Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9HbT9UelgfwxcztrzLnAsDKeYuU.roa
File: 9HbT9UelgfwxcztrzLnAsDKeYuU.roa (raw, json)
Hash identifier: PtLgpuvKNtmpeUKxGAGnaXWukCax3BJNNiPx2NcniK0=
Subject key identifier: F4:76:D3:F5:47:A5:81:FC:31:73:3B:6B:CC:B9:C0:B0:32:9E:62:E5
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018BB850123A6E8BD9DB6CB35ED4F984F502
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9HbT9UelgfwxcztrzLnAsDKeYuU.roa
Signing time: Fri 10 Nov 2023 08:18:57 +0000
ROA not before: Fri 10 Nov 2023 08:18:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208677
IP address blocks: 178.170.242.0/24 maxlen: 24
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
194.5.92.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
188.72.106.0/23 maxlen: 23
188.72.118.0/24 maxlen: 24
188.72.117.0/24 maxlen: 24
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
45.89.224.0/22 maxlen: 22
46.243.172.0/24 maxlen: 24
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
176.109.96.0/20 maxlen: 20
37.18.107.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.230.179.0/24 maxlen: 24
37.18.122.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
185.50.200.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.151.0/24 maxlen: 24
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:50:12:3a:6e:8b:d9:db:6c:b3:5e:d4:f9:84:f5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Nov 10 08:18:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f476d3f547a581fc31733b6bccb9c0b0329e62e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:71:0d:92:5b:a9:cf:59:4c:c1:80:bf:99:
3d:8a:ac:08:86:0e:2e:59:4f:c2:aa:1b:b0:16:37:
98:4b:87:2c:6d:c3:ea:a2:3a:08:20:a9:2b:9d:05:
5b:83:92:34:f6:e5:45:54:89:f6:f3:c5:53:81:df:
67:b7:75:51:b6:e4:8b:ae:c8:2b:17:cd:57:cc:8f:
e1:3d:2c:62:a4:ae:77:65:3e:e0:89:24:c8:f6:28:
fe:87:5c:53:69:db:a7:72:93:00:c4:48:03:da:53:
48:54:b6:63:88:7f:14:a5:9c:6d:1a:b7:20:90:25:
32:3c:58:f8:20:31:db:2b:a0:f6:7c:1c:36:93:4d:
3c:9f:7a:bd:b4:4f:c2:e2:88:da:e9:33:6b:09:e6:
87:e6:6c:27:88:2e:76:8e:68:3c:03:b8:ea:b5:38:
7f:8f:9a:97:9a:fd:aa:d9:0f:6e:f5:41:18:73:28:
dd:d4:aa:7b:de:22:a8:9b:6f:20:46:af:19:ea:a0:
e2:7b:97:92:73:9a:3e:b0:98:98:63:69:c5:79:08:
aa:6c:03:58:49:70:2a:e4:43:92:07:89:d1:dd:d1:
2e:c5:b5:62:eb:46:e1:62:80:e7:36:af:bc:b6:6f:
ae:10:be:64:9f:10:88:be:3f:92:a1:92:d2:ed:28:
36:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:76:D3:F5:47:A5:81:FC:31:73:3B:6B:CC:B9:C0:B0:32:9E:62:E5
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9HbT9UelgfwxcztrzLnAsDKeYuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
56:0f:7d:a5:7b:e0:ee:40:41:fb:f0:dd:c6:8b:7a:95:56:aa:
13:d8:11:4c:80:49:fc:1a:b5:44:34:5c:df:27:ea:86:bb:6a:
b0:3f:c2:66:25:a1:fb:a4:4b:4a:da:f8:c3:c0:75:cc:f8:24:
