Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/eqOyxekGWk4nPxU-HoKGhjKkXKM.roa
File: eqOyxekGWk4nPxU-HoKGhjKkXKM.roa (raw, json)
Hash identifier: 996HObF1c+8S2OBe4n9RljpWoP9HtyS07ac8q0NDgCk=
Subject key identifier: 7A:A3:B2:C5:E9:06:5A:4E:27:3F:15:3E:1E:82:86:86:32:A4:5C:A3
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018D358E41EEAAF296A16CBECEF0099879CE
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/eqOyxekGWk4nPxU-HoKGhjKkXKM.roa
Signing time: Tue 23 Jan 2024 09:02:11 +0000
ROA not before: Tue 23 Jan 2024 09:02:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59504
IP address blocks: 45.142.208.0/24 maxlen: 24
45.142.209.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
45.151.136.0/22 maxlen: 22
45.151.136.0/24 maxlen: 24
45.151.137.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
95.215.108.0/23 maxlen: 23
95.215.110.0/23 maxlen: 23
185.118.64.0/22 maxlen: 22
185.118.64.0/24 maxlen: 24
185.118.65.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.66.0/24 maxlen: 24
185.118.67.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
185.156.176.0/24 maxlen: 24
185.156.177.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.178.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
185.197.73.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
185.230.142.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.104.114/32 maxlen: 32
194.113.107.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a05:fb45::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a07:14c0:1::/48 maxlen: 48
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:3000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:d000::/36 maxlen: 36
2a07:14c1::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a0a:4784::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a0c:5241::/32 maxlen: 32
2a0c:5245::/32 maxlen: 32
2a0c:5247:7000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:f000::/36 maxlen: 36
2a0d:60c0::/32 maxlen: 32
2a0d:60c1::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 14 Feb 2024 06:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:8e:41:ee:aa:f2:96:a1:6c:be:ce:f0:09:98:79:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jan 23 09:02:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7aa3b2c5e9065a4e273f153e1e82868632a45ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f7:09:14:03:99:00:e9:c9:a9:d7:84:c0:ba:
62:75:e0:0b:e0:c7:06:e4:05:3c:69:e0:bc:d2:b7:
54:aa:25:ec:e2:74:37:5c:5b:54:17:48:38:0b:c5:
0f:b2:6b:10:99:ab:e8:a0:e8:76:a2:cd:ec:9f:db:
60:cc:cd:09:2a:75:b6:d5:02:13:d2:13:af:a1:a6:
3d:c8:ab:bb:78:c0:ca:3c:0f:6a:40:f7:1f:f2:2e:
e2:26:cb:a0:4c:83:8c:15:16:3d:5d:bc:85:a8:e5:
8f:9f:31:b0:67:e3:06:4d:ae:ae:05:2e:44:ef:a4:
9c:c8:42:b0:e3:8a:54:0c:7d:f1:9c:11:00:f6:eb:
e7:42:65:84:ab:21:fd:93:68:aa:e2:5f:ea:22:ad:
61:5f:aa:2a:f1:bc:89:6c:af:0d:93:70:f1:59:e3:
c5:40:cc:c0:24:7d:9d:37:d9:c2:b1:5a:a8:cc:57:
f1:16:e8:d9:dd:b3:3c:0d:ca:87:9d:d7:00:8c:1e:
dd:8f:ed:d6:80:61:45:cf:b3:4d:58:44:74:37:2f:
a3:71:93:78:c5:6a:ec:b4:86:46:84:19:7c:71:50:
