Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Us1tSrrqSzmSNnvkZ40NURVxgPw.roa
File: Us1tSrrqSzmSNnvkZ40NURVxgPw.roa (raw, json)
Hash identifier: uaN2rc900DO6hC7+crPEJ/8mrqmKSEsmmFUPMJE1YB8=
Subject key identifier: 52:CD:6D:4A:BA:EA:4B:39:92:36:7B:E4:67:8D:0D:51:15:71:80:FC
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018D1643BB8F9872FFE01DEA79FC703F03FE
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Us1tSrrqSzmSNnvkZ40NURVxgPw.roa
Signing time: Wed 17 Jan 2024 07:12:34 +0000
ROA not before: Wed 17 Jan 2024 07:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 45.142.210.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.240.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
83.171.243.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
95.215.109.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a06:d900::/29 maxlen: 29
2a09:3505:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a09:3804:1000::/36 maxlen: 36
2a09:3804:2000::/36 maxlen: 36
2a09:3804:3000::/36 maxlen: 36
2a09:3804:4000::/36 maxlen: 36
2a09:3805::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a09:3d00::/29 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a09:4e03::/32 maxlen: 32
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0c:2104::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a0d:5ec0::/29 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a0f:cc80::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a10:c0c0::/29 maxlen: 32
2a10:c0c0::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a10:c0c6::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c340::/29 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:204::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a11:207::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a11:782::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:b80::/29 maxlen: 36
2a11:e82::/32 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:af02::/32 maxlen: 32
2a12:7c00::/29 maxlen: 36
Validation: Failed, certificate revoked on Thu 18 Jan 2024 10:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:43:bb:8f:98:72:ff:e0:1d:ea:79:fc:70:3f:03:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 17 07:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52cd6d4abaea4b3992367be4678d0d51157180fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7c:f2:6e:be:c4:15:39:2d:69:bd:70:c0:9a:
12:bf:87:7c:ac:33:bb:af:fb:41:26:9b:d2:73:e2:
8c:ee:19:c2:bc:36:19:e4:5f:b1:db:7d:cf:f8:96:
d5:83:b9:bc:d3:7a:1d:0e:03:f8:5e:41:cf:b4:7d:
60:5a:00:3f:10:f0:84:1d:bd:3b:87:ce:5b:11:d4:
c8:1f:da:7b:e9:1a:29:39:45:b4:96:c2:0e:bd:e0:
c0:c3:02:39:91:32:07:3d:26:26:e5:3b:a3:f1:a7:
5f:07:12:d4:d2:3a:4e:78:4b:30:2c:28:bb:ec:cd:
db:3b:ed:0e:9f:57:87:e4:b7:e9:63:eb:63:a5:1d:
68:b0:48:50:53:9f:7b:6f:3e:fd:12:c0:60:56:98:
3f:9a:e9:8f:9c:8e:38:f4:4e:dd:6d:80:ee:5e:9e:
a3:4a:40:11:2e:16:88:13:b6:c6:33:e7:9b:ca:e5:
f3:08:1a:5b:52:7c:6e:13:7d:19:bf:fa:a5:39:71:
54:0b:e9:00:a8:9f:1b:7b:df:88:74:5e:09:a3:e6:
70:9f:38:62:42:c5:51:d6:d3:24:3d:08:94:dd:05:
8b:ad:a1:9d:6d:1d:64:88:bc:09:d9:3a:79:3f:8c:
af:96:70:e3:e6:fb:ee:6c:ce:b2:a0:d9:e1:e1:a1:
8b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CD:6D:4A:BA:EA:4B:39:92:36:7B:E4:67:8D:0D:51:15:71:80:FC
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/Us1tSrrqSzmSNnvkZ40NURVxgPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:4fff:ffff:ffff:ffff:ffff:ffff
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a09:bd80::/32
2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc80::/31
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::-2a11:af02:ffff:ffff:ffff:ffff:ffff:ffff
2a12:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
53:c4:93:7e:d7:a7:e6:cf:32:c7:03:23:d4:bb:e2:d6:92:64:
7f:f8:21:32:2a:2b:67:cc:d8:4c:bc:34:04:0d:54:13:9c:b8:
b0:34:b3:fd:bf:be:ac:a7:0b:f3:ae:2f:5c:25:a5:c0:07:69:
a1:0c:e6:b9:ce:46:43:97:96:52:1c:1b:92:d1:c7:96:e6:5c:
87:d2:b0:c0:b1:48:a2:81:cc:48:49:a2:c8:b4:34:52:ac:b2:
3d:b7:6e:de:d2:ee:3b:d1:eb:9a:73:48:42:a7:4a:02:d0:53:
ee:ac:30:b1:da:c9:e4:ca:3f:8a:14:1c:b8:e8:fc:cc:55:61:
20:b7:a3:ad:58:c8:28:7e:09:9e:8a:d1:11:08:bc:0d:06:c5:
32:2c:74:bc:9b:1d:a8:62:e7:60:2f:91:05:13:d5:c3:d6:a1:
e7:5a:bd:bd:a0:3a:b7:82:74:51:d4:65:5a:cf:49:ce:dd:2c:
8c:6d:2c:8f:f4:92:1d:ba:24:aa:db:f3:f5:e5:e5:8b:7b:b9:
0a:be:54:c1:b4:7d:20:d3:62:6d:66:00:46:10:c4:c0:3e:be:
cc:22:1f:a0:fa:79:ce:9f:a5:89:c3:63:f0:22:c1:11:03:ed:
d5:51:3e:12:d1:96:7b:f3:7f:65:d8:41:e3:fb:be:af:db:ee:
3e:d1:03:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 18 16:03:01 2024 by rpki-client on console-fra.rpki-client.org