5d:41:d7:71:ea:08:1b:3a:f1:c5:d8:35:3b:6e:6c:1b:4b:ca:
ca:86:35:fe:53:8c:d3:13:7f:d6:1e:43:dc:78:75:15:c5:08:
98:40:78:5e:f8:82:4a:6f:ab:0b:08:9d:1c:8e:ee:57:80:aa:
9a:8f:e6:70:36:df:c9:ee:a1:a3:22:c3:06:d7:f2:64:87:76:
8f:94:a9:d7:c4:3c:ef:39:0d:a0:68:5c:f9:ed:5a:e9:8d:e2:
d0:b4:d7:da:20:63:7a:ca:6b:85:4d:77:9b:43:1e:2f:8b:74:
03:e8:84:81:9b:98:58:fd:fc:6d:14:53:65:6d:ba:c4:d1:1a:
ef:99:dc:00:61:fc:ca:00:b2:ff:43:46:f1:b7:36:63:a8:38:
f3:b9:c9:13:8c:f8:ea:d1:0f:75:8e:b6:f9:0b:28:0c:48:8b:
02:66:73:07:18:db:45:22:82:4b:88:4b:79:c4:3e:64:03:6a:
dd:20:77:e4:14:c7:f8:4c:13:64:47:53:0f:40:36:58:dd:f2:
7f:58:d8:40
-----BEGIN CERTIFICATE-----
MIIGVDCCBTygAwIBAgISAYu4UBI6bovZ22yzXtT5hPUCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5MTllMWYzZmU2OWI0ZWJkZmYwMmE5YTg1N2U3YzZjMmIy
NTMwMWEwHhcNMjMxMTEwMDgxODU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDc2ZDNmNTQ3YTU4MWZjMzE3MzNiNmJjY2I5YzBiMDMyOWU2MmU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlRxDZJbqc9ZTMGAv5k9iqwIhg4u
WU/CqhuwFjeYS4csbcPqojoIIKkrnQVbg5I09uVFVIn288VTgd9nt3VRtuSLrsgr
F81XzI/hPSxipK53ZT7giSTI9ij+h1xTaduncpMAxEgD2lNIVLZjiH8UpZxtGrcg
kCUyPFj4IDHbK6D2fBw2k008n3q9tE/C4oja6TNrCeaH5mwniC52jmg8A7jqtTh/
j5qXmv2q2Q9u9UEYcyjd1Kp73iKom28gRq8Z6qDie5eSc5o+sJiYY2nFeQiqbANY
SXAq5EOSB4nR3dEuxbVi60bhYoDnNq+8tm+uEL5knxCIvj+SoZLS7Sg2BwIDAQAB
o4IDYDCCA1wwHQYDVR0OBBYEFPR20/VHpYH8MXM7a8y5wLAynmLlMB8GA1UdIwQY
MBaAFPkZ4fP+abTr3/AqmoV+fGwrJTAaMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1Sbmg4XzVwdE92ZjhDcWFoWDU4YkNzbE1Cby5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvMWM5ODA5LTFmNjAtNDNjMi04MTAz
LWRhZDA0MjBiODVkMy8xLzlIYlQ5VWVsZ2Z3eGN6dHJ6TG5Bc0RLZVl1VS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjYvMWM5ODA5LTFmNjAtNDNjMi04MTAzLWRhZDA0MjBiODVk
My8xLzEtUm5oOF81cHRPdmY4Q3FhaFg1OGJDc2xNQm8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggFyBggrBgEFBQcBBwEB/wSCAWEwggFdMIIBSgQCAAEw
ggFCMAwDBAMlEggDBAAlEgoDBAAlEhYDBAElEkgwDAMEAiUSZAMEACUSZjAMAwQA
JRJrAwQAJRJ6AwQAJeaLMAwDBAAl5rMDBAEl5rQwDAMEAyXmuAMEACXmugMEAyXm
wAMEACXm4AMEACXm6QMEAi0JGAMEAi1Z4DAMAwQALvONAwQELvOAAwQALvOsAwQA
LvPJMAwDBAAu880DBAAu884DBAEu8+IDBAEu8/QwDAMEAlfyVAMEBVfyQDAMAwQC
V/J0AwQHV/IAMAwDBAVZ6KADBAJZ6KgDBAJZ6LADBAJei/wwDAMEAI1llwMEAI1l
mAMEAI1lyQMEBLBtYDAMAwQAsqq/AwQBsqrEAwQAsqryAwQCuTLIAwQAvEhgMAwD
BAG8SGoDBAG8SGwwDAMEALxIdQMEALxIdgMEAcIFXAMEAMOAmDANBAIAAjAHAwUD
KgwrgDANBgkqhkiG9w0BAQsFAAOCAQEAVg99pXvg7kBB+/Ddxot6lVaqE9gRTIBJ
/Bq1RDRc3yfqhrtqsD/CZiWh+6RLStr4w8B1zPgkXUHXceoIGzrxxdg1O25sG0vK
yoY1/lOM0xN/1h5D3Hh1FcUImEB4XviCSm+rCwidHI7uV4Cqmo/mcDbfye6hoyLD
BtfyZId2j5Sp18Q87zkNoGhc+e1a6Y3i0LTX2iBjesprhU13m0MeL4t0A+iEgZuY
WP38bRRTZW26xNEa75ncAGH8ygCy/0NG8bc2Y6g487nJE4z46tEPdY62+QsoDEiL
AmZzBxjbRSKCS4hLecQ+ZANq3SB35BTH+EwTZEdTD0A2WN3yf1jYQA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org