Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/0mGBAOwKWtqvXf0_oa50uvdKdhg.roa
File: 0mGBAOwKWtqvXf0_oa50uvdKdhg.roa (raw, json)
Hash identifier: 6SfYGx4UVGzpkur32ClI8PlSRI0OVSIAFM1vxXG3lvg=
Subject key identifier: D2:61:81:00:EC:0A:5A:DA:AF:5D:FD:3F:A1:AE:74:BA:F7:4A:76:18
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018D9D99D885000F1FD376FBA7A9244201CB
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/0mGBAOwKWtqvXf0_oa50uvdKdhg.roa
Signing time: Mon 12 Feb 2024 13:55:21 +0000
ROA not before: Mon 12 Feb 2024 13:55:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
37.18.72.0/23 maxlen: 23
37.18.100.0/23 maxlen: 23
37.18.102.0/24 maxlen: 24
37.18.107.0/24 maxlen: 24
37.18.108.0/22 maxlen: 22
37.18.112.0/23 maxlen: 23
37.18.114.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.139.0/24 maxlen: 24
37.230.179.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.186.0/24 maxlen: 24
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
45.89.224.0/22 maxlen: 22
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
46.243.172.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.206.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
94.139.252.0/22 maxlen: 22
95.174.88.0/21 maxlen: 21
141.101.151.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.201.0/24 maxlen: 24
176.109.96.0/20 maxlen: 20
178.170.191.0/24 maxlen: 24
178.170.192.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
178.170.242.0/24 maxlen: 24
185.50.200.0/22 maxlen: 22
188.72.96.0/24 maxlen: 24
188.72.106.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
188.72.117.0/24 maxlen: 24
188.72.118.0/24 maxlen: 24
194.5.92.0/23 maxlen: 23
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 10 Apr 2024 21:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9d:99:d8:85:00:0f:1f:d3:76:fb:a7:a9:24:42:01:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Feb 12 13:55:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2618100ec0a5adaaf5dfd3fa1ae74baf74a7618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1b:80:57:f7:44:72:2b:09:d2:0a:c7:84:63:
df:05:8f:69:fa:2b:e6:32:94:28:fb:8a:be:df:e9:
cf:54:26:94:70:2e:3b:bf:f9:3b:7b:8c:b0:85:2d:
57:c3:8a:e0:06:c2:fa:22:12:b1:1e:12:6e:aa:ec:
20:14:7a:b3:cc:6c:02:2b:f0:f1:5c:70:0e:f4:e0:
db:22:83:2e:af:29:0c:f4:9d:0b:e1:8a:22:7d:8c:
a1:c1:58:9c:83:6f:8a:c7:b3:8d:21:43:4e:52:42:
d0:35:5c:a9:b1:b3:83:4b:b2:78:2f:a3:61:d5:16:
8d:09:48:5f:46:bc:fb:69:12:5d:06:35:27:e8:8e:
3f:ba:1c:85:63:35:bf:54:ab:ef:5b:00:96:e0:50:
3b:dc:9d:d3:61:4d:f4:25:71:a0:85:78:7f:90:ff:
97:14:00:97:07:e5:3d:db:0b:59:43:01:fd:80:68:
9e:63:6d:43:14:5a:c0:e6:8b:2a:c8:d7:6b:54:31:
f3:00:36:c8:69:cc:91:34:ac:69:05:fc:ad:d2:01:
27:4b:a6:f8:48:8c:b8:d8:db:c1:60:2b:6d:ed:8a:
b9:7b:82:cd:f1:53:38:71:79:63:7b:54:43:a2:3b:
c1:41:94:75:3e:5c:0d:a3:4a:a0:60:ce:c6:d0:e8:
f8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:61:81:00:EC:0A:5A:DA:AF:5D:FD:3F:A1:AE:74:BA:F7:4A:76:18
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/0mGBAOwKWtqvXf0_oa50uvdKdhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
