Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0SznpSVAlg_skCM2g9LYFAGxKkY.roa
File: 0SznpSVAlg_skCM2g9LYFAGxKkY.roa (raw, json)
Hash identifier: 5k6kLN5Nu4UwyvqPeaK7GfqBnsUHDM87GTRTGXsl1kU=
Subject key identifier: D1:2C:E7:A5:25:40:96:0F:EC:90:23:36:83:D2:D8:14:01:B1:2A:46
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 0189BA063D6B20A732453D1D4E9B6407083A
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0SznpSVAlg_skCM2g9LYFAGxKkY.roa
Signing time: Thu 03 Aug 2023 06:11:58 +0000
ROA not before: Thu 03 Aug 2023 06:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41881
IP address blocks: 95.38.240.0/21 maxlen: 21
95.38.253.0/24 maxlen: 24
95.38.252.0/24 maxlen: 24
95.38.255.0/24 maxlen: 24
95.38.254.0/24 maxlen: 24
95.38.192.0/21 maxlen: 21
95.38.192.0/24 maxlen: 24
95.38.199.0/24 maxlen: 24
95.38.194.0/24 maxlen: 24
95.38.195.0/24 maxlen: 24
95.38.193.0/24 maxlen: 24
95.38.197.0/24 maxlen: 24
95.38.196.0/24 maxlen: 24
95.38.200.0/22 maxlen: 22
95.38.201.0/24 maxlen: 24
95.38.202.0/24 maxlen: 24
95.38.200.0/24 maxlen: 24
95.38.203.0/24 maxlen: 24
95.38.204.0/23 maxlen: 23
95.38.206.0/24 maxlen: 24
95.38.208.0/22 maxlen: 22
95.38.208.0/21 maxlen: 21
95.38.211.0/24 maxlen: 24
95.38.212.0/23 maxlen: 23
95.38.210.0/24 maxlen: 24
95.38.215.0/24 maxlen: 24
95.38.216.0/23 maxlen: 23
95.38.218.0/24 maxlen: 24
95.38.219.0/24 maxlen: 24
95.38.218.0/23 maxlen: 23
95.38.220.0/22 maxlen: 22
95.38.225.0/24 maxlen: 24
95.38.226.0/23 maxlen: 23
95.38.224.0/24 maxlen: 24
95.38.228.0/22 maxlen: 22
95.38.232.0/21 maxlen: 21
95.38.27.0/24 maxlen: 24
95.38.28.0/24 maxlen: 24
95.38.25.0/24 maxlen: 24
95.38.26.0/24 maxlen: 24
95.38.31.0/24 maxlen: 24
95.38.29.0/24 maxlen: 24
95.38.30.0/24 maxlen: 24
95.38.34.0/24 maxlen: 24
95.38.35.0/24 maxlen: 24
95.38.32.0/24 maxlen: 24
95.38.33.0/24 maxlen: 24
95.38.36.0/23 maxlen: 23
95.38.41.0/24 maxlen: 24
95.38.42.0/24 maxlen: 24
95.38.39.0/24 maxlen: 24
95.38.40.0/24 maxlen: 24
95.38.44.0/24 maxlen: 24
95.38.43.0/24 maxlen: 24
95.38.44.0/22 maxlen: 22
95.38.48.0/24 maxlen: 24
95.38.49.0/24 maxlen: 24
95.38.46.0/24 maxlen: 24
95.38.47.0/24 maxlen: 24
95.38.51.0/24 maxlen: 24
95.38.50.0/24 maxlen: 24
95.38.45.0/24 maxlen: 24
95.38.54.0/23 maxlen: 23
