Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dBSpaWFOkAx4ZQBgX8_7U03wsZs.roa
File: dBSpaWFOkAx4ZQBgX8_7U03wsZs.roa (raw, json)
Hash identifier: 8kjHS2mWxowA2FsVwW9vJYXnsKBSL80vGsGTYO1Nj0Y=
Subject key identifier: 74:14:A9:69:61:4E:90:0C:78:65:00:60:5F:CF:FB:53:4D:F0:B1:9B
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018AD17C66A55B3B0D80293A78DFF3E82FB1
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dBSpaWFOkAx4ZQBgX8_7U03wsZs.roa
Signing time: Tue 26 Sep 2023 12:35:05 +0000
ROA not before: Tue 26 Sep 2023 12:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:7c:66:a5:5b:3b:0d:80:29:3a:78:df:f3:e8:2f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 26 12:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7414a969614e900c786500605fcffb534df0b19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:46:04:1f:fd:4c:87:3a:6b:dc:2a:5e:9e:8a:
49:fc:22:9a:5d:e0:95:49:b4:13:95:8e:ee:77:7c:
23:fd:09:f7:36:12:db:86:0c:2a:c9:19:2d:43:aa:
81:a6:14:a8:52:22:57:48:c0:63:92:5d:7f:94:ff:
01:6b:45:74:b7:e6:72:80:d8:34:58:84:7f:03:39:
c7:a2:d8:e2:4e:3b:68:69:14:ef:39:7e:bc:fa:87:
0a:03:44:f8:3d:8a:3c:d0:70:ee:99:cf:56:f3:88:
b3:0f:b3:d9:78:4e:d2:8e:09:10:9d:6c:75:60:e3:
0a:5b:51:33:31:ac:ea:c6:8c:ce:f0:bc:71:9a:81:
2d:41:9a:1c:57:c8:ec:bc:8e:55:cb:86:2d:5d:06:
79:8d:d5:9d:1e:24:26:8b:90:bf:44:cf:84:69:f2:
77:c8:37:2a:1a:c9:bc:13:03:0a:39:78:5c:f3:73:
1d:d3:fc:35:3d:ac:76:3f:6c:d8:bd:d3:0e:50:b1:
b7:6e:a8:57:b3:99:d6:cf:cc:6b:70:ec:03:97:73:
28:39:dd:4d:ca:0c:49:c7:b7:17:c8:2f:cf:16:4c:
5b:6d:f1:cb:a4:a3:99:a5:34:7c:dd:97:bc:6f:82:
aa:cd:51:85:0e:8c:e0:bb:1a:89:e7:6f:0e:06:86:
be:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:14:A9:69:61:4E:90:0C:78:65:00:60:5F:CF:FB:53:4D:F0:B1:9B
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dBSpaWFOkAx4ZQBgX8_7U03wsZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.213.255
93.152.215.0-93.152.219.255
93.152.222.0-93.152.227.255
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
19:58:df:54:2c:9b:14:16:88:e6:7e:27:5f:ce:2e:a9:2e:55:
04:a7:bf:1b:cf:91:e9:d4:21:35:34:05:d8:f0:ec:f1:cf:e0:
51:f9:a6:de:0a:62:7b:c2:4b:cd:92:db:cc:b2:18:23:2d:67:
82:ef:bc:62:35:1c:fe:aa:7c:de:af:ac:a9:9a:12:31:3c:d3:
14:eb:47:5f:95:61:e9:d0:b9:74:dc:b1:d9:cb:45:af:e8:96:
ed:53:d7:a0:45:a3:fe:fa:1c:e8:e9:69:7a:a9:e9:98:4b:7e:
99:97:59:04:6c:4b:42:92:af:a3:35:78:a8:e7:41:06:4c:bd:
4a:cb:c0:54:e7:f1:ca:81:f2:f6:fc:f1:74:7c:8c:66:72:38:
68:6e:8e:de:a4:a2:50:11:d3:3d:7c:e9:42:37:92:a5:90:76:
db:ab:5f:c7:64:a0:40:07:c3:dd:c4:26:86:d7:1e:f6:af:f8:
d8:cd:dc:bb:f2:05:fd:a8:1b:e9:72:38:51:b2:15:98:e7:ea:
ed:3b:c4:95:bf:9e:78:0e:5a:a8:33:09:a4:55:55:58:a7:6e:
d5:62:48:2d:aa:86:78:09:41:77:08:44:7d:7e:12:3f:d3:59:
cd:b1:9f:d8:cf:01:a2:ed:03:1d:e5:77:56:b0:6e:cb:29:85:
3a:61:4f:81
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYrRfGalWzsNgCk6eN/z6C+xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjMwOTI2MTIzNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDE0YTk2OTYxNGU5MDBjNzg2NTAwNjA1ZmNmZmI1MzRkZjBiMTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUYEH/1Mhzpr3CpenopJ/CKaXeCV
SbQTlY7ud3wj/Qn3NhLbhgwqyRktQ6qBphSoUiJXSMBjkl1/lP8Ba0V0t+ZygNg0
WIR/AznHotjiTjtoaRTvOX68+ocKA0T4PYo80HDumc9W84izD7PZeE7SjgkQnWx1
YOMKW1EzMazqxozO8LxxmoEtQZocV8jsvI5Vy4YtXQZ5jdWdHiQmi5C/RM+EafJ3
yDcqGsm8EwMKOXhc83Md0/w1Pax2P2zYvdMOULG3bqhXs5nWz8xrcOwDl3MoOd1N
ygxJx7cXyC/PFkxbbfHLpKOZpTR83Ze8b4KqzVGFDozguxqJ528OBoa+6wIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFHQUqWlhTpAMeGUAYF/P+1NN8LGbMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvZEJTcGFXRk9rQXg0WlFCZ1g4XzdVMDN3c1pzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHBBggrBgEFBQcBBwEB/wSBsTCBrjCBqwQCAAEwgaQDBAEt
jegDBAFOn4ADBAJOn4gwDAMEAE6flQMEAE6flgMEA06fmDAMAwQAW1whAwQCW1wg
AwQDW1woMAwDBABbXDEDBAFbXDQwDAMEAF2YzQMEAV2Y1DAMAwQAXZjXAwQCXZjY
MAwDBAFdmN4DBAJdmOADBAFeGhwDBAJeGkwwDAMEAF4aWQMEAF4aWgMEAblg/AME
ALlg/wMEANRmaQMEANRmazANBgkqhkiG9w0BAQsFAAOCAQEAGVjfVCybFBaI5n4n
X84uqS5VBKe/G8+R6dQhNTQF2PDs8c/gUfmm3gpie8JLzZLbzLIYIy1ngu+8YjUc
/qp83q+sqZoSMTzTFOtHX5Vh6dC5dNyx2ctFr+iW7VPXoEWj/voc6OlpeqnpmEt+
mZdZBGxLQpKvozV4qOdBBky9SsvAVOfxyoHy9vzxdHyMZnI4aG6O3qSiUBHTPXzp
QjeSpZB226tfx2SgQAfD3cQmhtce9q/42M3cu/IF/agb6XI4UbIVmOfq7TvElb+e
eA5aqDMJpFVVWKdu1WJILaqGeAlBdwhEfX4SP9NZzbGf2M8Bou0DHeV3VrBuyymF
OmFPgQ==
Generated at Fri Sep 29 12:22:32 2023 by rpki-client on console-fra.rpki-client.org