Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Um4r4DdlJX9scLdu5Ku8OzfOQlk.roa
File: Um4r4DdlJX9scLdu5Ku8OzfOQlk.roa (raw, json)
Hash identifier: RbVQFKFCngMRUF+LFstITS0jUasG3sUyRKb++1stUpU=
Subject key identifier: 52:6E:2B:E0:37:65:25:7F:6C:70:B7:6E:E4:AB:BC:3B:37:CE:42:59
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018C1A8EE5E8B1471E75602E7C0D6726242D
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Um4r4DdlJX9scLdu5Ku8OzfOQlk.roa
Signing time: Wed 29 Nov 2023 10:10:21 +0000
ROA not before: Wed 29 Nov 2023 10:10:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a09:3805::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:d000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Mon 04 Dec 2023 08:46:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:8e:e5:e8:b1:47:1e:75:60:2e:7c:0d:67:26:24:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 29 10:10:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=526e2be03765257f6c70b76ee4abbc3b37ce4259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:21:e9:0b:ce:dc:49:8e:f6:13:03:f7:14:9b:
b6:d3:d6:25:f0:53:2c:61:eb:ca:70:4d:74:7c:8b:
83:0b:65:15:64:11:98:4b:e6:97:a2:63:8b:18:38:
50:0b:3a:40:2f:b1:94:df:b9:9b:63:62:f5:9e:7f:
47:71:e7:0a:f3:03:51:f3:b7:b5:cf:e9:0a:f5:c3:
14:eb:93:78:7f:40:c4:8c:1c:e7:3f:cb:3a:57:c6:
3c:a0:69:b6:1e:f5:07:68:91:16:1c:da:7d:6f:27:
84:54:8c:39:89:ab:6f:28:b3:0f:43:a1:e0:62:0d:
d6:d2:fe:3d:1a:37:5c:4d:87:cd:35:28:15:e2:7d:
7d:89:7f:48:09:bd:25:20:0b:0a:8e:41:1c:9f:c0:
58:26:2c:8e:1d:9d:f2:ee:0c:be:5d:8d:42:61:d5:
e1:14:9b:e7:0e:8e:01:34:e1:d5:5d:df:08:ae:0e:
59:8d:d3:d1:47:e6:21:81:c3:28:0d:dd:fe:fd:bd:
5f:ae:89:b3:7b:2b:1a:97:44:00:70:78:bf:86:e9:
4a:14:3b:86:ee:a4:ab:69:5d:12:84:61:48:51:32:
49:ac:34:2d:34:29:52:93:c7:04:47:1f:0d:19:56:
59:a6:18:ea:b8:78:72:17:07:43:d9:1d:6d:59:ff:
1b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6E:2B:E0:37:65:25:7F:6C:70:B7:6E:E4:AB:BC:3B:37:CE:42:59
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Um4r4DdlJX9scLdu5Ku8OzfOQlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::/36
2a09:3805::/32
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
0b:9e:b4:72:59:d3:b4:7e:b6:90:47:c9:c9:11:6b:1a:7c:8c:
f9:44:2a:cd:e6:2e:99:39:6c:0f:88:b0:f5:c4:52:e6:8d:96:
05:fb:8f:e9:fe:78:41:6a:36:1d:71:b8:17:1f:10:44:ac:8f:
c4:94:b6:54:38:0b:5b:7a:b2:cf:96:ff:63:4e:b2:6f:78:28:
0b:11:bd:a0:6c:5e:93:30:a7:fd:8e:6b:05:bd:e5:9b:41:10:
a0:c5:2b:f0:79:0b:e5:fe:37:88:88:15:21:0d:e0:e2:dc:b8:
cf:cf:dc:a7:c5:c9:5b:1a:b3:f7:b0:eb:4f:d8:c0:c1:f6:31:
1d:a7:7b:12:35:7b:a3:fb:a7:9e:b1:59:e7:17:0b:6d:78:53:
7b:41:18:d1:d4:bb:bf:00:12:de:35:c4:5a:e6:fe:22:73:16:
7e:24:e6:e0:2f:1d:0e:79:04:ec:ec:b6:06:13:f2:b3:9c:c0:
d3:59:ee:ce:66:2c:7f:1e:66:03:47:73:44:ad:8a:b0:d3:b8:
58:ca:58:14:06:2f:58:27:7c:13:1e:43:6b:3f:f6:41:2b:a9:
ba:48:3c:29:a9:43:6a:6a:33:4b:b9:f9:26:bb:9d:2e:52:0a:
3b:5c:53:19:4d:a2:b3:44:c8:f1:2d:25:ce:ad:1e:30:9d:97:
62:55:5c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org