Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/L2IejGTwQPLUS6-Fx50jM0tQWic.roa
File: L2IejGTwQPLUS6-Fx50jM0tQWic.roa (raw, json)
Hash identifier: xr9JsgCgR+BtXLky6fOVhogR98NzbTWj7jtPohtjw3Y=
Subject key identifier: 2F:62:1E:8C:64:F0:40:F2:D4:4B:AF:85:C7:9D:23:33:4B:50:5A:27
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 01891D860A52D475D8E1E1562530182A276E
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/L2IejGTwQPLUS6-Fx50jM0tQWic.roa
Signing time: Mon 03 Jul 2023 20:51:11 +0000
ROA not before: Mon 03 Jul 2023 20:51:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1d:86:0a:52:d4:75:d8:e1:e1:56:25:30:18:2a:27:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 3 20:51:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f621e8c64f040f2d44baf85c79d23334b505a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2b:03:1d:49:73:9c:62:67:99:5e:ff:27:20:
e8:7e:3b:99:4f:84:13:2c:87:d4:38:33:94:72:85:
9e:20:64:c8:7e:7a:a9:c1:12:9f:0d:62:8b:2a:6e:
b5:59:89:91:5d:7d:de:6a:63:3e:2e:6c:9b:73:e4:
a2:3d:38:08:4c:fa:18:de:a9:ed:fa:8d:72:fc:d6:
f5:c7:1c:82:73:18:59:cb:e4:9c:64:4f:d8:56:23:
c1:61:23:3a:09:f7:1f:16:89:a2:7a:6f:d1:5f:d2:
04:6d:7e:ac:1f:3d:30:3c:d9:1f:73:90:a8:5b:e3:
ae:d0:f6:85:a9:54:ca:29:be:dd:f7:e2:a9:c7:e0:
d0:e2:9d:15:89:e4:21:87:17:5d:7b:d3:7d:af:c3:
77:74:5e:17:00:3c:b6:7b:9d:92:00:51:73:24:69:
4b:5f:b0:d3:7f:b9:ac:b8:c0:93:72:f2:ec:13:c8:
94:6b:51:63:23:c9:2e:93:c9:7a:e5:bb:90:41:f6:
86:4c:9f:32:85:35:85:43:1b:64:4a:98:f8:37:ec:
44:ed:11:73:d2:59:12:76:ef:c9:1d:8a:18:64:39:
47:03:e8:04:21:36:3f:1e:7e:32:91:18:6a:80:85:
e1:1f:8f:bf:89:68:e7:77:92:ae:d0:6c:20:00:0a:
b7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:62:1E:8C:64:F0:40:F2:D4:4B:AF:85:C7:9D:23:33:4B:50:5A:27
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/L2IejGTwQPLUS6-Fx50jM0tQWic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.210.255
93.152.212.0-93.152.223.255
93.152.225.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:6b:bb:52:e1:a9:af:67:bc:e9:3b:e7:f9:98:e4:24:f9:40:
fa:a3:43:ca:78:94:68:70:e9:6b:e4:25:b9:43:7c:82:67:1e:
53:35:4d:2c:93:ab:17:f6:f0:c5:7e:9e:79:eb:c5:f5:5d:6d:
77:55:64:e4:7f:09:c9:19:fe:fc:83:c6:91:f5:a1:cc:89:06:
a0:f0:1f:ad:1d:4a:50:74:64:a5:6c:1c:6e:e3:26:b1:1b:c8:
bd:e5:83:bd:a8:d2:9a:a5:b9:61:4a:a7:8c:b3:b2:ea:2e:ef:
f1:10:d7:2a:36:ba:78:b7:e6:19:cf:67:67:62:66:80:be:eb:
d6:54:02:e7:e1:35:95:a5:31:d6:00:97:64:00:f0:59:3c:cd:
fb:28:6a:b9:17:72:68:92:89:39:e8:58:ab:ed:3f:33:29:21:
90:a2:32:82:ba:05:10:ca:b8:72:15:c4:92:32:ee:16:67:af:
af:6c:aa:84:17:30:1d:40:af:24:63:6c:89:c3:8f:fb:21:3c:
bc:0c:fa:4c:3c:91:3b:95:62:bb:be:9a:af:69:bf:50:f8:d5:
ae:d6:55:76:0c:33:3a:c4:8c:02:11:2d:61:2a:55:e0:fb:d4:
80:45:1d:c9:ac:e0:93:70:9f:df:7d:e5:5b:ba:5c:23:95:25:
9e:c4:1e:1c
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgISAYkdhgpS1HXY4eFWJTAYKiduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjMwNzAzMjA1MTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjYyMWU4YzY0ZjA0MGYyZDQ0YmFmODVjNzlkMjMzMzRiNTA1YTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4SsDHUlznGJnmV7/JyDofjuZT4QT
LIfUODOUcoWeIGTIfnqpwRKfDWKLKm61WYmRXX3eamM+Lmybc+SiPTgITPoY3qnt
+o1y/Nb1xxyCcxhZy+ScZE/YViPBYSM6CfcfFomiem/RX9IEbX6sHz0wPNkfc5Co
W+Ou0PaFqVTKKb7d9+Kpx+DQ4p0VieQhhxdde9N9r8N3dF4XADy2e52SAFFzJGlL
X7DTf7msuMCTcvLsE8iUa1FjI8kuk8l65buQQfaGTJ8yhTWFQxtkSpj4N+xE7RFz
0lkSdu/JHYoYZDlHA+gEITY/Hn4ykRhqgIXhH4+/iWjnd5Ku0GwgAAq3pQIDAQAB
o4ICsjCCAq4wHQYDVR0OBBYEFC9iHoxk8EDy1EuvhcedIzNLUFonMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvTDJJZWpHVHdRUExVUzYtRng1MGpNMHRRV2ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHHBggrBgEFBQcBBwEB/wSBtzCBtDCBsQQCAAEwgaoDBAEt
jegDBAAtjesDBAFOn4ADBAJOn4gwDAMEAE6flQMEAE6flgMEA06fmDAMAwQAW1wh
AwQCW1wgAwQDW1woMAwDBABbXDEDBAFbXDQwDAMEAF2YzQMEAF2Y0jAMAwQCXZjU
AwQFXZjAMAwDBABdmOEDBAJdmOADBABdmOYDBAFeGhwDBAJeGkwwDAMEAF4aWQME
AF4aWgMEAblg/AMEALlg/wMEANRmaTANBgkqhkiG9w0BAQsFAAOCAQEAX2u7UuGp
r2e86Tvn+ZjkJPlA+qNDyniUaHDpa+QluUN8gmceUzVNLJOrF/bwxX6eeevF9V1t
d1Vk5H8JyRn+/IPGkfWhzIkGoPAfrR1KUHRkpWwcbuMmsRvIveWDvajSmqW5YUqn
jLOy6i7v8RDXKja6eLfmGc9nZ2JmgL7r1lQC5+E1laUx1gCXZADwWTzN+yhquRdy
aJKJOehYq+0/MykhkKIygroFEMq4chXEkjLuFmevr2yqhBcwHUCvJGNsicOP+yE8
vAz6TDyRO5Viu76ar2m/UPjVrtZVdgwzOsSMAhEtYSpV4PvUgEUdyazgk3Cf333l
W7pcI5UlnsQeHA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org