Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zZvUc-JV4X6znSgHRqBuFK3L2uI.roa
File: zZvUc-JV4X6znSgHRqBuFK3L2uI.roa (raw, json)
Hash identifier: 1Rz+1QkPmuK3KXXSK6fGqbru7TWwyT249scMEtHVLMA=
Subject key identifier: CD:9B:D4:73:E2:55:E1:7E:B3:9D:28:07:46:A0:6E:14:AD:CB:DA:E2
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018DA6DA50DA108D8A5A230F8B2CA5D1DA96
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zZvUc-JV4X6znSgHRqBuFK3L2uI.roa
Signing time: Wed 14 Feb 2024 09:02:21 +0000
ROA not before: Wed 14 Feb 2024 09:02:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 45.142.210.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.240.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
83.171.243.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
93.183.80.0/22 maxlen: 22
95.215.109.0/24 maxlen: 24
2a06:d900::/29 maxlen: 29
2a09:3505:9000::/36 maxlen: 36
2a09:3505:b000::/36 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3800::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a09:3804:1000::/36 maxlen: 36
2a09:3804:2000::/36 maxlen: 36
2a09:3804:3000::/36 maxlen: 36
2a09:3804:4000::/36 maxlen: 36
2a09:3804:5000::/36 maxlen: 36
2a09:3804:6000::/36 maxlen: 36
2a09:3804:8000::/36 maxlen: 36
2a09:3804:9000::/36 maxlen: 36
2a09:3804:a000::/36 maxlen: 36
2a09:3804:b000::/36 maxlen: 36
2a09:3805::/32 maxlen: 32
2a09:3806::/32 maxlen: 32
2a09:3807::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a09:3d00::/29 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a09:4e03::/32 maxlen: 32
2a09:6f00::/32 maxlen: 32
2a09:b680::/29 maxlen: 36
2a09:bd80::/32 maxlen: 32
2a0a:4784::/32 maxlen: 32
2a0c:2103::/32 maxlen: 32
2a0c:2104::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a0d:5ec0::/29 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a0f:cc80::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a10:c0c0::/29 maxlen: 32
2a10:c0c0::/32 maxlen: 32
2a10:c0c1::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a10:c0c6::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c340::/29 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:e000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:204::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a11:207::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a11:782::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:b80::/29 maxlen: 36
2a11:e82::/32 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:af02::/32 maxlen: 32
2a11:af04::/32 maxlen: 32
2a12:7c00::/29 maxlen: 36
Validation: Failed, certificate revoked on Thu 15 Feb 2024 07:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a6:da:50:da:10:8d:8a:5a:23:0f:8b:2c:a5:d1:da:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Feb 14 09:02:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd9bd473e255e17eb39d280746a06e14adcbdae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:07:bf:18:17:0b:c1:d6:26:f2:98:44:92:00:
4f:be:b8:72:b2:c3:c0:47:f7:99:6c:47:a3:8f:59:
e5:8c:86:42:8c:c2:91:bc:a0:34:d5:1c:60:b4:94:
6a:8e:e6:64:69:f3:59:44:84:a5:bb:3c:e1:57:a7:
89:62:11:82:57:78:84:b0:91:99:12:62:c8:eb:55:
b7:5e:52:32:bf:53:f0:89:29:c3:d6:e9:fd:76:cb:
94:75:7a:96:be:9c:19:ba:47:90:ad:4f:91:ff:6c:
94:a6:ec:f3:1d:14:5a:92:2b:18:ab:59:3e:b7:2b:
32:fe:f8:36:10:af:26:8e:30:e8:8a:e3:6b:d7:0d:
af:ed:66:c5:7c:d7:1b:94:a8:47:44:73:a6:46:a9:
08:9b:3e:77:07:97:82:94:26:d7:2e:41:71:2a:fa:
ac:a1:a6:74:5c:b3:53:63:c1:82:e8:77:5d:72:e9:
d6:8d:4f:68:bf:3c:09:d2:55:eb:ac:1a:5a:ab:6c:
5e:f9:56:5f:49:23:cc:e2:0b:52:b1:82:73:59:a2:
4c:39:0f:39:fa:e7:14:44:76:47:90:4b:10:62:2c:
eb:53:39:50:4d:b4:bd:94:b2:13:75:16:26:8f:2b:
63:1a:1b:dc:fc:ed:8f:92:8b:4b:9e:b8:38:14:68:
86:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9B:D4:73:E2:55:E1:7E:B3:9D:28:07:46:A0:6E:14:AD:CB:DA:E2
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/zZvUc-JV4X6znSgHRqBuFK3L2uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
93.183.80.0/22
95.215.109.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3505:b000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::-2a09:3804:6fff:ffff:ffff:ffff:ffff:ffff
2a09:3804:8000::/34
2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:6f00::/32
2a09:b680::/29
2a09:bd80::/32
2a0a:4784::/32
2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc80::/31
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::-2a11:af02:ffff:ffff:ffff:ffff:ffff:ffff
2a11:af04::/32
2a12:7c00::/29
Signature Algorithm: sha256WithRSAEncryption
68:a4:9e:35:00:14:49:bf:e0:a2:00:4b:fc:5a:b1:5e:ae:cf:
84:ad:1d:7d:3d:d7:17:64:c4:af:e1:f3:03:70:90:21:d1:63:
c9:94:26:23:d3:55:e2:84:d3:cb:29:4d:05:1e:8b:ed:10:35:
37:00:3e:25:e9:24:46:4e:c6:bb:a2:47:e4:a6:09:44:17:21:
11:30:a0:fe:ee:ae:c4:04:96:e6:25:7b:1f:0c:ac:9f:57:8a:
00:1f:fe:a4:02:d1:ee:0e:8e:db:eb:43:8d:dd:ad:97:11:ae:
61:f7:70:40:28:db:70:75:26:fa:f8:79:40:36:a2:a9:f0:9a:
0a:32:af:59:3a:c4:7b:24:fa:38:cb:86:d1:81:92:06:15:a8:
e7:92:63:89:42:92:68:bc:8a:9c:92:a5:94:e7:c4:2d:f7:aa:
1c:6a:f6:8b:67:2d:0e:19:9c:4d:37:08:8e:15:c6:98:bd:ec:
cb:0c:41:0d:67:a2:4b:13:f5:7e:f7:33:68:3d:41:47:02:d7:
68:75:74:88:86:24:42:41:11:fd:fb:5a:12:8c:39:b4:8c:47:
6c:9c:58:f0:29:d6:e4:69:39:fe:b7:f4:1a:04:62:53:f4:16:
c1:c0:4f:ec:11:d2:53:cd:80:7a:0b:3c:0e:c1:83:bf:34:3f:
2f:76:25:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org