Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/CfmhK7GSieKlqiBN8rBMJYy48yg.roa
File: CfmhK7GSieKlqiBN8rBMJYy48yg.roa (raw, json)
Hash identifier: vBOZuaPsDW3YLR4kZNvKAplPcdtvthSTYNhnJ5pbEE0=
Subject key identifier: 09:F9:A1:2B:B1:92:89:E2:A5:AA:20:4D:F2:B0:4C:25:8C:B8:F3:28
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018FA4CAC310D0038A47F4A7B15C92BF265F
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/CfmhK7GSieKlqiBN8rBMJYy48yg.roa
Signing time: Thu 23 May 2024 09:31:42 +0000
ROA not before: Thu 23 May 2024 09:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8895
IP address blocks: 45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 25
212.26.39.0/24 maxlen: 25
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.52.0/24 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.56.0/24 maxlen: 24
212.26.58.0/24 maxlen: 24
212.26.60.0/24 maxlen: 24
212.26.63.0/24 maxlen: 24
212.26.64.0/24 maxlen: 24
212.26.65.0/24 maxlen: 24
212.26.68.0/23 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.72.0/24 maxlen: 24
212.26.74.0/24 maxlen: 25
212.26.78.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 25
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 24
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 25
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/32 maxlen: 32
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:112::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 10:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a4:ca:c3:10:d0:03:8a:47:f4:a7:b1:5c:92:bf:26:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: May 23 09:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09f9a12bb19289e2a5aa204df2b04c258cb8f328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:35:91:30:fa:ee:9f:58:4a:35:d1:f1:89:cf:
07:b6:4d:9c:1d:3c:f4:8b:36:a3:0a:80:c9:3e:8b:
19:46:82:db:10:b3:0b:c4:b5:e9:26:7e:db:bb:38:
cc:af:29:10:e5:58:88:98:33:40:cf:0b:13:ef:64:
11:38:80:9a:00:fc:7f:28:b6:d0:04:29:57:91:ae:
63:2c:a7:c8:88:84:de:75:3f:e9:9d:f6:ec:f4:96:
50:57:db:e7:40:9d:a2:48:43:29:61:60:4d:37:6e:
26:1a:e8:d9:1c:ff:90:a6:37:35:8c:63:66:7d:45:
0c:d1:bd:cc:3b:09:82:a6:c4:a9:fb:19:b9:d5:08:
fe:b8:cb:21:fa:58:7c:fa:74:66:f7:b1:3e:74:ba:
01:f9:dd:ff:27:35:48:31:6d:ac:66:2e:8b:b4:ae:
bf:28:b5:9a:db:10:aa:36:ce:f7:30:4a:54:92:b8:
8e:a9:81:63:b0:22:84:89:09:6c:e4:68:71:81:fe:
e5:cb:5c:d8:18:02:d5:e0:2b:aa:d4:e2:bb:d2:3d:
6e:70:01:18:e4:91:58:21:86:3a:6b:be:41:51:32:
7c:75:7e:3a:68:75:55:eb:f7:48:21:d1:0c:e3:15:
fa:4e:2c:f3:ce:ea:08:22:67:18:e3:3a:af:41:62:
dc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F9:A1:2B:B1:92:89:E2:A5:AA:20:4D:F2:B0:4C:25:8C:B8:F3:28
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/CfmhK7GSieKlqiBN8rBMJYy48yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.15.0/24
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/32
Signature Algorithm: sha256WithRSAEncryption
bc:e6:16:46:ea:8c:a8:1c:3f:db:78:6c:4d:6c:7f:f2:fa:f6:
c7:c9:5c:2a:b0:aa:6a:67:15:4a:b4:b1:e1:92:52:39:63:89:
d8:50:4d:fe:d2:46:6b:21:f2:eb:a1:a3:7e:a3:c4:f7:db:0d:
29:ec:6b:ba:4f:6d:5f:66:2c:09:cc:30:d1:b9:42:86:2a:99:
00:23:b3:61:ab:a6:ec:b5:14:dc:61:a8:b1:29:88:66:80:aa:
c9:b7:1b:d3:21:83:7c:49:e7:27:92:d0:66:5f:ec:96:1f:2e:
84:c6:ca:35:25:c9:e7:2e:48:69:3e:fd:4a:32:aa:b0:14:38:
fd:21:af:fc:68:74:af:d1:12:e1:56:77:54:e1:1b:5e:01:c7:
f0:79:d9:bb:56:8b:ce:5a:e9:8b:c2:80:27:fa:de:df:30:64:
9a:f6:89:0e:4d:d7:d5:fc:00:50:71:cd:ff:78:27:78:2f:8c:
58:52:34:0c:bd:89:ea:36:33:9d:a2:c1:01:da:19:43:1f:57:
ef:ba:82:27:6b:d3:73:e6:d0:01:1e:3d:f4:4f:14:c8:c2:4e:
c2:93:2f:18:ab:62:bc:50:ac:7c:be:2b:01:b2:c2:58:5e:35:
bf:33:aa:cc:e4:b2:96:f6:e1:65:e2:2f:8a:b4:c2:cf:e7:4b:
86:01:3e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org