Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Z0UdVXDSjMb7nvDirAZecQWRzEI.roa
File: Z0UdVXDSjMb7nvDirAZecQWRzEI.roa (raw, json)
Hash identifier: kKHs/jouea4TsvUWieLUJ3Fzg5sq7ELWR9iKR6ET30Y=
Subject key identifier: 67:45:1D:55:70:D2:8C:C6:FB:9E:F0:E2:AC:06:5E:71:05:91:CC:42
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018AE0CBB053A4B5C10E213EDF8089322A8C
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Z0UdVXDSjMb7nvDirAZecQWRzEI.roa
Signing time: Fri 29 Sep 2023 11:55:59 +0000
ROA not before: Fri 29 Sep 2023 11:55:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e0:cb:b0:53:a4:b5:c1:0e:21:3e:df:80:89:32:2a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 29 11:55:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67451d5570d28cc6fb9ef0e2ac065e710591cc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:be:77:99:a4:97:1a:8f:fe:27:ee:2f:26:
eb:4a:a8:38:ed:61:6c:ef:71:2c:a1:48:63:51:73:
2c:ff:f5:3b:19:0e:e2:ee:bf:fc:92:7f:71:14:d4:
0d:0b:0b:4c:ab:18:cd:af:ca:eb:3a:e1:46:ad:c6:
a6:0f:1f:17:70:2b:3c:54:d8:00:e4:77:81:4d:93:
e4:1c:68:ea:cc:df:2e:92:1e:ff:ad:ce:d4:bb:c3:
f3:85:e7:fc:12:59:41:7a:b5:69:e0:63:34:01:07:
64:11:63:8a:e5:ae:c3:27:72:02:74:b2:78:9a:f8:
7b:29:99:6f:64:28:25:fa:ce:3a:db:81:23:ba:d9:
12:3e:69:39:95:a5:82:9a:0f:47:23:85:ec:71:64:
51:ed:b3:b2:fc:fb:00:37:64:66:25:c4:f6:c0:5b:
49:2e:f4:85:48:74:c5:b9:3d:d1:3c:d9:85:24:f2:
76:9f:69:57:61:93:d0:fd:4d:df:59:86:61:8e:bd:
c7:83:c4:5e:bd:ab:fd:dd:b7:1e:15:2e:61:d4:a0:
54:a3:08:78:05:c8:2a:28:dc:93:bd:c0:25:f6:c3:
d9:19:83:e7:ff:22:e5:fc:48:66:a8:32:2c:4a:78:
bf:fa:00:6e:f3:25:ca:a4:54:e1:32:05:97:8a:38:
15:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:45:1D:55:70:D2:8C:C6:FB:9E:F0:E2:AC:06:5E:71:05:91:CC:42
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Z0UdVXDSjMb7nvDirAZecQWRzEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.227.255
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:55:7d:ab:77:7b:bb:5e:e5:cd:a4:99:dc:a7:4a:c9:d4:c5:
10:4e:af:79:fe:32:a7:47:54:22:1c:91:28:df:e0:a1:dc:93:
9c:e2:f0:d4:eb:26:1f:d4:d0:41:fd:d5:02:a6:4c:df:1b:6a:
9f:d0:a2:8f:0f:28:55:90:1b:6c:59:43:0c:43:18:77:26:dd:
b2:60:85:be:ba:78:91:c9:d8:d2:01:f7:66:3e:3a:4f:38:35:
9a:d5:9c:ee:ee:83:f8:7f:8d:e4:19:30:59:9a:7f:59:15:a0:
42:00:6c:f8:5e:bf:b1:ac:16:5d:65:0b:8d:be:64:e4:6a:e9:
8e:f3:d5:66:6d:be:c0:49:68:b0:7e:b6:7c:11:f3:f7:82:8f:
c4:4b:2a:38:60:47:ba:b1:c0:ef:6d:83:ab:f7:77:54:b5:d4:
b7:98:55:5f:82:61:de:6b:7b:26:e5:4a:f0:f8:82:fd:2a:39:
12:d5:ba:f6:59:06:2f:e9:99:9d:c5:0c:e4:8f:03:68:9d:e8:
b0:9a:c3:70:75:68:63:ea:c8:f2:63:20:fc:68:f4:eb:2e:a9:
7a:70:94:66:1e:06:0f:08:09:43:58:81:3c:c1:5e:80:7a:28:
16:23:b0:b3:00:21:bf:36:9d:0c:24:7a:fd:eb:77:f9:9d:1c:
29:f5:d9:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 2 13:21:58 2023 by rpki-client on console-ams.rpki-client.org