Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kQBu6o9pttLECgCvAWM3oPkE-LA.roa
File: kQBu6o9pttLECgCvAWM3oPkE-LA.roa (raw, json)
Hash identifier: ZosSmTUthJAaa539+lVrjP3JHN7xLnrocrpEHmf/96M=
Subject key identifier: 91:00:6E:EA:8F:69:B6:D2:C4:0A:00:AF:01:63:37:A0:F9:04:F8:B0
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A4FC46191972D0130D76765F069900F98
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kQBu6o9pttLECgCvAWM3oPkE-LA.roa
Signing time: Fri 01 Sep 2023 08:03:04 +0000
ROA not before: Fri 01 Sep 2023 08:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:c4:61:91:97:2d:01:30:d7:67:65:f0:69:90:0f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 1 08:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91006eea8f69b6d2c40a00af016337a0f904f8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c3:79:a8:21:97:39:65:54:ca:7f:79:39:70:
cf:56:0b:59:94:32:64:c5:3a:a1:84:52:08:a3:ae:
e7:3d:a6:da:0e:54:2c:ad:17:0a:0a:ad:9a:a6:27:
03:52:36:f4:99:ee:96:37:63:f0:ec:b9:6a:4e:07:
45:1c:00:b8:21:c6:3a:20:7e:63:65:18:0b:0a:6b:
d1:45:dc:24:bd:56:8b:9d:09:67:65:b1:d2:f3:c1:
6e:73:1d:ed:1b:f1:6f:0d:81:6a:14:5c:95:47:ee:
cf:3f:3a:59:7f:ce:6e:70:03:13:b0:7b:30:2e:48:
f5:12:c0:29:0b:af:ff:f8:47:d4:0e:06:d3:b6:dd:
53:9b:c8:72:df:e9:09:67:1c:f8:b3:79:e7:ef:27:
b0:3a:6a:8a:2a:53:50:8d:e8:1b:db:c9:04:75:7c:
77:3d:11:a7:ed:93:0b:29:bd:57:70:6f:8c:ce:af:
a8:47:e6:c0:6a:54:17:85:0a:60:7c:70:8b:b2:46:
3c:be:92:d7:d0:da:13:8e:61:6c:b2:a2:98:82:d8:
e0:38:b1:86:e9:55:87:e8:9d:40:ab:1e:1f:93:d8:
3f:93:4e:a3:e4:73:01:d7:b5:3c:65:bc:50:c3:51:
fd:a6:c7:e2:35:5c:99:ea:bb:6e:84:b1:e9:6f:62:
e5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:00:6E:EA:8F:69:B6:D2:C4:0A:00:AF:01:63:37:A0:F9:04:F8:B0
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kQBu6o9pttLECgCvAWM3oPkE-LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:18:16:c8:2a:bc:44:01:1f:da:09:7a:87:ed:4a:07:77:da:
09:97:93:6b:e1:ad:85:7c:93:ca:d9:40:6b:61:93:2f:bd:5d:
0c:d5:39:16:74:dd:67:41:5f:0d:fd:2b:14:50:e7:08:0c:ba:
58:36:5f:99:ec:ff:e3:f9:af:3e:1e:ea:58:6a:3b:8f:79:78:
11:2a:29:e7:53:e7:ca:83:e3:a6:df:a7:84:79:97:5f:f3:98:
2f:c3:ed:81:62:d9:da:48:0c:60:9f:4e:8c:9a:d8:d1:5c:47:
cf:8b:c2:d5:b2:d7:8d:9a:75:ab:48:67:a9:3f:af:df:c3:18:
0a:bb:51:f6:f3:de:b5:9f:fd:7d:92:01:27:22:c0:30:ca:d2:
37:f7:db:00:57:5d:4d:68:b2:f6:fb:c7:48:6c:12:8d:d4:06:
fd:08:0c:8a:09:c5:b9:0b:7a:21:c2:d8:d0:f0:b6:21:f7:f7:
88:92:e1:f2:fc:37:73:b1:5d:17:ab:a2:1e:01:f7:f4:06:08:
e9:0a:4a:a7:8e:06:6b:3d:86:94:43:80:f3:0c:44:c8:f7:69:
85:20:f5:8a:ed:b7:db:77:b7:05:b0:3c:94:ec:4d:76:2e:17:
d3:21:7d:4c:0f:9b:21:16:fc:b6:43:af:6f:bb:be:bd:a2:c6:
cb:56:35:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:13 2023 by rpki-client on console-fra.rpki-client.org