Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0mZ1qgL9zFBMUxkEPEhmpvpT6Ao.roa
File: 0mZ1qgL9zFBMUxkEPEhmpvpT6Ao.roa (raw, json)
Hash identifier: 1i6OtGlLZNBZJdnZQejTualJjTAv3f9STnVs9MVId0A=
Subject key identifier: D2:66:75:AA:02:FD:CC:50:4C:53:19:04:3C:48:66:A6:FA:53:E8:0A
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 018C104B5526B5A1808A6303DCA3D39573F1
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0mZ1qgL9zFBMUxkEPEhmpvpT6Ao.roa
Signing time: Mon 27 Nov 2023 10:20:21 +0000
ROA not before: Mon 27 Nov 2023 10:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 95.38.136.0/22 maxlen: 22
95.38.140.0/22 maxlen: 22
95.38.152.0/24 maxlen: 24
95.38.152.0/21 maxlen: 21
95.38.153.0/24 maxlen: 24
95.38.168.0/22 maxlen: 22
95.38.174.0/24 maxlen: 24
95.38.96.0/21 maxlen: 21
95.38.97.0/24 maxlen: 24
95.38.98.0/24 maxlen: 24
95.38.96.0/24 maxlen: 24
95.38.104.0/22 maxlen: 22
95.38.100.0/24 maxlen: 24
95.38.101.0/24 maxlen: 24
95.38.102.0/24 maxlen: 24
95.38.99.0/24 maxlen: 24
95.38.130.0/23 maxlen: 23
95.38.132.0/22 maxlen: 22
95.38.240.0/21 maxlen: 21
95.38.243.0/24 maxlen: 24
95.38.244.0/24 maxlen: 24
95.38.245.0/24 maxlen: 24
95.38.241.0/24 maxlen: 24
95.38.242.0/24 maxlen: 24
95.38.246.0/24 maxlen: 24
95.38.248.0/22 maxlen: 22
95.38.247.0/24 maxlen: 24
95.38.200.0/22 maxlen: 22
95.38.208.0/22 maxlen: 22
95.38.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 04:58:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:4b:55:26:b5:a1:80:8a:63:03:dc:a3:d3:95:73:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Nov 27 10:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d26675aa02fdcc504c5319043c4866a6fa53e80a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b5:0b:a5:36:1a:40:f0:11:45:35:e8:f1:e2:
3c:6d:a7:de:02:53:12:13:c6:fc:ee:66:29:34:69:
b8:02:3a:2f:fe:f7:8b:c6:e9:a7:23:4c:3c:9b:57:
86:a9:0c:3a:16:76:39:7a:71:9b:0c:91:f6:b6:48:
92:59:71:81:24:fe:78:db:3e:c6:a5:f9:75:87:41:
ca:ad:df:58:67:74:76:26:77:6b:c3:82:f1:14:fa:
9b:2f:6c:88:cd:fa:80:fb:b6:73:e1:83:75:92:9f:
61:aa:77:0f:4c:3f:72:4d:94:23:ee:67:1c:92:57:
18:a8:d3:1d:33:0e:88:7a:b2:51:03:ee:18:f4:2e:
8c:a9:d1:29:fb:d6:f4:d8:96:ec:1f:7c:73:b9:8e:
14:67:82:2b:52:a0:b6:3c:c1:df:39:ae:6f:f9:24:
fa:e7:7e:7a:a3:c5:ca:27:43:00:55:af:a2:8a:dd:
db:e7:6a:62:3a:e9:8e:c2:f2:fd:c7:e0:62:c2:9d:
e4:14:1e:7b:14:c0:14:26:34:f2:41:42:fa:94:1d:
23:ac:10:22:9e:26:5d:20:97:50:29:8f:9b:f9:33:
6e:8f:6b:40:20:37:a9:9f:14:55:d3:42:92:f6:56:
70:12:49:09:e5:2c:6d:ec:85:fc:15:e8:67:58:00:
86:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:66:75:AA:02:FD:CC:50:4C:53:19:04:3C:48:66:A6:FA:53:E8:0A
