Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ngyRPnwqDWzr3qObHwdez3OOe14.roa
File: ngyRPnwqDWzr3qObHwdez3OOe14.roa (raw, json)
Hash identifier: 2ugAE9q3YXMxiH9jFNWZ8Gc548bed4kW3FTY8yeWYhI=
Subject key identifier: 9E:0C:91:3E:7C:2A:0D:6C:EB:DE:A3:9B:1F:07:5E:CF:73:8E:7B:5E
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018AF97B05BBEAD6A9B6CA703D6BFCA0264C
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ngyRPnwqDWzr3qObHwdez3OOe14.roa
Signing time: Wed 04 Oct 2023 06:58:23 +0000
ROA not before: Wed 04 Oct 2023 06:58:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Wed 04 Oct 2023 10:49:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:7b:05:bb:ea:d6:a9:b6:ca:70:3d:6b:fc:a0:26:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Oct 4 06:58:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e0c913e7c2a0d6cebdea39b1f075ecf738e7b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3d:9a:98:c8:36:a1:8c:19:46:2a:3d:49:5d:
b0:2c:95:3e:f9:fa:e3:9c:7d:93:a7:2a:88:1c:f6:
21:fd:ad:5c:cc:87:f2:aa:f3:3a:93:f7:f9:09:f2:
c3:fb:03:86:cf:8e:eb:e3:84:9f:19:d5:3d:82:30:
11:ae:c4:6b:98:3d:d9:00:24:4c:1b:65:44:75:5d:
fc:16:7b:08:80:45:23:db:3b:88:51:2a:b6:73:d2:
1c:e0:6f:3b:07:d4:0a:45:b2:b7:c9:85:bd:4a:21:
2e:d2:e4:0b:21:6d:f1:45:c7:26:9b:a8:55:0d:c8:
d0:66:b8:1e:56:91:46:44:5b:30:13:29:d2:cc:93:
cd:b8:a0:d5:05:88:03:7d:7e:14:4f:1d:ea:8a:08:
86:69:59:93:76:d5:0a:b6:cd:09:a5:e9:6d:de:f3:
0e:88:43:ac:75:f9:2f:26:ef:84:60:de:b1:d9:8c:
9c:3d:c8:46:57:b6:f4:05:56:99:7a:b1:dc:e4:9e:
0f:92:5b:fc:31:0d:9f:61:92:1f:a5:72:15:43:8e:
bb:5a:e0:7b:8d:8e:99:e6:e4:47:08:1c:30:2b:4d:
ef:85:57:50:d0:e4:9f:41:8a:ad:69:6b:99:ef:c1:
cc:ef:19:c6:4b:10:52:72:21:27:7c:f0:79:37:2b:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0C:91:3E:7C:2A:0D:6C:EB:DE:A3:9B:1F:07:5E:CF:73:8E:7B:5E
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ngyRPnwqDWzr3qObHwdez3OOe14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/23
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:b680::/29
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:200:a000::/36
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
0e:91:94:df:3b:61:46:f9:13:fe:d1:05:52:c7:4d:de:b7:19:
11:a2:47:45:c0:44:7c:d6:7f:b9:cd:3d:b9:df:bd:6c:d8:f3:
0f:b5:d0:23:74:37:24:f3:08:fd:67:77:27:2f:66:b0:9d:80:
83:79:b7:14:aa:c8:36:5e:4c:26:10:ff:9f:c5:43:bf:c6:56:
42:c9:28:f3:19:ee:bd:fb:72:fb:0a:b3:f8:88:2a:78:29:89:
f3:37:07:2e:ed:35:51:25:97:f5:8b:7b:c1:e4:48:c7:66:c8:
01:55:bd:04:ba:87:0f:72:9e:9d:a7:a1:98:b5:41:cc:88:63:
03:50:52:2a:6c:7c:3e:b9:12:29:89:42:54:f2:90:49:df:b5:
87:8b:a0:f4:39:8b:19:ba:53:bf:3c:90:2b:bd:f1:63:c5:08:
4d:c1:56:a9:95:bc:bc:00:19:b7:00:eb:13:dc:e8:1b:f7:59:
a4:8b:42:f3:d7:67:5c:54:39:95:c4:56:52:f3:53:9d:f3:91:
9a:4a:7d:e9:2c:cf:3a:b5:93:4c:6c:60:f0:26:2e:4a:a9:1c:
c2:9e:db:79:d0:e9:3d:ba:d7:58:44:f1:93:49:cc:82:53:84:
a7:81:89:7b:60:c6:cc:5b:3a:54:d8:59:6a:a1:93:ec:7d:c5:
8e:0c:88:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org