Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/a-4CqDsSIVgw8xChVpT6OXUOa_8.roa
File: a-4CqDsSIVgw8xChVpT6OXUOa_8.roa (raw, json)
Hash identifier: u9RdpRXnTCDa4dIqMB/tXhgv2PnREusD+Vse4/2MFLE=
Subject key identifier: 6B:EE:02:A8:3B:12:21:58:30:F3:10:A1:56:94:FA:39:75:0E:6B:FF
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018D68C681BC22652BEEA40AD6048201F10E
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/a-4CqDsSIVgw8xChVpT6OXUOa_8.roa
Signing time: Fri 02 Feb 2024 07:44:16 +0000
ROA not before: Fri 02 Feb 2024 07:44:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 45.142.210.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.240.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
83.171.243.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
95.215.109.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a06:d900::/29 maxlen: 29
2a09:3505:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a09:3804:1000::/36 maxlen: 36
2a09:3804:2000::/36 maxlen: 36
2a09:3804:3000::/36 maxlen: 36
2a09:3804:4000::/36 maxlen: 36
2a09:3804:5000::/36 maxlen: 36
2a09:3804:6000::/36 maxlen: 36
2a09:3804:8000::/36 maxlen: 36
2a09:3805::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a09:3d00::/29 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a09:4e03::/32 maxlen: 32
2a09:6f00::/32 maxlen: 32
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a0a:4784::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0c:2104::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a0d:5ec0::/29 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a0f:cc80::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a10:c0c0::/29 maxlen: 32
2a10:c0c0::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a10:c0c6::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c340::/29 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:204::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a11:207::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a11:782::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:b80::/29 maxlen: 36
2a11:e82::/32 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:af02::/32 maxlen: 32
2a11:af04::/32 maxlen: 32
2a12:7c00::/29 maxlen: 36
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:c6:81:bc:22:65:2b:ee:a4:0a:d6:04:82:01:f1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Feb 2 07:44:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bee02a83b12215830f310a15694fa39750e6bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:1f:e9:4c:4d:b3:f6:ff:ee:02:68:85:aa:
78:57:be:a2:c0:76:9f:3f:96:d3:fa:b0:58:ce:b5:
1e:2c:ef:9a:b8:11:ab:33:49:24:c4:d4:30:ab:bb:
22:61:e3:b1:f5:a4:8e:06:e9:90:2f:5a:25:4c:55:
2c:b6:9d:0a:2f:41:03:a6:ff:b8:7f:9b:60:f7:c3:
0d:22:b5:1a:94:9d:b4:1b:4d:f0:7b:d6:ec:4f:42:
39:2c:30:7e:9d:e0:71:38:3d:1b:79:0b:b3:71:18:
2a:77:f5:88:0c:3f:e4:7d:a4:4c:e7:ce:41:d9:63:
9a:83:bc:87:66:d0:e0:2b:c4:57:f6:d5:8d:a6:6a:
61:c8:55:2d:2a:af:48:fc:af:23:ea:38:3b:ed:b6:
82:7a:66:25:ef:d4:f7:e1:de:e5:f0:42:f8:79:40:
44:3e:82:23:f1:59:69:8d:a5:50:16:78:f4:1f:70:
51:79:08:0a:7c:f0:c4:97:59:20:a6:4d:e4:81:7f:
e3:35:87:02:79:43:6a:0e:10:d4:61:49:ee:cf:54:
7d:4d:bd:b1:14:f9:3a:4a:71:3f:3b:e4:0c:bc:35:
d5:67:25:c4:46:62:7e:c2:73:ac:7d:ae:a2:fc:28:
cd:ff:34:03:b3:19:03:13:e4:dc:4e:af:c4:a9:32:
f6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EE:02:A8:3B:12:21:58:30:F3:10:A1:56:94:FA:39:75:0E:6B:FF
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/a-4CqDsSIVgw8xChVpT6OXUOa_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:6fff:ffff:ffff:ffff:ffff:ffff
2a09:3804:8000::/36
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:6f00::/32
2a09:b680::/29
2a09:bd80::/32
2a0a:4784::/32
2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc80::/31
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::-2a11:af02:ffff:ffff:ffff:ffff:ffff:ffff
2a11:af04::/32
2a12:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
0b:9e:24:9f:a7:7c:12:19:e5:57:db:71:08:18:73:f6:aa:19:
28:9c:ee:66:0d:70:67:66:f7:d0:4b:98:8f:4f:75:e6:92:79:
45:cc:4d:33:04:b3:79:5b:f4:fd:97:1a:85:c5:2c:cf:15:9f:
92:5e:95:54:6c:0c:7a:a3:8e:05:3f:c9:35:e0:63:31:84:a2:
dc:09:cd:60:87:35:ed:a5:98:ab:07:66:28:e2:23:55:f4:d5:
50:90:27:2f:59:05:f8:1c:79:4d:da:67:0b:23:fd:61:14:4a:
7e:e3:33:20:c1:c0:e6:a5:2b:af:46:fe:30:55:49:d3:2c:f8:
d5:e0:f4:4c:75:ba:a5:ae:99:8c:e0:88:b7:4d:4c:c4:39:98:
71:17:5a:f3:ea:46:c1:a6:a3:2d:35:2d:93:db:49:b2:61:41:
9f:39:c6:6c:9a:90:87:c1:7a:01:0f:31:13:96:dd:1c:c9:58:
65:2f:68:5d:27:f4:8b:2c:65:68:e4:bd:29:de:4e:ec:f5:8b:
75:fb:2d:10:8c:30:bb:58:e9:1a:5a:b4:65:57:69:ec:53:bd:
23:1d:20:3c:e0:8f:dd:3f:f4:3c:fc:dc:d2:ca:1f:4c:fc:10:
f0:e5:dc:a8:18:a3:4c:75:4d:28:ed:7a:72:fc:37:46:f8:24:
ff:18:2c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 15:18:30 2024 by rpki-client on console-fra.rpki-client.org