Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/5qUx-IoOpnzFeNl01jUJwGeqw7w.roa
File: 5qUx-IoOpnzFeNl01jUJwGeqw7w.roa (raw, json)
Hash identifier: 0zag4uqq/YR9cMjYeGyVndlqtXuDM8iLnHF7Cw1OyHo=
Subject key identifier: E6:A5:31:F8:8A:0E:A6:7C:C5:78:D9:74:D6:35:09:C0:67:AA:C3:BC
Certificate issuer: /CN=eebe79d147882422ec275417dfd2affa93a02757
Certificate serial: 018CDACE7C048E0464DAA1748B2229C81811
Authority key identifier: EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/5qUx-IoOpnzFeNl01jUJwGeqw7w.roa
Signing time: Fri 05 Jan 2024 18:06:54 +0000
ROA not before: Fri 05 Jan 2024 18:06:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34876
IP address blocks: 95.86.188.0/24 maxlen: 24
95.86.189.0/24 maxlen: 24
95.86.190.0/24 maxlen: 24
95.86.191.0/24 maxlen: 24
95.86.138.0/24 maxlen: 24
95.86.139.0/24 maxlen: 24
95.86.133.0/24 maxlen: 24
95.86.134.0/24 maxlen: 24
95.86.137.0/24 maxlen: 24
95.86.135.0/24 maxlen: 24
95.86.140.0/24 maxlen: 24
95.86.141.0/24 maxlen: 24
95.86.143.0/24 maxlen: 24
95.86.144.0/21 maxlen: 21
95.86.142.0/24 maxlen: 24
95.86.152.0/24 maxlen: 24
95.86.154.0/24 maxlen: 24
95.86.153.0/24 maxlen: 24
95.86.157.0/24 maxlen: 24
95.86.158.0/24 maxlen: 24
95.86.155.0/24 maxlen: 24
95.86.156.0/24 maxlen: 24
95.86.159.0/24 maxlen: 24
95.86.166.0/24 maxlen: 24
95.86.161.0/24 maxlen: 24
95.86.160.0/24 maxlen: 24
95.86.164.0/24 maxlen: 24
95.86.165.0/24 maxlen: 24
95.86.162.0/24 maxlen: 24
95.86.163.0/24 maxlen: 24
95.86.168.0/22 maxlen: 22
95.86.167.0/24 maxlen: 24
95.86.172.0/24 maxlen: 24
95.86.175.0/24 maxlen: 24
95.86.173.0/24 maxlen: 24
95.86.174.0/24 maxlen: 24
95.86.178.0/24 maxlen: 24
95.86.179.0/24 maxlen: 24
95.86.176.0/24 maxlen: 24
95.86.177.0/24 maxlen: 24
95.86.182.0/24 maxlen: 24
95.86.180.0/24 maxlen: 24
95.86.181.0/24 maxlen: 24
95.86.183.0/24 maxlen: 24
95.86.184.0/22 maxlen: 22
95.86.129.0/24 maxlen: 24
95.86.130.0/24 maxlen: 24
95.86.128.0/24 maxlen: 24
95.86.131.0/24 maxlen: 24
95.86.132.0/24 maxlen: 24
193.8.62.0/23 maxlen: 23
193.8.62.0/24 maxlen: 24
193.8.63.0/24 maxlen: 24
193.8.73.0/24 maxlen: 24
193.8.72.0/23 maxlen: 23
193.8.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 11:51:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:da:ce:7c:04:8e:04:64:da:a1:74:8b:22:29:c8:18:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebe79d147882422ec275417dfd2affa93a02757
Validity
Not Before: Jan 5 18:06:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a531f88a0ea67cc578d974d63509c067aac3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:18:f8:da:c9:6f:a2:59:e1:bc:b0:83:b2:ca:
1c:0e:b6:24:78:2f:82:da:45:56:b5:98:34:6d:7a:
8b:8e:34:b0:6f:48:18:5a:04:1f:fc:ba:5b:67:d5:
a9:27:c5:6b:5c:63:91:9c:0e:c9:4e:85:6a:0a:eb:
3f:c8:50:f2:7c:0a:d1:d6:e9:91:80:f6:25:73:40:
bd:d7:6b:6a:1a:55:d7:34:d6:57:84:99:ca:e1:ac:
e3:1a:4f:90:dd:fc:9c:65:38:b8:91:67:64:60:56:
47:9f:f0:ad:70:90:8e:77:08:21:d4:1f:1d:8b:bc:
af:c4:b0:eb:de:57:59:19:ed:60:70:4c:9a:c3:74:
df:8e:2f:c3:60:a4:d5:c6:06:f0:75:79:03:77:83:
17:31:10:bf:c5:c0:f0:a8:7e:52:9e:a3:d7:2a:e6:
77:6a:db:e7:e9:ac:0d:c8:06:c6:bf:e4:c0:88:a2:
19:4d:87:c8:a8:90:86:1a:f7:f8:e9:09:a6:71:68:
10:dd:8e:bd:55:7f:14:95:f7:a5:4e:a1:78:d9:d0:
24:e0:46:46:b4:80:47:5f:f8:85:32:1f:fc:a4:f0:
63:de:95:58:ba:09:fb:a7:43:d0:a1:ea:61:bb:c7:
00:da:87:2f:59:c0:cd:e0:52:50:54:a2:87:64:d9:
a4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A5:31:F8:8A:0E:A6:7C:C5:78:D9:74:D6:35:09:C0:67:AA:C3:BC
X509v3 Authority Key Identifier:
keyid:EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/5qUx-IoOpnzFeNl01jUJwGeqw7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.86.128.0/21
95.86.137.0-95.86.191.255
193.8.62.0/23
193.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:49:38:43:61:4a:3a:a9:f4:48:82:79:10:55:e8:f0:29:46:
5d:2a:2c:c7:e3:65:7b:37:91:09:d1:8c:59:d0:46:6e:02:36:
20:74:42:59:2d:f7:0a:3d:9b:3d:e5:49:5f:57:3f:78:1a:28:
31:6a:91:93:0a:d3:81:6f:2e:1c:b3:26:72:41:77:3c:df:e8:
d8:b1:7a:b4:67:9e:65:32:94:e6:a0:1d:a9:50:d8:17:c9:6a:
e7:15:71:21:a7:4c:28:ad:85:a9:aa:d4:1a:e7:49:3e:bb:7c:
df:51:8d:cb:a2:d5:c7:ab:c8:d2:ce:9e:ba:78:4c:a1:ee:65:
d8:6d:f9:aa:7c:4b:45:b4:c0:47:37:02:07:82:2d:06:69:7e:
a7:73:72:ab:f5:29:27:0d:f7:ff:c6:87:a7:63:9b:fe:10:bb:
d7:cd:84:b4:b6:b1:49:9b:cb:10:13:6e:88:50:40:b4:22:df:
e1:8d:0c:08:fd:12:19:d4:dc:85:8c:c5:05:c0:1a:32:ce:7b:
8f:9f:c6:e0:65:54:c6:48:dd:d1:77:3b:e0:e6:19:5e:56:de:
73:9d:74:7d:32:9a:c8:e1:6c:5a:1c:e5:ac:bc:d1:22:14:de:
96:b9:56:9e:8c:34:eb:7b:d7:c5:db:fd:f1:a3:04:d3:2f:cd:
7a:4d:bc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 15:44:46 2024 by rpki-client on console-ams.rpki-client.org