Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/2GTQi6NonB1lEoJJPNJ99kCNhRM.roa
File: 2GTQi6NonB1lEoJJPNJ99kCNhRM.roa (raw, json)
Hash identifier: 45mvZmbAg2mAj+90+rDQboLmXuFSsJNN2VXu9lSYJ2A=
Subject key identifier: D8:64:D0:8B:A3:68:9C:1D:65:12:82:49:3C:D2:7D:F6:40:8D:85:13
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018F82D2803230AB7BEFC885A9CB51678639
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/2GTQi6NonB1lEoJJPNJ99kCNhRM.roa
Signing time: Thu 16 May 2024 19:13:04 +0000
ROA not before: Thu 16 May 2024 19:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
37.18.72.0/23 maxlen: 23
37.18.100.0/23 maxlen: 23
37.18.102.0/24 maxlen: 24
37.18.107.0/24 maxlen: 24
37.18.108.0/22 maxlen: 22
37.18.112.0/23 maxlen: 23
37.18.114.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.139.0/24 maxlen: 24
37.230.179.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.186.0/24 maxlen: 24
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
45.89.224.0/22 maxlen: 22
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
46.243.172.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.206.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.100.0/22 maxlen: 22
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
94.139.252.0/22 maxlen: 22
95.174.88.0/21 maxlen: 21
141.101.151.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.201.0/24 maxlen: 24
176.109.96.0/20 maxlen: 20
176.123.160.0/21 maxlen: 21
178.170.191.0/24 maxlen: 24
178.170.192.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
178.170.242.0/24 maxlen: 24
185.50.200.0/22 maxlen: 22
188.72.96.0/24 maxlen: 24
188.72.106.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
188.72.117.0/24 maxlen: 24
188.72.118.0/24 maxlen: 24
192.144.12.0/22 maxlen: 22
194.5.92.0/23 maxlen: 23
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 May 2024 13:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:d2:80:32:30:ab:7b:ef:c8:85:a9:cb:51:67:86:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: May 16 19:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d864d08ba3689c1d651282493cd27df6408d8513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:ca:0c:ee:81:c8:78:b6:36:33:a5:a4:14:
ff:6c:95:46:90:cb:2f:72:b0:4a:ec:8f:30:d9:1f:
2f:70:64:eb:bd:bb:fe:ea:f4:f1:88:07:a2:99:84:
0e:05:56:df:01:22:f8:ee:e2:81:a2:34:51:cc:1f:
cb:5a:5d:c5:5f:4d:c4:0d:e7:7e:74:dd:71:25:70:
ee:76:df:72:27:b0:09:f7:9c:a6:2c:b3:47:17:1f:
1e:83:82:39:ea:55:65:c3:c1:fa:3d:d1:ac:55:20:
e6:ee:8c:68:cb:7e:4e:fd:5f:e8:ec:ee:08:e9:95:
7f:f8:2b:dd:50:b9:36:43:6a:b3:f6:cd:78:42:67:
56:e1:ad:8a:e4:c8:d1:7d:d2:24:64:66:8e:25:ee:
6b:d3:b1:61:c5:fd:8a:d6:51:7d:3b:04:2f:28:a9:
40:6f:7f:73:f9:e9:93:d0:5d:67:6e:66:79:40:b1:
2d:30:98:08:43:81:52:72:0c:dd:67:7d:03:30:96:
2a:c1:37:65:3f:ca:49:c7:d1:8e:84:2a:67:4e:e1:
21:0b:c0:0f:b5:e5:fa:28:51:bf:0d:9b:27:66:1d:
dc:9c:de:d4:1a:d1:1e:75:ed:b6:b8:0a:78:30:b4:
02:b9:09:ab:82:9a:44:6c:01:d2:00:1e:51:54:4f:
e6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:64:D0:8B:A3:68:9C:1D:65:12:82:49:3C:D2:7D:F6:40:8D:85:13
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/2GTQi6NonB1lEoJJPNJ99kCNhRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.100.0/22
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
95.174.88.0/21
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
176.123.160.0/21
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
192.144.12.0/22
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
7c:ba:4b:6e:2a:ed:a5:7b:d0:e7:6a:fe:8e:79:3a:fc:ca:a9:
e0:41:33:3e:4f:ab:41:fa:51:90:9d:f4:48:8a:ff:b9:7f:93:
16:fb:22:42:55:8f:71:79:aa:1e:27:49:5c:3b:8e:6c:cf:51:
b9:1f:a2:6c:12:ae:03:c2:52:a5:84:17:a6:ab:cf:fe:e6:54:
c2:53:6d:cc:39:1b:d5:34:28:8b:52:a9:cc:81:dc:58:31:b4:
45:ed:e4:96:7a:bf:f9:8f:04:46:86:cd:6d:48:aa:47:36:0d:
f6:9a:05:23:ff:0a:9e:04:3c:7f:38:44:e4:53:20:77:02:7e:
96:88:a3:40:43:2b:e0:05:5f:f6:8a:87:7c:c5:c0:ab:86:90:
94:23:ec:70:7f:09:ee:57:da:d7:5a:37:31:cd:35:fd:69:cf:
2a:a6:2c:73:b2:dc:6d:f2:42:81:22:62:6f:aa:e9:58:06:3a:
0c:37:44:f6:38:46:f4:b6:59:53:7d:fc:de:2a:a2:2f:ac:9e:
1e:84:85:48:2a:22:7b:fb:f0:22:30:5e:c3:3d:c6:5e:74:3d:
dd:7f:b7:bb:90:11:e2:3e:24:a6:38:39:24:b4:6e:0d:88:3b:
1c:4c:34:b2:4c:98:9e:e5:82:75:39:70:ac:5b:b2:19:1e:e6:
a8:39:95:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org