A4BAD81E1D4DFCE2183
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/C0mcOwDPzbao2aLYDVrJAGLrVns.roa
Signing time: Tue 17 Oct 2023 05:08:59 +0000
ROA not before: Tue 17 Oct 2023 05:08:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:a000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Fri 20 Oct 2023 13:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:09:86:f2:5b:91:4a:4b:ad:81:e1:d4:df:ce:21:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Oct 17 05:08:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b499c3b00cfcdb6a8d9a2d80d5ac90062eb567b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:39:1e:50:93:c8:8c:57:33:d2:67:bc:6d:8a:
3e:08:f1:c1:e3:fe:c0:14:8c:21:9b:3d:de:cb:92:
37:d0:fc:07:14:46:f6:2a:b1:40:b8:21:03:0c:76:
5d:ce:26:16:fd:7b:6d:ac:a0:6b:b8:f6:da:0c:b4:
2f:cd:51:ed:6c:90:70:55:68:0d:ba:a3:33:ed:d6:
7e:ce:ff:82:82:cf:3e:77:cb:e8:c3:ff:9e:8b:b0:
f7:4b:83:bc:c4:7b:56:1f:20:46:4f:1b:49:88:06:
44:c0:7c:70:c9:b9:e8:70:5e:8c:8f:84:bd:91:2d:
f2:b9:64:79:48:48:c1:2e:5f:31:16:ea:ca:55:e5:
aa:d6:aa:85:ce:36:3b:40:3e:71:35:0b:80:a5:b3:
a4:a9:58:ae:96:2a:ec:13:a9:54:2b:d3:fd:66:ac:
5c:53:8d:43:92:8a:19:2f:89:de:84:89:49:62:8b:
fa:91:c4:e1:8d:45:8a:01:8a:9f:3d:8b:d1:34:2a:
0f:99:ec:02:b4:9d:c0:f1:4f:94:56:e0:75:09:57:
1e:49:8e:56:d0:ba:4b:6d:d2:64:f7:0e:18:d4:07:
61:01:60:87:67:98:ae:fb:50:a1:a4:7d:fc:37:23:
06:6b:27:58:db:43:ae:09:32:85:82:88:40:69:fe:
7a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:49:9C:3B:00:CF:CD:B6:A8:D9:A2:D8:0D:5A:C9:00:62:EB:56:7B
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/C0mcOwDPzbao2aLYDVrJAGLrVns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/23
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3800::/32
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:200:a000::/36
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
30:f9:52:a4:b8:7e:90:46:8b:4a:9f:1a:ff:c4:2f:79:9a:da:
55:14:19:c5:9d:6a:85:bc:e6:0d:29:82:bb:6b:a7:ee:24:38:
b3:d6:a7:08:e1:b7:75:76:a1:79:cb:2c:63:8e:40:59:03:9c:
00:17:9d:61:6b:66:80:d7:fd:7a:59:f7:28:9a:7d:7d:df:1e:
8e:c2:74:87:0b:e8:91:9d:73:42:bb:66:de:c8:c0:6d:f7:7a:
50:c4:65:69:36:ed:44:75:cc:02:8f:a8:8e:fe:7c:df:f1:e8:
6e:7c:ae:64:26:f0:5e:0e:34:d3:f0:f7:c8:a6:09:41:b6:37:
ce:1a:12:ab:d5:0e:5a:35:f7:c6:32:85:03:77:54:a8:bd:d3:
b6:f2:8b:50:08:17:c0:8f:98:7f:d5:75:cb:08:1d:ab:cc:eb:
9f:de:fb:09:73:14:dd:85:1a:30:82:d8:0c:43:1d:44:2f:7f:
2c:ad:df:e1:f1:33:de:af:cf:23:cf:97:e0:5f:2a:99:d5:1e:
36:c6:a3:b2:ea:8f:84:59:bd:8d:c8:5b:e5:e9:8a:c1:0b:fb:
b3:aa:cf:31:3b:68:03:da:00:da:2e:5c:03:97:a9:9d:dd:14:
c2:2b:f5:af:e1:ff:be:3e:a8:13:f1:14:7d:23:0b:0d:20:89:
16:1f:a0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org