95.38.56.0/23 maxlen: 23
95.38.53.0/24 maxlen: 24
95.38.58.0/24 maxlen: 24
95.38.52.0/24 maxlen: 24
95.38.60.0/24 maxlen: 24
95.38.62.0/23 maxlen: 23
95.38.61.0/24 maxlen: 24
95.38.64.0/24 maxlen: 24
95.38.59.0/24 maxlen: 24
95.38.69.0/24 maxlen: 24
95.38.70.0/24 maxlen: 24
95.38.68.0/24 maxlen: 24
95.38.71.0/24 maxlen: 24
95.38.65.0/24 maxlen: 24
95.38.66.0/23 maxlen: 23
95.38.76.0/24 maxlen: 24
95.38.74.0/23 maxlen: 23
95.38.74.0/24 maxlen: 24
95.38.75.0/24 maxlen: 24
95.38.78.0/23 maxlen: 23
95.38.77.0/24 maxlen: 24
95.38.73.0/24 maxlen: 24
95.38.0.0/21 maxlen: 21
95.38.11.0/24 maxlen: 24
95.38.10.0/24 maxlen: 24
95.38.8.0/24 maxlen: 24
95.38.9.0/24 maxlen: 24
95.38.13.0/24 maxlen: 24
95.38.14.0/24 maxlen: 24
95.38.12.0/24 maxlen: 24
95.38.17.0/24 maxlen: 24
95.38.15.0/24 maxlen: 24
95.38.16.0/20 maxlen: 20
95.38.16.0/24 maxlen: 24
95.38.20.0/24 maxlen: 24
95.38.21.0/24 maxlen: 24
95.38.18.0/24 maxlen: 24
95.38.19.0/24 maxlen: 24
95.38.24.0/24 maxlen: 24
95.38.22.0/24 maxlen: 24
95.38.23.0/24 maxlen: 24
95.38.160.0/21 maxlen: 21
95.38.172.0/23 maxlen: 23
95.38.171.0/24 maxlen: 24
95.38.170.0/24 maxlen: 24
95.38.168.0/23 maxlen: 23
95.38.168.0/22 maxlen: 22
95.38.169.0/24 maxlen: 24
95.38.174.0/24 maxlen: 24
95.38.175.0/24 maxlen: 24
95.38.176.0/20 maxlen: 20
95.38.82.0/23 maxlen: 23
95.38.81.0/24 maxlen: 24
95.38.84.0/23 maxlen: 23
95.38.84.0/24 maxlen: 24
95.38.85.0/24 maxlen: 24
95.38.80.0/24 maxlen: 24
95.38.90.0/24 maxlen: 24
95.38.88.0/22 maxlen: 22
95.38.88.0/24 maxlen: 24
95.38.89.0/24 maxlen: 24
95.38.91.0/24 maxlen: 24
95.38.86.0/24 maxlen: 24
95.38.87.0/24 maxlen: 24
95.38.93.0/24 maxlen: 24
95.38.94.0/23 maxlen: 23
95.38.92.0/24 maxlen: 24
95.38.96.0/23 maxlen: 23
95.38.96.0/21 maxlen: 21
95.38.98.0/23 maxlen: 23
95.38.98.0/24 maxlen: 24
95.38.102.0/23 maxlen: 23
95.38.104.0/22 maxlen: 22
95.38.99.0/24 maxlen: 24
95.38.100.0/23 maxlen: 23
95.38.109.0/24 maxlen: 24
95.38.110.0/23 maxlen: 23
95.38.108.0/24 maxlen: 24
95.38.117.0/24 maxlen: 24
95.38.116.0/23 maxlen: 23
95.38.118.0/24 maxlen: 24
95.38.116.0/24 maxlen: 24
95.38.112.0/21 maxlen: 21
95.38.124.0/24 maxlen: 24
95.38.125.0/24 maxlen: 24
95.38.123.0/24 maxlen: 24
95.38.121.0/24 maxlen: 24
95.38.122.0/24 maxlen: 24
95.38.122.0/23 maxlen: 23
