Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/9-c-tCl2HlGQW1l9LEC5pQ6u0-E.roa
File: 9-c-tCl2HlGQW1l9LEC5pQ6u0-E.roa (raw, json)
Hash identifier: Ed6K/+CHt4dutr/yEA2NFQPhBkshCB9AB2RAejjV1as=
Subject key identifier: F7:E7:3E:B4:29:76:1E:51:90:5B:59:7D:2C:40:B9:A5:0E:AE:D3:E1
Certificate issuer: /CN=eebe79d147882422ec275417dfd2affa93a02757
Certificate serial: 018CC86F45E37383502B45FF342B779E519F
Authority key identifier: EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/9-c-tCl2HlGQW1l9LEC5pQ6u0-E.roa
Signing time: Tue 02 Jan 2024 04:29:44 +0000
ROA not before: Tue 02 Jan 2024 04:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34876
IP address blocks: 95.86.188.0/24 maxlen: 24
95.86.189.0/24 maxlen: 24
95.86.190.0/24 maxlen: 24
95.86.191.0/24 maxlen: 24
95.86.138.0/24 maxlen: 24
95.86.139.0/24 maxlen: 24
95.86.133.0/24 maxlen: 24
95.86.134.0/24 maxlen: 24
95.86.136.0/24 maxlen: 24
95.86.137.0/24 maxlen: 24
95.86.135.0/24 maxlen: 24
95.86.140.0/24 maxlen: 24
95.86.141.0/24 maxlen: 24
95.86.143.0/24 maxlen: 24
95.86.144.0/21 maxlen: 21
95.86.142.0/24 maxlen: 24
95.86.152.0/24 maxlen: 24
95.86.154.0/24 maxlen: 24
95.86.153.0/24 maxlen: 24
95.86.157.0/24 maxlen: 24
95.86.158.0/24 maxlen: 24
95.86.155.0/24 maxlen: 24
95.86.156.0/24 maxlen: 24
95.86.159.0/24 maxlen: 24
95.86.166.0/24 maxlen: 24
95.86.161.0/24 maxlen: 24
95.86.160.0/24 maxlen: 24
95.86.164.0/24 maxlen: 24
95.86.165.0/24 maxlen: 24
95.86.162.0/24 maxlen: 24
95.86.163.0/24 maxlen: 24
95.86.168.0/22 maxlen: 22
95.86.167.0/24 maxlen: 24
95.86.172.0/24 maxlen: 24
95.86.175.0/24 maxlen: 24
95.86.173.0/24 maxlen: 24
95.86.174.0/24 maxlen: 24
95.86.178.0/24 maxlen: 24
95.86.179.0/24 maxlen: 24
95.86.176.0/24 maxlen: 24
95.86.177.0/24 maxlen: 24
95.86.182.0/24 maxlen: 24
95.86.180.0/24 maxlen: 24
95.86.181.0/24 maxlen: 24
95.86.183.0/24 maxlen: 24
95.86.184.0/22 maxlen: 22
95.86.129.0/24 maxlen: 24
95.86.130.0/24 maxlen: 24
95.86.128.0/24 maxlen: 24
95.86.128.0/18 maxlen: 18
95.86.131.0/24 maxlen: 24
95.86.132.0/24 maxlen: 24
193.8.62.0/23 maxlen: 23
193.8.62.0/24 maxlen: 24
193.8.63.0/24 maxlen: 24
193.8.73.0/24 maxlen: 24
193.8.72.0/23 maxlen: 23
193.8.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jan 2024 16:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:45:e3:73:83:50:2b:45:ff:34:2b:77:9e:51:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebe79d147882422ec275417dfd2affa93a02757
Validity
Not Before: Jan 2 04:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7e73eb429761e51905b597d2c40b9a50eaed3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:97:0b:ed:ba:4d:79:4f:16:d8:d7:cb:1f:c2:
47:11:e0:e0:b3:e1:7d:2e:d8:b9:55:7f:44:c0:b2:
bb:a9:24:77:26:8d:c6:b4:0e:72:a3:df:23:2c:88:
bc:10:7c:47:b7:f9:48:4a:51:50:ee:52:99:43:f8:
7a:65:3e:7a:8c:0e:48:94:d2:3c:27:c5:6a:f9:dc:
b9:54:8a:b5:1f:70:82:44:8d:8c:8f:39:bd:86:99:
34:9b:6d:0e:3d:48:9e:f0:3c:36:7a:67:e1:d5:f9:
de:d8:e4:b9:fd:8d:c5:66:fe:08:44:8f:a0:97:79:
97:e4:d7:5b:52:d0:4e:4e:97:32:18:e0:82:87:12:
78:ef:66:e9:f7:03:72:bf:a5:84:62:a6:34:3a:ed:
f3:f2:f9:57:08:6c:09:fe:3a:b4:77:b4:38:db:4b:
3a:10:b6:a8:6d:46:80:37:e6:5f:e1:73:20:cb:24:
d3:09:15:63:f7:22:32:be:c1:44:80:06:6d:51:37:
4d:64:ae:3e:b4:8b:1f:ee:16:0c:ea:e3:00:4a:1f:
df:fa:4f:74:03:2b:96:99:2e:a2:00:c8:65:ff:12:
26:31:97:87:9d:a2:cf:16:dd:75:38:80:6b:75:fe:
70:6d:8a:45:d6:52:3c:d5:9a:04:61:42:7f:7c:83:
e5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E7:3E:B4:29:76:1E:51:90:5B:59:7D:2C:40:B9:A5:0E:AE:D3:E1
X509v3 Authority Key Identifier:
keyid:EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/9-c-tCl2HlGQW1l9LEC5pQ6u0-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.86.128.0/18
193.8.62.0/23
193.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
32:c3:b4:58:e9:2b:03:26:f1:2e:c5:ff:9e:73:9e:70:6e:49:
74:98:30:95:df:99:c5:b6:fd:42:d9:7d:9d:31:c1:20:71:48:
bd:7e:7d:1b:14:9a:2d:64:99:d5:35:47:29:94:52:e3:c8:21:
54:c7:bd:9d:ec:e8:ae:4e:41:7f:a7:96:52:0b:ff:d9:c6:50:
33:19:ba:06:02:ce:e3:65:a0:1b:29:0f:55:22:48:26:e6:6e:
89:5b:1b:96:0d:c1:80:8c:51:7c:84:e1:93:f5:8e:ab:24:af:
67:dd:30:99:88:da:10:0d:15:b3:52:0d:28:15:a2:7c:d3:1f:
7a:aa:bf:73:18:ea:f2:1e:ea:ea:82:0d:60:ee:f0:81:45:39:
84:81:59:76:68:b5:0a:41:e9:93:6c:8e:60:5d:f2:b9:44:d3:
a9:64:1c:9c:44:c6:97:bd:98:53:c7:a6:6e:d4:9b:49:1b:3d:
cb:65:d8:5a:d0:44:a6:70:ae:3f:b0:23:d1:14:52:e9:47:de:
af:a5:57:35:1f:65:66:24:32:52:0b:39:8c:53:ac:40:c4:c7:
94:ad:78:02:19:43:ac:22:b6:07:c1:6d:36:49:8f:25:12:c0:
87:39:04:8d:cf:bb:ca:53:cf:14:95:b0:5c:8d:44:d3:81:18:
05:b4:db:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:13 2024 by rpki-client on console-ams.rpki-client.org