95.174.88.0/21
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
6f:de:4e:5e:bd:03:2b:0a:8a:e3:92:ed:7b:c8:49:f0:f0:06:
22:a6:a1:d7:ff:5c:6c:79:d2:48:8b:47:d4:a2:31:a1:20:f3:
5e:71:8e:57:2b:9e:a3:91:ea:82:8e:c6:c5:4f:59:3a:e4:07:
f6:71:e0:6f:75:9a:ee:6c:ad:b1:fe:b9:8c:73:6a:c6:9d:6d:
97:6b:11:98:76:ef:8c:6a:12:8c:cd:32:1b:7f:45:6f:0b:b4:
f8:18:db:1d:e5:3d:ea:89:61:2b:ef:8b:9d:59:a6:91:a0:f3:
b9:bc:6a:3c:33:a6:53:d1:ce:1b:6e:44:b7:94:64:7f:64:fd:
5a:45:73:c6:94:17:14:d4:3b:1a:fe:e8:bb:f0:75:ea:2e:a6:
a7:83:33:1c:b3:9b:e1:6f:2a:e1:f0:f1:6e:cd:bd:11:73:7e:
9c:3a:e1:01:63:ae:95:e3:13:0b:49:34:6c:7b:77:99:4d:10:
30:e5:a9:8d:12:f9:bd:da:7a:26:ad:d7:d8:41:03:40:71:2a:
10:73:0f:34:e4:93:a4:5f:25:04:41:76:1c:56:95:b8:62:b8:
e0:e1:16:62:17:a8:dc:22:26:31:38:0d:19:ef:f2:a3:8a:90:
66:1e:24:29:85:e2:cd:e9:14:4e:12:3b:7b:9c:35:d2:d1:33:
75:11:91:c0
-----BEGIN CERTIFICATE-----
MIIGWjCCBUKgAwIBAgISAY2dmdiFAA8f03b7p6kkQgHLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5MTllMWYzZmU2OWI0ZWJkZmYwMmE5YTg1N2U3YzZjMmIy
NTMwMWEwHhcNMjQwMjEyMTM1NTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjYxODEwMGVjMGE1YWRhYWY1ZGZkM2ZhMWFlNzRiYWY3NGE3NjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhBuAV/dEcisJ0grHhGPfBY9p+ivm
MpQo+4q+3+nPVCaUcC47v/k7e4ywhS1Xw4rgBsL6IhKxHhJuquwgFHqzzGwCK/Dx
XHAO9ODbIoMurykM9J0L4YoifYyhwVicg2+Kx7ONIUNOUkLQNVypsbODS7J4L6Nh
1RaNCUhfRrz7aRJdBjUn6I4/uhyFYzW/VKvvWwCW4FA73J3TYU30JXGghXh/kP+X
FACXB+U92wtZQwH9gGieY21DFFrA5osqyNdrVDHzADbIacyRNKxpBfyt0gEnS6b4
SIy42NvBYCtt7Yq5e4LN8VM4cXlje1RDojvBQZR1PlwNo0qgYM7G0Oj4uwIDAQAB
o4IDZjCCA2IwHQYDVR0OBBYEFNJhgQDsClrar139P6GudLr3SnYYMB8GA1UdIwQY
MBaAFPkZ4fP+abTr3/AqmoV+fGwrJTAaMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1Sbmg4XzVwdE92ZjhDcWFoWDU4YkNzbE1Cby5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvMWM5ODA5LTFmNjAtNDNjMi04MTAz
LWRhZDA0MjBiODVkMy8xLzBtR0JBT3dLV3RxdlhmMF9vYTUwdXZkS2RoZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjYvMWM5ODA5LTFmNjAtNDNjMi04MTAzLWRhZDA0MjBiODVk
My8xLzEtUm5oOF81cHRPdmY4Q3FhaFg1OGJDc2xNQm8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggF4BggrBgEFBQcBBwEB/wSCAWcwggFjMIIBUAQCAAEw
ggFIMAwDBAMlEggDBAAlEgoDBAAlEhYDBAElEkgwDAMEAiUSZAMEACUSZjAMAwQA
JRJrAwQAJRJ6AwQAJeaLMAwDBAAl5rMDBAEl5rQwDAMEAyXmuAMEACXmugMEAyXm
wAMEACXm4AMEACXm6QMEAi0JGAMEAi1Z4DAMAwQALvONAwQELvOAAwQALvOsAwQA
LvPJMAwDBAAu880DBAAu884DBAEu8+IDBAEu8/QwDAMEAlfyVAMEBVfyQDAMAwQC
V/J0AwQHV/IAMAwDBAVZ6KADBAJZ6KgDBAJZ6LADBAJei/wDBANfrlgwDAMEAI1l
lwMEAI1lmAMEAI1lyQMEBLBtYDAMAwQAsqq/AwQBsqrEAwQAsqryAwQCuTLIAwQA
vEhgMAwDBAG8SGoDBAG8SGwwDAMEALxIdQMEALxIdgMEAcIFXAMEAMOAmDANBAIA
AjAHAwUDKgwrgDANBgkqhkiG9w0BAQsFAAOCAQEAb95OXr0DKwqK45Lte8hJ8PAG
Iqah1/9cbHnSSItH1KIxoSDzXnGOVyueo5Hqgo7GxU9ZOuQH9nHgb3Wa7mytsf65
jHNqxp1tl2sRmHbvjGoSjM0yG39Fbwu0+BjbHeU96olhK++LnVmmkaDzubxqPDOm
U9HOG25Et5Rkf2T9WkVzxpQXFNQ7Gv7ou/B16i6mp4MzHLOb4W8q4fDxbs29EXN+
nDrhAWOuleMTC0k0bHt3mU0QMOWpjRL5vdp6Jq3X2EEDQHEqEHMPNOSTpF8lBEF2
HFaVuGK44OEWYheo3CImMTgNGe/yo4qQZh4kKYXizekUThI7e5w10tEzdRGRwA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org