bc:2c:7e:5d:e2:06:93:7b:0f:d3:1a:bd:15:15:55:
2e:1f:51:a3:37:7e:57:fd:c7:43:96:36:90:28:38:
4f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A3:B2:C5:E9:06:5A:4E:27:3F:15:3E:1E:82:86:86:32:A4:5C:A3
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/eqOyxekGWk4nPxU-HoKGhjKkXKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/23
45.142.211.0/24
45.151.136.0/22
80.76.40.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::-2a0a:4785:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
10:44:ef:28:2f:b0:dc:52:65:13:6c:70:2c:36:af:2d:65:46:
4c:46:be:61:ea:a0:cb:8d:16:9f:cf:bc:0e:37:46:93:e5:f6:
47:23:38:78:52:e8:32:43:bb:37:dc:30:fd:7f:03:a6:e8:e9:
75:7a:7d:2f:ce:1b:24:0a:4f:38:8e:14:c0:09:ae:ff:49:ad:
24:1e:8c:bf:ab:45:ef:5d:9a:f2:e5:18:38:d9:3a:97:dd:e9:
48:a7:49:72:2c:7d:0d:04:b8:cd:8f:6e:b2:40:e0:01:ea:d4:
df:1d:8f:f8:51:33:30:ff:27:8d:51:01:4e:b3:c8:d9:d9:e7:
24:a6:ac:36:c2:8d:97:28:a4:60:81:65:9e:2f:b6:70:7e:fe:
10:43:af:bc:3d:ed:dc:cd:a4:02:6e:ca:d8:9c:58:d3:6a:95:
ac:7f:be:c8:3d:84:ad:8b:97:83:30:66:d8:3d:cb:cf:26:97:
40:e4:c7:78:cc:ce:85:0d:fd:90:bd:5b:26:33:d3:de:e8:03:
bd:62:f2:b3:1c:be:55:e0:bf:ec:a9:62:e3:43:49:4e:b3:38:
e1:9e:85:04:67:c6:60:81:fd:e7:04:51:23:52:ad:59:26:c8:
16:2e:cc:10:e6:43:2b:cb:90:25:b2:51:41:ad:83:d3:4e:00:
2b:5f:de:13
-----BEGIN CERTIFICATE-----
MIIGPDCCBSSgAwIBAgISAY01jkHuqvKWoWy+zvAJmHnOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjQwMTIzMDkwMjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWEzYjJjNWU5MDY1YTRlMjczZjE1M2UxZTgyODY4NjMyYTQ1Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvcJFAOZAOnJqdeEwLpideAL4McG
5AU8aeC80rdUqiXs4nQ3XFtUF0g4C8UPsmsQmavooOh2os3sn9tgzM0JKnW21QIT
0hOvoaY9yKu7eMDKPA9qQPcf8i7iJsugTIOMFRY9XbyFqOWPnzGwZ+MGTa6uBS5E
76ScyEKw44pUDH3xnBEA9uvnQmWEqyH9k2iq4l/qIq1hX6oq8byJbK8Nk3DxWePF
QMzAJH2dN9nCsVqozFfxFujZ3bM8DcqHndcAjB7dj+3WgGFFz7NNWER0Ny+jcZN4
xWrstIZGhBl8cVC8LH5d4gaTew/TGr0VFVUuH1GjN35X/cdDljaQKDhPfQIDAQAB
o4IDSDCCA0QwHQYDVR0OBBYEFHqjssXpBlpOJz8VPh6ChoYypFyjMB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvZXFPeXhla0dXazRuUHhVLUhvS0doaktrWEtNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBXAYIKwYBBQUHAQcBAf8EggFLMIIBRzCBlwQCAAEwgZAD
BAEtjtADBAAtjtMDBAItl4gDBABQTCgDBABUNiUDBABUNicDBAJf12wDBAK5dkAD
BAK5nLADBAC5sXEDBAC5sXMDBAG5xUgDBAK53CAwDAMEArnmjAMEALnmjgMEAbn2
dAMEALn2dzAMAwQCuf68AwQAuf6+MAwDBAPBJugDBADBJuoDBADCcWgDBADCcWsw
gaoEAgACMIGjMA4DBQAqBftBAwUAKgX7QgMFASoF+0QDBwEqBxTAAAADBgQqBxTA
EDAQAwYEKgcUwDADBgQqBxTAYAMGBCoHFMDQMA4DBQAqBxTBAwUAKgcUwgMFASoH
FMYwDgMFByoKR4ADBQEqCkeEAwUAKgxSQQMFACoMUkUDBgQqDFJHcAMGBioMUkfA
AwUBKg1gwAMFACoNYMMDBQAqDXdAAwUAKg13RzANBgkqhkiG9w0BAQsFAAOCAQEA
EETvKC+w3FJlE2xwLDavLWVGTEa+Yeqgy40Wn8+8DjdGk+X2RyM4eFLoMkO7N9ww
/X8DpujpdXp9L84bJApPOI4UwAmu/0mtJB6Mv6tF712a8uUYONk6l93pSKdJcix9
DQS4zY9uskDgAerU3x2P+FEzMP8njVEBTrPI2dnnJKasNsKNlyikYIFlni+2cH7+
EEOvvD3t3M2kAm7K2JxY02qVrH++yD2ErYuXgzBm2D3LzyaXQOTHeMzOhQ39kL1b
JjPT3ugDvWLysxy+VeC/7Kli40NJTrM44Z6FBGfGYIH95wRRI1KtWSbIFi7MEOZD
K8uQJbJRQa2D004AK1/eEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org