Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/BlxX3uJ-EmNDNfhmU3eHPfVgctE.roa
File: BlxX3uJ-EmNDNfhmU3eHPfVgctE.roa (raw, json)
Hash identifier: ZAWmPCCwYXUMB/MF45SxjSu51T4DLoMYOoNU5yudfW4=
Subject key identifier: 06:5C:57:DE:E2:7E:12:63:43:35:F8:66:53:77:87:3D:F5:60:72:D1
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018EC9CF8FA926983E37102A4F6B7612AA74
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/BlxX3uJ-EmNDNfhmU3eHPfVgctE.roa
Signing time: Wed 10 Apr 2024 21:00:06 +0000
ROA not before: Wed 10 Apr 2024 21:00:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
37.18.72.0/23 maxlen: 23
37.18.100.0/23 maxlen: 23
37.18.102.0/24 maxlen: 24
37.18.107.0/24 maxlen: 24
37.18.108.0/22 maxlen: 22
37.18.112.0/23 maxlen: 23
37.18.114.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.139.0/24 maxlen: 24
37.230.179.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.186.0/24 maxlen: 24
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
45.89.224.0/22 maxlen: 22
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
46.243.172.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.206.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
94.139.252.0/22 maxlen: 22
95.174.88.0/21 maxlen: 21
141.101.151.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.201.0/24 maxlen: 24
176.109.96.0/20 maxlen: 20
176.123.160.0/21 maxlen: 21
178.170.191.0/24 maxlen: 24
178.170.192.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
178.170.242.0/24 maxlen: 24
185.50.200.0/22 maxlen: 22
188.72.96.0/24 maxlen: 24
188.72.106.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
188.72.117.0/24 maxlen: 24
188.72.118.0/24 maxlen: 24
194.5.92.0/23 maxlen: 23
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 25 Apr 2024 11:48:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c9:cf:8f:a9:26:98:3e:37:10:2a:4f:6b:76:12:aa:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Apr 10 21:00:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=065c57dee27e12634335f8665377873df56072d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:07:18:ea:b7:ad:bb:cf:1d:11:d0:64:59:
06:02:b1:13:b1:7e:05:fe:c2:0c:04:08:7f:3d:0b:
2f:7a:dd:05:c2:87:df:78:38:1e:97:5e:77:c4:6a:
f4:77:99:b8:37:fb:b0:fd:30:59:c3:19:e4:34:02:
ad:aa:27:23:7d:5e:ad:bc:79:5c:c5:90:72:5c:fb:
9a:1a:85:34:39:fa:de:cf:d2:8d:73:3d:dd:c8:75:
ce:d8:45:8a:37:f8:c0:f4:4c:6a:04:ba:88:11:78:
60:0c:9c:9f:d8:5a:5f:e3:50:c0:c9:c2:89:33:7f:
af:b4:5d:ff:59:c0:05:82:89:f7:67:97:8e:a3:53:
a4:9a:1f:27:e6:e6:1e:f5:90:fc:3c:5d:ce:ca:06:
bc:53:13:46:a9:b6:3e:34:9a:bd:e8:88:83:cd:72:
3e:79:6f:80:9a:4b:be:d0:db:c8:45:9f:81:7f:c1:
7e:fa:bf:de:54:f2:a1:66:de:b7:8f:60:85:ea:3a:
9c:40:c2:ed:bb:34:07:92:6d:1c:f4:63:0c:d3:44:
5a:cc:40:f5:89:df:66:53:e5:61:ba:3d:73:09:8d:
6c:44:68:e2:96:d8:dd:54:d7:67:d9:76:50:21:99:
95:4d:ea:1b:3a:07:76:49:91:14:2c:48:08:cb:58:
da:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5C:57:DE:E2:7E:12:63:43:35:F8:66:53:77:87:3D:F5:60:72:D1
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/BlxX3uJ-EmNDNfhmU3eHPfVgctE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
95.174.88.0/21
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
176.123.160.0/21
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
14:2b:8e:9c:af:2a:72:43:7c:35:68:86:f9:5c:9f:68:c8:77:
6b:c3:c6:38:22:72:04:a0:f9:ef:f2:ca:68:7b:9e:25:05:30:
bc:b6:ec:f5:77:18:cb:d9:00:80:40:86:89:76:a2:55:df:18:
f0:4b:3f:fc:67:cc:57:a7:38:12:a0:67:25:66:8f:f2:14:8d:
1d:58:9d:7d:13:e3:92:5c:fd:a7:f3:24:6e:94:32:5d:f7:a6:
fb:5a:cb:f1:91:39:8f:fd:4d:ed:4d:0a:1b:28:3b:fe:7e:cc:
0f:5e:b8:07:87:8a:54:36:1e:12:c0:13:85:e6:68:ba:81:85:
89:d4:2d:15:2b:e3:d0:f4:dc:56:ef:fd:8c:cc:36:66:fc:40:
00:0e:af:82:81:66:4e:5a:a2:f1:df:d5:1f:7b:2d:9f:e5:12:
38:fa:85:d1:c2:7a:64:66:c9:25:5f:25:7f:d9:51:2a:0e:05:
c3:85:a0:b9:0d:f4:54:70:24:52:0b:d7:38:8c:b8:22:29:c8:
2e:bf:eb:27:a7:90:0c:ca:e3:1c:06:30:a5:3c:d1:53:76:3c:
47:fc:ce:4f:71:88:18:90:e0:c5:7b:00:0a:93:da:9e:a7:99:
4e:ea:98:5b:d4:a7:cd:b2:d2:29:37:75:0b:b4:0d:fc:e9:48:
e9:d9:48:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org