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/0mZ1qgL9zFBMUxkEPEhmpvpT6Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.96.0-95.38.107.255
95.38.130.0-95.38.143.255
95.38.152.0/21
95.38.168.0/22
95.38.174.0/24
95.38.200.0/22
95.38.208.0/22
95.38.240.0-95.38.251.255
Signature Algorithm: sha256WithRSAEncryption
1e:cf:5b:c1:6b:d4:23:9f:2c:a3:7f:44:96:04:98:7d:64:7d:
81:fe:81:d3:f3:d8:a2:eb:b9:b3:ee:a6:e5:ff:44:b1:45:9b:
7c:76:94:49:d6:66:7a:57:8d:2e:7f:76:c8:da:91:6d:9d:5c:
28:43:91:4d:b6:17:1c:71:24:1e:aa:41:50:e9:62:35:7d:5e:
fb:0a:a8:24:73:83:59:57:34:ea:44:ae:90:37:ae:3a:53:02:
24:2f:42:b6:d4:94:fd:12:76:99:bd:ea:67:17:a7:30:21:b5:
bb:0a:dd:72:c6:5f:9a:b9:da:fd:20:d1:e5:e5:78:13:9b:34:
32:bc:26:fb:74:b4:7a:03:dd:c0:40:86:c0:26:56:1b:f6:57:
24:7c:0a:71:9a:8c:94:45:15:fd:27:a0:ce:ba:8f:4e:44:1d:
23:ac:aa:00:11:d9:d5:c5:27:ff:98:d5:bf:6b:10:f2:ce:de:
16:6d:0c:f3:5b:34:f4:2c:27:55:e4:8d:a4:58:e5:ab:cd:7d:
be:48:b6:1c:99:6e:1d:08:c4:d0:62:3d:92:5e:bb:e2:80:97:
ba:e5:e5:a6:78:cd:55:71:80:d5:54:5b:b9:b5:c0:2d:a5:62:
84:15:09:de:da:f6:7a:e9:06:b8:01:a2:97:f3:7f:67:72:50:
14:90:34:27
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYwQS1UmtaGAimMD3KPTlXPxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYzEwNDA0MTY5MWRjMzg0ZjNiMWE4Y2RmOTVjOTY2Mjhl
YTZkYWYwHhcNMjMxMTI3MTAyMDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjY2NzVhYTAyZmRjYzUwNGM1MzE5MDQzYzQ4NjZhNmZhNTNlODBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbULpTYaQPARRTXo8eI8bafeAlMS
E8b87mYpNGm4Ajov/veLxumnI0w8m1eGqQw6FnY5enGbDJH2tkiSWXGBJP542z7G
pfl1h0HKrd9YZ3R2Jndrw4LxFPqbL2yIzfqA+7Zz4YN1kp9hqncPTD9yTZQj7mcc
klcYqNMdMw6IerJRA+4Y9C6MqdEp+9b02JbsH3xzuY4UZ4IrUqC2PMHfOa5v+ST6
5356o8XKJ0MAVa+iit3b52piOumOwvL9x+Biwp3kFB57FMAUJjTyQUL6lB0jrBAi
niZdIJdQKY+b+TNuj2tAIDepnxRV00KS9lZwEkkJ5Sxt7IX8FehnWACGowIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFNJmdaoC/cxQTFMZBDxIZqb6U+gKMB8GA1UdIwQY
MBaAFPDBBAQWkdw4TzsajN+VyWYo6m2vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQt
NjkxNDIyMzExNzI5LzEvMG1aMXFnTDl6RkJNVXhrRVBFaG1wdnBUNkFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQtNjkxNDIyMzExNzI5
LzEvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIMAwDBAVfJmAD
BAJfJmgwDAMEAV8mggMEBF8mgAMEA18mmAMEAl8mqAMEAF8mrgMEAl8myAMEAl8m
0DAMAwQEXybwAwQCXyb4MA0GCSqGSIb3DQEBCwUAA4IBAQAez1vBa9Qjnyyjf0SW
BJh9ZH2B/oHT89ii67mz7qbl/0SxRZt8dpRJ1mZ6V40uf3bI2pFtnVwoQ5FNthcc
cSQeqkFQ6WI1fV77Cqgkc4NZVzTqRK6QN646UwIkL0K21JT9EnaZvepnF6cwIbW7
Ct1yxl+audr9INHl5XgTmzQyvCb7dLR6A93AQIbAJlYb9lckfApxmoyURRX9J6DO
uo9ORB0jrKoAEdnVxSf/mNW/axDyzt4WbQzzWzT0LCdV5I2kWOWrzX2+SLYcmW4d
CMTQYj2SXrvigJe65eWmeM1VcYDVVFu5tcAtpWKEFQne2vZ66Qa4AaKX839nclAU
kDQn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org