Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9g-i4Hpp9OGA2HSkQ0yxa0g6hE8.roa
File: 9g-i4Hpp9OGA2HSkQ0yxa0g6hE8.roa (raw, json)
Hash identifier: +RsZAGExQbUqOgbZEaCg6k7mssjbqawdxdtGynrh24Y=
Subject key identifier: F6:0F:A2:E0:7A:69:F4:E1:80:D8:74:A4:43:4C:B1:6B:48:3A:84:4F
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018A6A05ED3AB35C68C5EE62423D50CEA211
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9g-i4Hpp9OGA2HSkQ0yxa0g6hE8.roa
Signing time: Wed 06 Sep 2023 10:24:47 +0000
ROA not before: Wed 06 Sep 2023 10:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208677
IP address blocks: 178.170.242.0/24 maxlen: 24
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
188.72.108.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
188.72.106.0/23 maxlen: 23
188.72.118.0/24 maxlen: 24
188.72.117.0/24 maxlen: 24
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
45.89.224.0/22 maxlen: 22
46.243.172.0/24 maxlen: 24
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.107.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.230.179.0/24 maxlen: 24
37.18.122.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.151.0/24 maxlen: 24
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 18 Sep 2023 08:43:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:05:ed:3a:b3:5c:68:c5:ee:62:42:3d:50:ce:a2:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Sep 6 10:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f60fa2e07a69f4e180d874a4434cb16b483a844f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c1:29:2a:e5:b2:02:12:19:0d:0a:37:d9:24:
6c:32:58:cc:4d:b6:30:73:26:94:c8:29:23:99:6e:
fa:de:df:88:e5:89:25:87:cd:2f:cc:a1:52:e7:34:
5d:26:e0:b5:6b:fb:0e:40:8c:5c:de:4d:6a:a1:a2:
e0:ea:04:34:90:8e:dc:5a:5b:6f:a5:07:da:9a:8e:
00:0f:08:5d:74:40:98:eb:52:b1:22:59:07:2f:f0:
a6:d4:fd:67:00:4c:49:ad:16:4a:0a:d0:db:06:9e:
3f:cf:43:ec:a7:80:00:31:3b:05:17:65:51:b6:77:
cf:ad:40:a4:66:fc:6a:c7:ca:f1:9b:95:71:23:82:
70:5e:39:26:54:df:63:dd:75:81:dd:7d:59:e2:69:
fc:94:b5:7e:4a:ab:97:25:f4:b8:ab:49:a0:6d:94:
44:44:e4:54:0d:8d:a6:db:89:da:cf:83:a1:b2:e0:
01:19:0d:48:01:87:91:cf:a2:5d:fb:6e:a2:e6:d8:
7f:f2:92:42:37:c6:c1:83:01:13:bf:e6:83:e3:99:
f6:2e:05:62:37:5f:a3:7c:fc:e9:c0:8d:1a:62:11:
ff:55:0b:2e:04:cc:1e:66:a7:d4:54:ac:4e:ac:7f:
e3:18:2f:b1:78:f0:d4:f6:36:47:48:1c:85:ce:96:
73:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0F:A2:E0:7A:69:F4:E1:80:D8:74:A4:43:4C:B1:6B:48:3A:84:4F
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/9g-i4Hpp9OGA2HSkQ0yxa0g6hE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
141.101.151.0-141.101.152.255
141.101.201.0/24
178.170.191.0-178.170.197.255
178.170.242.0/24
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
87:f8:c7:16:75:0d:49:64:8c:d6:49:2e:c9:02:8e:0e:70:ac:
e9:09:61:82:bf:ec:64:b3:c3:88:94:1d:27:fe:cf:72:78:ad:
22:54:84:c3:96:b3:2c:1a:d7:18:15:5b:23:24:e0:0b:7e:61:
6f:2f:a7:5d:5a:ab:2e:d5:90:03:a5:a4:5d:e8:f6:d0:fe:85:
3b:b1:1c:1a:d2:ce:6d:ae:ac:6c:c0:5c:d0:8f:05:ef:0a:98:
d6:d8:e7:60:55:74:c4:5b:9b:96:2f:f0:93:34:16:27:8e:33:
85:49:b1:bb:0c:6d:1d:b7:92:17:df:07:7b:0f:84:5d:56:08:
9e:3c:fb:eb:45:ee:12:18:21:0f:06:7a:e4:b1:a3:7b:8b:7c:
63:07:23:0f:de:1d:ea:5d:07:5a:6e:51:8d:b0:80:4f:f5:01:
e3:bc:fb:3b:b3:9a:62:21:30:11:47:6e:a0:f8:88:6d:48:3a:
ff:80:cc:8b:2c:b0:36:d6:4e:80:b5:c5:af:7b:78:8c:29:1b:
fc:37:28:56:ec:a8:9c:94:c3:09:de:d6:8b:95:1a:77:f0:ba:
5a:70:9d:23:d0:1b:6c:f2:68:0d:0e:9e:d1:37:12:1a:1c:90:
27:f8:81:7d:1b:d6:99:45:f4:3c:72:7c:a0:de:e4:a7:dc:a2:
56:09:02:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org