Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/KSCOycVMDD2x2s-yRGb97nMW-3M.roa
File: KSCOycVMDD2x2s-yRGb97nMW-3M.roa (raw, json)
Hash identifier: XMI7ANv8g0KmBxsbuTskwnEKnQfja2kBjN0Vt5TYZ54=
Subject key identifier: 29:20:8E:C9:C5:4C:0C:3D:B1:DA:CF:B2:44:66:FD:EE:73:16:FB:73
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018C144AE4FEF7961DA26E6F91B154DC9B92
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/KSCOycVMDD2x2s-yRGb97nMW-3M.roa
Signing time: Tue 28 Nov 2023 04:58:21 +0000
ROA not before: Tue 28 Nov 2023 04:58:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:a000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Wed 29 Nov 2023 06:16:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:14:4a:e4:fe:f7:96:1d:a2:6e:6f:91:b1:54:dc:9b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 28 04:58:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29208ec9c54c0c3db1dacfb24466fdee7316fb73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:58:81:de:94:e4:0a:9c:b1:67:4d:40:5a:fc:
11:ff:55:4d:1b:63:99:9c:42:46:8e:cf:c5:b6:fc:
1c:95:2e:9a:1a:a1:9d:f2:e4:e0:75:53:5c:20:a1:
41:b8:41:92:c4:df:5c:ca:15:f2:17:26:a9:ca:bb:
7e:67:5e:cc:c3:5d:51:3c:1e:ec:b4:e9:9c:26:f8:
a2:76:66:ce:72:12:d4:1c:c2:b7:4a:7f:f5:51:84:
ce:c4:89:22:9e:2e:a4:8b:57:e1:a7:74:25:e9:d2:
a7:3f:e4:29:8d:9b:ae:cf:f2:89:48:4a:6e:f0:36:
34:2f:ad:cd:1e:a4:6f:7a:15:36:9c:2f:cb:c8:56:
19:87:22:6d:a0:b6:fe:64:e9:1e:c6:46:44:22:a2:
ad:90:26:ac:7c:fe:b0:a7:88:21:a2:31:1f:7d:7d:
4d:0f:80:46:44:68:77:87:8c:68:4c:7f:4a:fe:57:
fc:6f:8e:77:eb:15:33:43:4c:9f:2e:14:9c:9c:c5:
85:f9:ea:dd:57:16:83:de:a3:85:bc:72:63:15:70:
05:86:8e:2a:8d:13:7d:f2:22:15:4d:62:59:6f:a1:
bb:a1:6f:2c:9e:06:6a:d7:db:7f:1d:f0:31:8c:54:
a7:fd:ee:a0:23:38:3b:8c:13:90:10:b6:20:11:48:
61:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:20:8E:C9:C5:4C:0C:3D:B1:DA:CF:B2:44:66:FD:EE:73:16:FB:73
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/KSCOycVMDD2x2s-yRGb97nMW-3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::/36
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
4c:94:fc:a8:85:4d:b6:fb:c3:c1:4f:cf:da:89:a8:8f:da:3d:
e0:f4:b1:a8:d7:f5:9e:be:e7:09:df:94:d1:68:30:b5:61:66:
c2:8f:03:3b:dd:18:f6:65:b7:6b:c3:d0:4a:95:89:6f:92:83:
08:67:87:3a:c8:ca:fc:bb:12:f3:38:32:69:1a:18:68:58:ee:
91:ea:ca:90:83:43:39:0a:f1:bf:8e:55:97:60:38:78:df:35:
83:62:aa:3e:64:ba:d7:35:15:93:c8:bc:7d:34:71:e6:f2:a7:
3a:d5:35:20:16:dd:22:0b:6a:30:44:e0:f5:ce:1a:6c:e1:38:
95:ec:3a:5a:9b:9b:c4:68:52:c4:e8:58:2e:85:96:5b:fb:89:
51:fd:1f:d1:86:1e:eb:59:f4:6f:d2:79:5a:45:78:1e:80:10:
0e:75:f7:fa:be:18:b5:98:ad:58:e4:b2:17:80:fe:ab:af:1c:
10:20:1f:2e:99:24:59:3e:2f:91:aa:eb:47:b0:87:d5:80:f8:
bf:49:96:45:0f:56:94:0b:0b:8e:03:df:ea:1e:37:a9:3b:82:
19:6e:42:b2:f9:05:d8:5b:0c:bb:fd:c1:63:58:64:16:35:f1:
d2:91:96:0f:b7:fd:d1:94:33:6a:7b:9c:40:03:af:1a:98:84:
fa:37:59:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org