Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/XoKnXMf6gvuf_XgDdvWPOpZiNuE.roa
File: XoKnXMf6gvuf_XgDdvWPOpZiNuE.roa (raw, json)
Hash identifier: CGo7Csmb52djTKdP5iYZpvqFGNm39GSwEFRmyUXGtqo=
Subject key identifier: 5E:82:A7:5C:C7:FA:82:FB:9F:FD:78:03:76:F5:8F:3A:96:62:36:E1
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018CAFD0FD0DF75AF4306999725BB44C96F3
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/XoKnXMf6gvuf_XgDdvWPOpZiNuE.roa
Signing time: Thu 28 Dec 2023 09:45:58 +0000
ROA not before: Thu 28 Dec 2023 09:45:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/24 maxlen: 24
45.94.14.0/24 maxlen: 24
212.26.0.0/17 maxlen: 17
212.26.7.0/24 maxlen: 24
212.26.8.0/24 maxlen: 24
212.26.6.0/24 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
212.138.192.0/24 maxlen: 24
212.138.190.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.187.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.155.0/24 maxlen: 25
212.138.153.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.166.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.168.0/24 maxlen: 24
212.138.172.0/24 maxlen: 24
212.138.170.0/24 maxlen: 24
212.138.176.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.177.0/24 maxlen: 24
212.138.183.0/24 maxlen: 25
212.138.181.0/24 maxlen: 25
212.138.180.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
2001:1497:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 28 Dec 2023 10:20:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:d0:fd:0d:f7:5a:f4:30:69:99:72:5b:b4:4c:96:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Dec 28 09:45:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e82a75cc7fa82fb9ffd780376f58f3a966236e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ea:da:74:a4:36:d2:3c:81:f5:bb:0d:cb:b9:
63:e2:09:14:3c:68:d6:91:91:17:38:80:4f:64:01:
cd:45:93:27:97:8a:66:86:90:39:b5:5f:5a:e4:c8:
da:0a:ef:95:93:b6:c1:4f:ea:f8:75:c2:46:8c:bc:
10:a6:63:3d:b7:d4:0f:05:b5:8a:98:8b:12:be:6b:
ce:27:f3:5b:8b:7c:8c:3e:c0:7c:25:a8:fb:0f:48:
fc:7c:c1:92:46:9b:36:24:17:e0:08:55:c2:41:eb:
e7:31:53:84:e0:07:b0:3d:32:49:c6:bd:68:71:28:
82:84:09:7a:4a:a7:3b:dc:e2:15:45:06:1f:96:42:
f4:f0:40:d0:51:32:82:41:0c:15:a4:44:c1:dd:ce:
b9:17:6a:e8:eb:41:ba:58:1c:76:3d:22:89:ec:9e:
9b:5e:4e:1f:88:1d:92:90:0b:95:a8:6f:0d:db:6c:
5d:3f:1c:67:00:33:1b:69:7f:72:65:7d:7d:04:2a:
56:f1:d6:a1:52:27:28:8b:fb:a1:aa:ce:fa:35:5c:
68:69:f3:a0:38:85:24:17:62:c0:24:20:63:83:1b:
99:5d:d9:e8:fa:09:34:26:c0:7d:6e:92:26:e1:18:
3f:6e:d8:79:26:55:23:77:43:ba:bf:9d:5b:d2:78:
89:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:82:A7:5C:C7:FA:82:FB:9F:FD:78:03:76:F5:8F:3A:96:62:36:E1
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/XoKnXMf6gvuf_XgDdvWPOpZiNuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/24
212.26.0.0/17
212.138.140.0/24
212.138.153.0/24
212.138.155.0/24
212.138.157.0/24
212.138.160.0/24
212.138.162.0/24
212.138.164.0/24
212.138.166.0/24
212.138.168.0/24
212.138.170.0/24
212.138.172.0/24
212.138.175.0-212.138.177.255
212.138.180.0/23
212.138.183.0/24
212.138.185.0/24
212.138.187.0-212.138.188.255
212.138.190.0/24
212.138.192.0/24
212.138.194.0/24
212.138.196.0/24
212.138.201.0/24
212.138.203.0/24
212.138.206.0/24
212.138.250.0/24
IPv6:
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
a0:7b:99:be:98:94:8e:a3:56:bf:f1:00:51:30:4f:7e:58:1f:
eb:22:6d:0a:88:38:9b:e5:fa:f9:a1:d3:6b:65:b9:4c:16:d1:
d2:b7:50:bf:0c:4b:ee:bf:10:30:02:aa:2b:f7:7b:4a:52:49:
fa:f1:24:ea:ee:c0:dc:ed:4e:2f:1d:58:dc:94:e9:96:f4:02:
eb:d1:5c:0e:16:17:19:61:bf:e1:e7:fe:6a:9f:a0:f2:99:5b:
a0:4b:df:7d:ee:af:d0:3f:86:2b:1c:dd:93:b2:5b:cb:ef:5e:
5d:d8:49:6a:77:b6:3d:27:21:d3:bb:08:c4:fd:c1:6d:b8:ce:
25:fb:e6:a3:4c:78:ac:63:c8:44:1a:40:7a:08:30:eb:d7:ed:
bc:27:56:62:d2:e7:c8:fa:1c:28:5e:dc:c2:9f:32:4a:61:46:
3e:73:f0:cb:3e:78:fe:2f:ad:f5:6c:75:ee:bc:14:98:5a:e0:
b6:39:c1:cf:bd:da:fd:53:e7:f6:8f:84:1d:26:d5:02:34:da:
a6:ba:f1:1c:b6:fd:6b:7a:8f:d1:a4:6d:07:4b:a8:78:69:50:
ed:1e:e2:a5:41:eb:be:4d:ac:59:e7:bf:91:05:b3:ac:30:fc:
32:4c:2b:11:84:da:8c:f5:bb:36:e8:6e:d0:77:2e:ba:8e:d1:
39:56:fb:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org