Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9DN2Qv6m1sQa_9-T90oIF7ONFbs.roa
File: 9DN2Qv6m1sQa_9-T90oIF7ONFbs.roa (raw, json)
Hash identifier: 1zedG/dw6RM/926LRN1AQPf39ntzz/XNSiciGc3Xtwc=
Subject key identifier: F4:33:76:42:FE:A6:D6:C4:1A:FF:DF:93:F7:4A:08:17:B3:8D:15:BB
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018804B0A61B30F157A767048D7F914F4C52
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9DN2Qv6m1sQa_9-T90oIF7ONFbs.roa
Signing time: Wed 10 May 2023 08:04:25 +0000
ROA not before: Wed 10 May 2023 08:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208677
IP address blocks: 178.170.242.0/24 maxlen: 24
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.120.0/21 maxlen: 21
188.72.108.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
188.72.106.0/23 maxlen: 23
188.72.118.0/24 maxlen: 24
188.72.117.0/24 maxlen: 24
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
45.89.224.0/22 maxlen: 22
46.243.172.0/24 maxlen: 24
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.107.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.230.179.0/24 maxlen: 24
37.18.122.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.176.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.151.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 05 Jun 2023 09:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:b0:a6:1b:30:f1:57:a7:67:04:8d:7f:91:4f:4c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: May 10 08:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4337642fea6d6c41affdf93f74a0817b38d15bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:08:af:c2:2f:b2:de:cd:e4:56:bf:1e:39:
f4:5b:1d:36:b9:1c:f6:0a:ff:e5:fc:f2:2c:5b:5d:
c6:85:96:2b:32:84:54:69:48:9b:47:3a:06:71:30:
51:89:ad:e4:e9:2c:86:50:45:f4:3e:1b:c8:62:96:
0f:9e:b3:a2:b2:01:e8:7b:5f:60:e3:66:10:9a:e1:
ad:4f:0f:7d:27:8a:dc:6a:78:24:50:5c:83:fa:e4:
03:74:81:93:ea:f3:8c:c5:d7:71:a0:4b:1e:6b:c8:
82:98:df:84:2b:8e:f4:1e:aa:08:5d:52:15:47:b1:
ad:ba:48:7a:0a:f4:66:b0:f5:fa:dd:7c:4d:1c:0d:
22:1a:22:a1:db:c6:19:24:9d:e0:51:a0:67:30:eb:
d3:bf:57:d3:ea:25:70:00:74:c3:8f:0a:b2:51:1f:
9a:2a:8e:94:fa:07:18:45:52:aa:bb:80:7f:a9:c1:
2f:a6:cd:9a:b2:86:d3:43:db:7e:a2:9a:59:8c:44:
63:62:64:8f:cd:01:48:e2:d4:16:bd:37:e3:47:f2:
57:ba:0d:80:20:e9:d4:92:9c:9c:e9:cc:5a:d7:27:
5a:56:04:82:23:46:02:d6:cc:f6:6f:c2:a9:11:f6:
be:a9:a6:ac:16:35:0b:30:ec:25:38:22:93:fa:04:
b3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:33:76:42:FE:A6:D6:C4:1A:FF:DF:93:F7:4A:08:17:B3:8D:15:BB
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9DN2Qv6m1sQa_9-T90oIF7ONFbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.120.0/21
89.232.160.0/21
89.232.176.0/22
94.139.252.0/22
141.101.151.0-141.101.152.255
141.101.201.0/24
178.170.191.0-178.170.197.255
178.170.242.0/24
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
5b:32:cb:b6:7e:9d:3e:40:ca:86:4b:20:f7:62:c2:09:29:6f:
3f:1c:1e:48:80:0c:25:07:ab:70:f0:ee:19:18:c5:8e:99:77:
c5:60:2f:23:c1:4a:be:b4:16:6c:d6:4b:af:99:46:c5:9a:91:
3e:83:7a:06:f4:b4:ba:df:74:26:de:d4:60:6e:71:80:3c:11:
44:25:a4:3f:75:21:6f:18:6a:8d:b6:78:b5:74:37:22:a1:5a:
f0:82:3c:19:32:77:13:df:e2:8f:7d:2a:d7:c4:b8:74:8c:cf:
eb:d5:d7:32:c0:0f:87:d5:20:5f:24:07:18:98:10:94:46:33:
5c:a4:eb:a8:f0:d2:73:c5:38:0b:70:91:e6:31:97:15:6a:79:
d6:86:f9:9a:ff:d1:56:1a:52:e1:ea:15:e9:92:2f:54:9d:b2:
36:d6:6c:43:f0:b5:88:94:99:a9:d7:2c:a9:30:6f:32:e5:7c:
d6:b2:c6:1c:77:31:91:84:97:85:30:09:3f:bb:52:b7:71:62:
10:b3:7e:f2:73:4b:7a:79:69:61:9c:e3:71:72:03:5b:42:62:
f9:2f:28:3c:27:71:c0:90:68:30:ba:6e:1a:50:99:63:49:45:
92:cc:9e:1e:5f:08:75:21:84:a0:da:14:37:39:0d:f8:24:34:
45:a5:b3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org