Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dEwoQ96xlgdHVCrM2glCo_XA4cQ.roa
File: dEwoQ96xlgdHVCrM2glCo_XA4cQ.roa (raw, json)
Hash identifier: xWCHfEI4wgKANa3McbekP5QPQzk4aXiQIJ9qwTpU28w=
Subject key identifier: 74:4C:28:43:DE:B1:96:07:47:54:2A:CC:DA:09:42:A3:F5:C0:E1:C4
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018964210068DD99C90D6EB48E4861CEC012
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dEwoQ96xlgdHVCrM2glCo_XA4cQ.roa
Signing time: Mon 17 Jul 2023 13:53:51 +0000
ROA not before: Mon 17 Jul 2023 13:53:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:21:00:68:dd:99:c9:0d:6e:b4:8e:48:61:ce:c0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 17 13:53:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=744c2843deb1960747542accda0942a3f5c0e1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:09:49:10:cf:40:c0:64:20:88:78:53:82:
31:23:a4:6a:ce:52:93:a2:79:1d:b7:43:d6:91:65:
66:b0:59:d8:9f:90:ef:06:1c:19:35:93:e1:55:7c:
92:b3:1f:9e:ff:89:58:c4:f8:5a:c8:59:f6:e6:b6:
8d:87:be:32:8a:e4:79:eb:81:5c:c5:21:2b:0c:8a:
3c:fc:9c:45:21:2c:eb:1d:8d:3b:5b:1d:4a:49:ec:
f6:7b:af:86:27:fa:53:d9:58:9c:ab:4c:dc:5e:95:
db:83:67:fa:96:3b:64:2f:64:d5:26:58:f0:1f:dc:
ce:42:9f:56:ca:5e:88:f5:ef:22:2d:73:a0:78:90:
39:05:93:d5:2d:e4:4b:dc:fd:db:26:c4:94:5f:55:
77:10:08:47:b9:8d:3a:80:03:a7:bd:9d:33:a3:b2:
19:17:bc:89:6b:0c:dc:94:bf:c5:45:86:36:68:f8:
b0:93:1b:cf:20:39:63:31:32:78:a6:b6:38:1b:0f:
02:b4:ea:9f:10:b7:db:23:62:bd:0e:f8:bd:e8:29:
28:a4:07:e4:e5:fd:3f:28:b4:80:44:8b:c8:ad:22:
a9:69:8b:c0:97:d7:97:95:ea:cf:a4:ea:2f:9a:c3:
38:a0:49:9c:3f:c5:e2:34:37:e6:86:4b:1a:98:1b:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4C:28:43:DE:B1:96:07:47:54:2A:CC:DA:09:42:A3:F5:C0:E1:C4
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/dEwoQ96xlgdHVCrM2glCo_XA4cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.210.255
93.152.212.0-93.152.223.255
93.152.225.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
41:3f:2f:07:70:f8:63:cc:71:a3:4c:96:97:9b:4d:30:b1:1f:
ab:7b:42:1d:b3:06:e9:de:38:a7:d7:e8:a5:69:73:a0:d4:b3:
dd:fa:f5:cd:46:05:06:10:e7:09:8b:46:d9:a7:94:5f:c8:80:
33:47:ce:06:cc:3b:d0:35:6d:7b:ca:43:12:f7:4e:ab:79:84:
aa:08:14:6b:42:c3:c1:c9:e6:54:ca:ba:93:17:ea:f1:12:42:
cc:44:ff:f9:01:ac:8e:69:da:76:4a:bb:21:5c:48:18:3b:17:
82:aa:49:34:90:41:cd:1d:79:37:b4:b5:a5:cf:b3:13:dd:d2:
f7:ee:82:0a:45:1e:3f:9c:f0:10:08:d2:db:fc:88:12:13:a2:
ea:a6:21:74:69:41:cf:2f:0b:10:d4:32:a9:68:e3:0c:cf:9e:
ff:8e:4c:74:b6:05:9c:9d:d1:6c:92:e0:7f:4f:3e:7c:da:db:
b0:08:58:ff:dd:11:ea:83:b1:b5:37:d3:65:58:14:f3:22:a4:
65:69:95:31:70:d5:27:30:fe:c3:4a:d9:27:6d:19:71:7b:8d:
49:de:39:7b:90:3f:a8:33:5e:51:67:d6:b1:08:52:c2:9e:74:
4c:e9:ae:df:3a:d2:0b:2c:8f:73:12:0d:0d:9c:90:8a:42:08:
8a:2f:ca:01
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgISAYlkIQBo3ZnJDW60jkhhzsASMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjMwNzE3MTM1MzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDRjMjg0M2RlYjE5NjA3NDc1NDJhY2NkYTA5NDJhM2Y1YzBlMWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1D8JSRDPQMBkIIh4U4IxI6RqzlKT
onkdt0PWkWVmsFnYn5DvBhwZNZPhVXySsx+e/4lYxPhayFn25raNh74yiuR564Fc
xSErDIo8/JxFISzrHY07Wx1KSez2e6+GJ/pT2Vicq0zcXpXbg2f6ljtkL2TVJljw
H9zOQp9Wyl6I9e8iLXOgeJA5BZPVLeRL3P3bJsSUX1V3EAhHuY06gAOnvZ0zo7IZ
F7yJawzclL/FRYY2aPiwkxvPIDljMTJ4prY4Gw8CtOqfELfbI2K9Dvi96CkopAfk
5f0/KLSARIvIrSKpaYvAl9eXlerPpOovmsM4oEmcP8XiNDfmhksamBvMsQIDAQAB
o4ICsjCCAq4wHQYDVR0OBBYEFHRMKEPesZYHR1QqzNoJQqP1wOHEMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvZEV3b1E5NnhsZ2RIVkNyTTJnbENvX1hBNGNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHHBggrBgEFBQcBBwEB/wSBtzCBtDCBsQQCAAEwgaoDBAEt
jegDBAAtjesDBAFOn4ADBAJOn4gwDAMEAE6flQMEAE6flgMEA06fmDAMAwQAW1wh
AwQCW1wgAwQDW1woMAwDBABbXDEDBAFbXDQwDAMEAF2YzQMEAF2Y0jAMAwQCXZjU
AwQFXZjAMAwDBABdmOEDBAJdmOADBABdmOYDBAFeGhwDBAJeGkwwDAMEAF4aWQME
AF4aWgMEAblg/AMEALlg/wMEANRmaTANBgkqhkiG9w0BAQsFAAOCAQEAQT8vB3D4
Y8xxo0yWl5tNMLEfq3tCHbMG6d44p9fopWlzoNSz3fr1zUYFBhDnCYtG2aeUX8iA
M0fOBsw70DVte8pDEvdOq3mEqggUa0LDwcnmVMq6kxfq8RJCzET/+QGsjmnadkq7
IVxIGDsXgqpJNJBBzR15N7S1pc+zE93S9+6CCkUeP5zwEAjS2/yIEhOi6qYhdGlB
zy8LENQyqWjjDM+e/45MdLYFnJ3RbJLgf08+fNrbsAhY/90R6oOxtTfTZVgU8yKk
ZWmVMXDVJzD+w0rZJ20ZcXuNSd45e5A/qDNeUWfWsQhSwp50TOmu3zrSCyyPcxIN
DZyQikIIii/KAQ==
-----END CERTIFICATE-----
Generated at Thu Aug 3 17:07:04 2023 by rpki-client on console-ams.rpki-client.org