Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ItkWBWV6uuwjchFl8n0H-U-GDXg.roa
File: ItkWBWV6uuwjchFl8n0H-U-GDXg.roa (raw, json)
Hash identifier: 5ibQS+fvvGd/BwnpSWsHl8w/0Db9G6TuBqTrYP2bw+M=
Subject key identifier: 22:D9:16:05:65:7A:BA:EC:23:72:11:65:F2:7D:07:F9:4F:86:0D:78
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A3CDB4C03BD118A663D736A4FF5863AF8
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ItkWBWV6uuwjchFl8n0H-U-GDXg.roa
Signing time: Mon 28 Aug 2023 15:55:19 +0000
ROA not before: Mon 28 Aug 2023 15:55:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:db:4c:03:bd:11:8a:66:3d:73:6a:4f:f5:86:3a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Aug 28 15:55:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22d91605657abaec23721165f27d07f94f860d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:3c:9a:34:b8:ae:c0:8d:ea:62:71:fd:57:
17:27:0e:91:26:56:51:a4:e1:be:cc:48:40:d5:87:
48:d3:35:c5:f0:0a:fe:31:55:7b:f8:70:22:2b:53:
82:16:8e:63:b5:89:5f:b8:4f:43:5a:d0:eb:cb:6b:
68:9f:9d:60:c4:af:b6:78:78:11:62:50:03:8a:a6:
88:3b:2a:31:dc:8c:95:ce:62:ae:7a:e5:29:15:11:
18:4a:ac:3e:ad:9c:f7:6a:9d:8d:20:d9:ac:07:a9:
47:19:56:b1:2a:0d:56:ba:be:51:8e:d3:d9:4c:e2:
98:85:5d:ee:bc:3e:bd:64:f7:7e:59:fc:66:cf:ee:
5e:cc:8f:43:33:33:d5:35:be:c4:50:7a:24:2f:df:
f8:7a:fe:b1:00:03:bc:e9:ee:51:46:7a:d4:b1:bc:
c6:e0:86:a1:ef:a1:a8:17:e7:46:4b:d2:c5:4e:d0:
68:b9:f2:26:b7:f4:82:a4:bd:d3:c3:a0:f7:4b:dc:
94:68:e3:a5:39:16:ef:21:ed:65:32:6a:53:40:7d:
bb:e5:cf:d9:41:43:9e:26:3b:ea:15:02:73:15:77:
fc:8d:2e:c1:b6:1d:45:07:1b:3e:f3:97:22:42:61:
30:8c:84:05:2c:a4:50:a5:55:13:6a:ba:e3:53:43:
23:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D9:16:05:65:7A:BA:EC:23:72:11:65:F2:7D:07:F9:4F:86:0D:78
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ItkWBWV6uuwjchFl8n0H-U-GDXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.210.255
93.152.212.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:bf:4d:9c:6a:a7:f5:a3:b7:0b:53:c4:bf:10:2a:26:7e:f1:
8e:35:76:76:9a:80:4d:56:39:44:e5:86:02:46:93:49:59:0f:
a7:28:ce:2c:e4:7d:90:8e:07:21:6a:14:5b:de:73:44:57:1d:
b6:bb:05:5d:db:d0:10:f8:1c:45:f5:70:42:4f:dc:89:21:b6:
05:30:5d:d8:f4:4f:17:3b:d2:42:9b:69:0a:f5:0e:0a:57:33:
b8:c0:cc:7e:0f:6f:76:5f:d8:48:bd:0a:8d:3d:b2:96:a3:68:
12:96:18:fe:53:d6:25:40:69:7c:3e:41:83:4e:9a:9c:ee:4c:
5d:61:5b:9e:ed:bb:d0:cf:8a:8e:3b:eb:b7:ff:85:83:48:5b:
3b:f1:c1:a5:a6:7c:63:af:02:61:8a:b3:17:fc:4b:58:ed:a4:
a9:70:a9:f2:8e:db:88:68:03:68:d4:d1:09:6d:85:17:aa:6e:
f1:06:9a:d6:1f:e2:dc:c8:69:9b:54:fc:58:d8:1e:41:06:0e:
a3:b5:1f:8c:05:8f:3f:74:f1:e2:ed:44:21:64:51:d2:bc:cd:
8b:a7:51:cc:ac:20:db:44:b0:1f:22:d7:e6:bd:9d:58:70:a3:
52:08:e7:99:c3:aa:e2:de:6f:6b:45:fc:d1:d0:d3:d0:ce:dd:
07:71:b0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org