95.38.119.0/24 maxlen: 24
95.38.120.0/24 maxlen: 24
95.38.130.0/23 maxlen: 23
95.38.128.0/24 maxlen: 24
95.38.126.0/23 maxlen: 23
95.38.129.0/24 maxlen: 24
95.38.128.0/20 maxlen: 20
95.38.128.0/22 maxlen: 22
95.38.128.0/23 maxlen: 23
185.20.162.0/24 maxlen: 24
185.20.163.0/24 maxlen: 24
185.20.160.0/24 maxlen: 24
185.20.161.0/24 maxlen: 24
2a01:bd80::/29 maxlen: 29
2a00:52e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Aug 2023 08:59:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:06:3d:6b:20:a7:32:45:3d:1d:4e:9b:64:07:08:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Aug 3 06:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d12ce7a52540960fec90233683d2d81401b12a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:95:6a:3a:f7:0f:95:74:67:ed:8f:0d:62:d6:
1f:0e:cd:90:b8:94:88:fb:c9:2d:9a:e5:6b:2e:86:
5d:14:7a:fb:d3:dd:ce:e3:68:ae:ed:7d:07:6f:0a:
25:08:06:c2:b9:a7:09:77:2e:08:20:ca:43:0d:cc:
4b:6c:dd:43:1f:4a:c4:b2:cb:e3:1b:bb:85:f5:8f:
b5:af:7e:7a:ca:68:2f:cc:96:32:a3:23:b9:26:a9:
47:ab:29:77:84:68:ad:d7:8e:03:47:59:d5:ae:e4:
3d:cb:47:96:b5:9a:a8:ec:22:d5:72:f1:38:c9:81:
c5:09:09:14:56:1c:12:48:23:79:ef:ae:e7:1f:64:
78:50:47:0d:01:60:5f:e3:85:74:f3:e5:a6:16:6e:
c9:fc:6d:3d:de:bf:13:74:21:74:40:65:83:25:3e:
90:f1:be:82:da:ec:d4:42:fe:c7:b0:14:48:af:bc:
8f:05:50:94:13:3e:8c:24:33:77:64:4e:bc:ac:85:
d8:84:7c:d2:ea:fc:d7:7a:36:41:3e:05:f2:10:43:
84:97:bb:bd:dc:33:52:34:fb:0a:4a:39:95:a3:46:
64:52:11:d5:61:a1:cc:e8:ff:c3:a2:75:4d:f9:20:
1b:6b:c1:0f:92:38:c1:fd:ed:1e:c0:c2:c6:2a:43:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2C:E7:A5:25:40:96:0F:EC:90:23:36:83:D2:D8:14:01:B1:2A:46
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0SznpSVAlg_skCM2g9LYFAGxKkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.0.0-95.38.37.255
95.38.39.0-95.38.71.255
95.38.73.0-95.38.143.255
95.38.160.0-95.38.206.255
95.38.208.0-95.38.247.255
95.38.252.0/22
185.20.160.0/22
IPv6:
2a00:52e0::/32
2a01:bd80::/29
Signature Algorithm: sha256WithRSAEncryption
86:35:f1:5a:0f:91:3b:bc:0b:87:50:fe:e8:c3:34:f0:a1:40:
2a:90:dc:8d:f2:a9:74:d3:78:ef:e8:1e:7e:6d:a1:7f:c5:68:
23:ad:85:8f:d3:a0:a6:3a:75:d4:8b:f7:bf:42:98:32:67:1d:
a9:c6:1b:2f:ef:fc:89:25:8a:e2:fd:d0:02:99:48:e9:a4:05:
