Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/QRG0P8uK_zQpgvUw_BeauASTvTc.roa
File: QRG0P8uK_zQpgvUw_BeauASTvTc.roa (raw, json)
Hash identifier: lVSagOR2t3gG9zJhuWMDs/Qn8yKLJNf93P3Z4DBIFLs=
Subject key identifier: 41:11:B4:3F:CB:8A:FF:34:29:82:F5:30:FC:17:9A:B8:04:93:BD:37
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018C3401C9F73F9D475E70F5465BAF205B0A
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/QRG0P8uK_zQpgvUw_BeauASTvTc.roa
Signing time: Mon 04 Dec 2023 08:46:21 +0000
ROA not before: Mon 04 Dec 2023 08:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:a000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:01:c9:f7:3f:9d:47:5e:70:f5:46:5b:af:20:5b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Dec 4 08:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4111b43fcb8aff342982f530fc179ab80493bd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:68:e7:83:f3:83:a2:29:f5:25:6b:72:7c:68:
a3:77:51:8b:e8:d6:e2:8d:9c:ce:a3:c4:92:99:db:
86:64:33:1b:e1:92:d1:b4:a4:3b:6b:f3:a7:22:e9:
d6:71:95:2a:8d:6c:2a:2b:ff:ac:fa:c6:68:95:7b:
26:d5:50:d8:1f:fb:35:e0:47:3c:09:f0:16:36:e2:
bf:54:19:97:bc:b0:a1:93:da:d2:73:e9:f7:55:26:
6c:60:50:18:5e:41:e5:5c:af:89:af:46:87:e4:b9:
cd:ce:1e:44:0f:07:73:a9:e6:ac:8b:13:14:ae:43:
e4:9e:3d:0c:d3:cc:10:d4:99:ff:1a:7e:dd:f5:0a:
8e:e5:5a:d8:c9:90:f8:d3:2f:0c:de:75:2b:7e:2f:
16:ab:b6:7f:5f:bd:9f:91:d4:6c:01:54:3b:0b:33:
23:78:36:5d:b5:d6:c3:ce:ae:c6:d5:cf:a1:78:44:
5f:bc:00:6d:aa:97:88:1f:b2:ef:1b:f9:64:38:72:
84:17:5c:e7:f6:38:47:a4:e3:bb:69:73:0e:df:b1:
b6:39:8a:2c:dc:76:79:7f:05:f8:1f:9f:5d:f6:de:
2c:f9:04:b4:3e:92:1e:1b:37:95:a5:fb:5a:c5:36:
2f:25:00:14:c1:ac:9c:5d:49:da:ed:fe:1a:6b:f9:
0c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:11:B4:3F:CB:8A:FF:34:29:82:F5:30:FC:17:9A:B8:04:93:BD:37
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/QRG0P8uK_zQpgvUw_BeauASTvTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::/36
2a09:3805::/32
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
5a:cf:63:30:5f:1f:b4:02:a3:fb:4a:a0:77:fe:55:35:00:be:
c2:36:72:19:0e:f9:e3:19:f2:62:75:7f:2c:fd:b1:24:41:ad:
79:cc:00:2c:91:67:50:5a:e4:ca:80:cc:16:f4:98:b3:ae:fb:
a7:09:d4:f3:bc:5f:bd:c8:75:55:fa:56:35:9f:07:26:5a:ef:
5c:b5:f5:7f:f2:1a:70:25:e6:12:b3:8d:95:97:90:27:84:a1:
99:bd:eb:d9:14:14:3a:85:9f:1d:a0:10:82:99:83:97:ca:35:
6f:32:72:98:96:a1:dd:85:a4:b3:26:5f:4b:f2:cc:2f:37:49:
ae:85:4b:57:b5:92:2a:3c:0e:d0:56:13:70:3c:41:7e:97:65:
9b:4b:fe:e8:bf:46:7c:63:15:07:78:45:91:e3:b4:63:47:f7:
6c:01:1a:b2:fe:20:48:1c:e8:28:59:70:92:81:d1:8d:35:26:
93:f2:2b:1d:3d:af:c3:96:85:47:78:18:87:41:b0:a2:d0:ea:
7d:53:e0:b1:fb:08:3d:a1:7f:37:da:8b:33:ac:37:f6:44:d6:
c0:53:b6:6f:64:95:0a:fc:f3:c1:bc:0c:b8:97:15:33:7d:fa:
2a:8c:bb:57:8f:ce:27:ea:f0:f9:ba:0a:6f:f3:23:27:c0:80:
37:2b:b7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 5 05:42:49 2023 by rpki-client on console-fra.rpki-client.org