Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nwXgoe0jeCtVF3q3QpcVt2fRYZw.roa
File: nwXgoe0jeCtVF3q3QpcVt2fRYZw.roa (raw, json)
Hash identifier: xkQU0Lv0EsvDXpjk7q6PywWCg3hpF0dTiiKQxD7U5Vs=
Subject key identifier: 9F:05:E0:A1:ED:23:78:2B:55:17:7A:B7:42:97:15:B7:67:D1:61:9C
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 018F88328A3C4A525EADF215B5E252934DFF
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nwXgoe0jeCtVF3q3QpcVt2fRYZw.roa
Signing time: Fri 17 May 2024 20:16:04 +0000
ROA not before: Fri 17 May 2024 20:16:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44486
IP address blocks: 37.114.32.0/24 maxlen: 24
37.114.33.0/24 maxlen: 24
37.114.34.0/24 maxlen: 24
37.114.35.0/24 maxlen: 24
37.114.36.0/24 maxlen: 24
37.114.38.0/23 maxlen: 24
37.114.42.0/24 maxlen: 24
37.114.43.0/24 maxlen: 24
37.114.47.0/24 maxlen: 24
37.114.48.0/24 maxlen: 24
37.114.49.0/24 maxlen: 24
37.114.51.0/24 maxlen: 24
37.114.52.0/24 maxlen: 24
37.114.53.0/24 maxlen: 24
37.114.55.0/24 maxlen: 24
37.114.56.0/24 maxlen: 24
37.114.57.0/24 maxlen: 24
37.114.59.0/24 maxlen: 24
37.114.60.0/24 maxlen: 24
37.114.61.0/24 maxlen: 24
37.114.62.0/24 maxlen: 24
43.251.162.0/23 maxlen: 23
103.252.88.0/22 maxlen: 22
176.100.32.0/24 maxlen: 24
176.100.33.0/24 maxlen: 24
176.100.34.0/24 maxlen: 24
176.100.35.0/24 maxlen: 24
185.14.94.0/24 maxlen: 24
185.14.95.0/24 maxlen: 24
2a00:ccc1:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 30 May 2024 10:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:32:8a:3c:4a:52:5e:ad:f2:15:b5:e2:52:93:4d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: May 17 20:16:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f05e0a1ed23782b55177ab7429715b767d1619c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9a:5b:d8:35:56:4f:b9:6b:17:69:8a:37:da:
10:3a:47:6b:f1:5b:37:f3:80:0b:5c:21:a4:fd:8d:
29:71:9e:ac:c3:a1:00:e5:69:9b:c8:8d:19:72:51:
fb:6a:6b:96:e6:52:7e:4d:e0:7c:d1:86:f6:c0:b9:
dc:8b:b4:56:df:49:0e:6c:3b:50:b5:e6:21:ce:41:
53:8b:7e:68:c8:c6:e7:a1:df:21:12:49:65:d4:52:
06:3d:70:72:7f:4c:86:23:75:ab:64:32:72:86:60:
5f:c1:95:6d:ec:40:71:29:e3:f8:ab:f6:3c:67:2d:
e6:26:10:a6:e3:cd:dd:c5:27:eb:bc:3e:61:75:f0:
e9:d1:ab:c3:81:4f:d9:6d:4e:94:d4:e4:56:d2:ec:
63:29:4b:87:2c:ff:36:32:28:ed:93:f2:2a:be:27:
f7:01:a4:dc:f1:0d:4e:b8:e1:ba:eb:fb:76:04:33:
1f:01:2a:6e:0b:03:fd:00:04:4e:45:eb:b1:e4:dd:
64:70:05:6e:5f:76:93:d3:25:df:18:5d:da:fb:78:
9a:65:81:3b:6e:04:18:d1:92:b6:68:f2:13:14:9e:
9f:d6:56:c4:fc:2d:b2:f1:fa:5f:cb:9e:f7:98:b8:
04:c0:10:c2:4e:fe:fe:de:f0:73:64:1c:3c:47:a4:
93:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:05:E0:A1:ED:23:78:2B:55:17:7A:B7:42:97:15:B7:67:D1:61:9C
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/nwXgoe0jeCtVF3q3QpcVt2fRYZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0-37.114.36.255
37.114.38.0/23
37.114.42.0/23
37.114.47.0-37.114.49.255
37.114.51.0-37.114.53.255
37.114.55.0-37.114.57.255
37.114.59.0-37.114.62.255
43.251.162.0/23
103.252.88.0/22
176.100.32.0/22
185.14.94.0/23
IPv6:
2a00:ccc1:100::/40
Signature Algorithm: sha256WithRSAEncryption
56:d4:7c:9d:7b:ae:b3:15:5d:6f:e8:b5:89:b7:58:21:0c:c2:
e5:96:81:b4:99:bd:0b:81:5b:49:d2:94:8f:59:3e:34:4b:8d:
5f:66:74:37:65:ce:f6:c2:89:de:cf:36:53:ba:72:33:fc:eb:
03:59:4d:5e:06:3a:67:c1:be:eb:16:c1:54:fd:04:15:f4:c9:
44:ac:1e:0b:fa:fd:81:d0:63:97:b0:03:26:a5:07:1c:0f:bc:
ec:3d:2f:05:7b:9f:ac:f9:57:89:56:24:c5:be:09:5a:61:2c:
41:ba:77:66:cb:ea:2e:ea:1d:1e:79:53:01:98:d1:50:2c:be:
11:92:8b:9d:e7:e9:91:97:7c:7e:44:30:9b:69:b9:ee:30:fd:
a1:3a:84:5e:61:8d:e6:31:1b:4b:2d:1c:6b:44:f3:48:2e:bf:
23:a7:4d:50:64:85:9a:3b:a8:71:fe:ae:3a:c1:db:9d:31:85:
a7:0b:1c:39:48:ae:3f:dc:60:c1:f2:39:14:3b:69:ce:a0:d3:
f4:b5:db:e8:ec:92:44:06:de:91:37:4d:44:bb:71:63:63:65:
ed:5f:7d:8a:54:9f:2d:7f:35:eb:c7:64:c7:02:2b:b0:21:86:
13:a5:da:e2:6e:29:5f:ad:a5:5c:9b:75:02:af:83:54:2d:b6:
56:9e:77:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org