36:69:06:64:7c:6a:de:07:b8:9e:4c:0e:a6:e9:c2:88:8e:64:
53:93:0c:d7:92:d2:ab:0d:2e:ec:4e:94:f4:be:82:35:04:78:
58:4d:60:d1:bc:43:55:19:95:91:59:e9:42:a0:42:36:b6:e9:
32:8a:2a:eb:47:09:0a:c1:a1:d6:85:4e:82:23:d2:b4:c9:80:
ad:3d:73:ac:06:16:0e:2c:51:7c:43:6c:2c:4e:ad:72:a0:37:
0a:29:11:8c:03:b1:0b:aa:c5:42:fd:21:bc:67:70:2a:e4:41:
f9:b8:55:0e:01:ce:24:2e:fb:7f:2e:e5:bb:4b:4c:90:66:08:
96:5f:f3:18:cd:0b:2e:83:4f:38:6f:ac:84:0a:3f:8a:a6:b9:
3e:55:7f:e4:c3:68:e9:f2:36:21:33:28:32:32:87:86:60:3d:
57:2b:fe:6a:f9:10:41:92:5f:94:7e:78:52:6f:5f:05:49:c2:
36:20:24:ae
-----BEGIN CERTIFICATE-----
MIIFXzCCBEegAwIBAgISAYm6Bj1rIKcyRT0dTptkBwg6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYzEwNDA0MTY5MWRjMzg0ZjNiMWE4Y2RmOTVjOTY2Mjhl
YTZkYWYwHhcNMjMwODAzMDYxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTJjZTdhNTI1NDA5NjBmZWM5MDIzMzY4M2QyZDgxNDAxYjEyYTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5VqOvcPlXRn7Y8NYtYfDs2QuJSI
+8ktmuVrLoZdFHr7093O42iu7X0HbwolCAbCuacJdy4IIMpDDcxLbN1DH0rEssvj
G7uF9Y+1r356ymgvzJYyoyO5JqlHqyl3hGit144DR1nVruQ9y0eWtZqo7CLVcvE4
yYHFCQkUVhwSSCN5767nH2R4UEcNAWBf44V08+WmFm7J/G093r8TdCF0QGWDJT6Q
8b6C2uzUQv7HsBRIr7yPBVCUEz6MJDN3ZE68rIXYhHzS6vzXejZBPgXyEEOEl7u9
3DNSNPsKSjmVo0ZkUhHVYaHM6P/DonVN+SAba8EPkjjB/e0ewMLGKkMwgwIDAQAB
o4ICazCCAmcwHQYDVR0OBBYEFNEs56UlQJYP7JAjNoPS2BQBsSpGMB8GA1UdIwQY
MBaAFPDBBAQWkdw4TzsajN+VyWYo6m2vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQt
NjkxNDIyMzExNzI5LzEvMFN6bnBTVkFsZ19za0NNMmc5TFlGQUd4S2tZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQtNjkxNDIyMzExNzI5
LzEvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGABggrBgEFBQcBBwEB/wRxMG8wVwQCAAEwUTALAwMBXyYD
BAFfJiQwDAMEAF8mJwMEA18mQDAMAwQAXyZJAwQEXyaAMAwDBAVfJqADBABfJs4w
DAMEBF8m0AMEA18m8AMEAl8m/AMEArkUoDAUBAIAAjAOAwUAKgBS4AMFAyoBvYAw
DQYJKoZIhvcNAQELBQADggEBAIY18VoPkTu8C4dQ/ujDNPChQCqQ3I3yqXTTeO/o
Hn5toX/FaCOthY/ToKY6ddSL979CmDJnHanGGy/v/IkliuL90AKZSOmkBTZpBmR8
at4HuJ5MDqbpwoiOZFOTDNeS0qsNLuxOlPS+gjUEeFhNYNG8Q1UZlZFZ6UKgQja2
6TKKKutHCQrBodaFToIj0rTJgK09c6wGFg4sUXxDbCxOrXKgNwopEYwDsQuqxUL9
IbxncCrkQfm4VQ4BziQu+38u5btLTJBmCJZf8xjNCy6DTzhvrIQKP4qmuT5Vf+TD
aOnyNiEzKDIyh4ZgPVcr/mr5EEGSX5R+eFJvXwVJwjYgJK4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:45 2024 by rpki-client on console-ams.rpki-client.org