Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ElmWo8VwMxTPv2fRc97ePpqVEAo.roa
File: ElmWo8VwMxTPv2fRc97ePpqVEAo.roa (raw, json)
Hash identifier: BxWXKR/SiNrs2bl3DyODGDzscTlIWatklFsSsFechN0=
Subject key identifier: 12:59:96:A3:C5:70:33:14:CF:BF:67:D1:73:DE:DE:3E:9A:95:10:0A
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018CED7C13910867D751B07A4504E98F02CC
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ElmWo8VwMxTPv2fRc97ePpqVEAo.roa
Signing time: Tue 09 Jan 2024 09:09:40 +0000
ROA not before: Tue 09 Jan 2024 09:09:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.240.0/24 maxlen: 24
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a11:205::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a11:200:8000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a12:7c00::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804:1000::/36 maxlen: 36
2a09:3804:2000::/36 maxlen: 36
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Thu 11 Jan 2024 07:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:7c:13:91:08:67:d7:51:b0:7a:45:04:e9:8f:02:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 9 09:09:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=125996a3c5703314cfbf67d173dede3e9a95100a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c2:67:9f:80:79:64:df:0d:c6:51:86:a9:23:
16:8b:a8:50:20:a5:66:55:d6:1f:da:39:d3:f1:cc:
ff:15:20:33:a2:20:fa:e0:fd:41:05:08:6d:da:d4:
a1:71:8b:8a:f2:20:a8:ba:3c:27:69:98:4d:5b:d7:
57:ea:54:8d:d9:64:9c:be:ea:30:3c:e1:42:74:96:
8a:56:55:13:3f:94:cb:61:91:32:a6:30:da:a8:66:
30:e9:a2:92:24:be:ff:2e:2b:6c:6c:5d:5a:3d:70:
4b:b1:ac:98:37:6d:00:97:e0:40:e9:bd:95:f3:e3:
57:c7:ec:b6:be:2c:5c:58:db:0c:51:42:70:b6:f8:
3f:2c:f5:1d:1a:8c:91:d6:7e:47:1e:3c:f2:54:77:
57:ac:13:15:cb:a8:9d:93:65:17:40:c7:98:50:98:
2f:46:c2:d2:db:ea:74:1b:91:89:ad:07:aa:68:16:
63:31:1b:20:a2:4e:69:63:16:96:fd:e6:42:f4:66:
8b:bc:b7:aa:a2:ff:b4:76:67:7e:54:a1:47:e3:59:
81:22:17:c6:c7:72:f4:ce:6b:3b:52:5c:19:36:f8:
99:50:5d:9b:68:79:d7:8c:b6:e3:46:1d:42:1a:0e:
78:43:a1:01:42:8c:78:ed:a0:59:0a:48:37:4a:2d:
d3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:59:96:A3:C5:70:33:14:CF:BF:67:D1:73:DE:DE:3E:9A:95:10:0A
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ElmWo8VwMxTPv2fRc97ePpqVEAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:2fff:ffff:ffff:ffff:ffff:ffff
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a09:bd80::/32
2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
2a12:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
aa:48:7d:a9:e8:2e:d6:d1:4e:f6:fb:fe:42:22:4a:f7:e8:f0:
da:6b:47:b1:20:fb:e7:de:da:27:e9:c7:bb:7e:40:f1:e2:8c:
db:24:71:9b:2d:94:38:5e:b6:de:23:1a:ea:44:0e:79:81:61:
a7:e1:aa:6d:00:06:64:18:41:93:a3:42:cc:10:55:8f:b3:59:
8d:12:fc:1e:2e:3b:7a:fa:ed:68:9c:67:50:13:a8:9a:2b:ad:
57:4d:86:ce:63:07:b2:81:4d:fa:1c:36:bf:cc:b2:13:46:59:
aa:e9:70:eb:45:66:80:84:48:6b:0a:dd:dc:9b:1c:b4:da:6a:
c0:b4:1d:31:de:69:02:36:4c:4b:bd:97:49:d7:aa:c5:31:f8:
00:f0:ec:1f:61:34:79:47:ed:de:58:81:e3:e9:9a:40:92:f3:
06:ea:ad:be:b6:28:aa:31:fd:e4:48:3a:45:34:51:5b:3d:d2:
84:08:cc:a4:04:cc:0e:da:77:f5:96:7f:a2:0e:78:fb:3a:8d:
18:a6:34:23:a9:68:d9:29:4a:d8:50:1e:e3:2b:91:fb:d7:41:
67:a2:00:3b:a9:04:f4:09:86:c4:c4:d8:73:87:d0:47:c0:62:
e9:ef:dd:ba:82:5b:fb:39:8b:a9:1d:b6:9e:36:df:97:28:28:
36:ee:2b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org