Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JIOAXKraHgJ6wtuDsSqPS9NBvRc.roa
File: JIOAXKraHgJ6wtuDsSqPS9NBvRc.roa (raw, json)
Hash identifier: 6Np4c2joLnGMzGBNnGkrLJgJSLtKRtfkG2itNI5FxMU=
Subject key identifier: 24:83:80:5C:AA:DA:1E:02:7A:C2:DB:83:B1:2A:8F:4B:D3:41:BD:17
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018AA775CEF39979D899689E60C18DD0485B
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JIOAXKraHgJ6wtuDsSqPS9NBvRc.roa
Signing time: Mon 18 Sep 2023 08:43:50 +0000
ROA not before: Mon 18 Sep 2023 08:43:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208677
IP address blocks: 178.170.242.0/24 maxlen: 24
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
194.5.92.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
188.72.106.0/23 maxlen: 23
188.72.118.0/24 maxlen: 24
188.72.117.0/24 maxlen: 24
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
45.89.224.0/22 maxlen: 22
46.243.172.0/24 maxlen: 24
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
37.18.107.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.230.179.0/24 maxlen: 24
37.18.122.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.151.0/24 maxlen: 24
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 Nov 2023 08:18:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:75:ce:f3:99:79:d8:99:68:9e:60:c1:8d:d0:48:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Sep 18 08:43:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2483805caada1e027ac2db83b12a8f4bd341bd17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:93:83:37:d3:59:29:7d:9b:2f:d8:f7:fc:be:
46:a5:b0:73:d7:95:74:4c:1a:b5:e9:ad:24:16:25:
93:30:ee:ff:40:14:65:c7:a4:84:66:fb:72:b1:ce:
93:75:1c:e4:7a:fd:a2:ea:89:83:9a:aa:eb:5a:17:
63:d5:64:9c:f9:3b:74:4a:76:d8:51:79:5a:13:f3:
55:01:44:8f:47:6c:91:49:b3:7f:2a:4b:a5:c3:18:
8d:13:5a:6a:88:4b:b3:6f:08:12:e6:26:6c:6a:d4:
c9:21:dc:0a:71:b4:70:dc:17:3d:4c:be:fd:2d:ac:
1f:39:04:18:84:4e:70:53:73:17:07:2d:b1:fd:35:
94:76:40:e9:cc:6a:2c:90:f8:d2:64:9e:d6:9a:a9:
eb:43:4a:16:96:ca:4c:7b:3d:0f:17:4e:d9:ce:4f:
e0:e8:e0:52:5f:bb:52:22:83:6e:5c:3d:b1:d1:88:
71:af:56:76:7d:b3:d1:05:5c:63:17:84:39:dc:6b:
2b:c5:37:09:83:ec:c6:31:77:30:00:6f:fa:25:4b:
8f:b9:e3:a7:60:b2:40:d4:72:14:85:dd:5c:9d:58:
08:ee:d1:cd:8a:84:3f:e9:b8:86:f1:d6:ac:30:93:
5b:da:99:3f:d9:d6:41:d4:7f:b8:2c:a0:c5:23:d3:
9f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:83:80:5C:AA:DA:1E:02:7A:C2:DB:83:B1:2A:8F:4B:D3:41:BD:17
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/JIOAXKraHgJ6wtuDsSqPS9NBvRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
141.101.151.0-141.101.152.255
141.101.201.0/24
178.170.191.0-178.170.197.255
178.170.242.0/24
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
6e:83:01:e9:b7:b9:dc:ea:80:c3:c3:d4:4f:58:b7:f8:79:20:
be:7b:21:5a:8f:96:1e:2c:33:50:a7:b4:25:99:ff:ef:39:a0:
a4:a0:ce:d4:ef:92:08:86:f7:1d:67:32:bc:7d:6c:f8:bb:c7:
03:3f:47:a1:fc:49:aa:be:a6:68:58:00:18:5e:f0:15:69:5d:
8a:0c:38:d5:5c:c2:6f:ce:2d:db:07:93:38:4c:5e:36:0d:9a:
6a:92:53:f0:b5:6b:ad:16:0d:88:f9:87:76:01:c7:11:7f:bd:
53:cb:e7:52:06:76:26:20:f7:d8:9d:41:b2:7e:f1:ab:e9:1e:
bb:37:4d:d0:21:60:d4:40:d7:bf:d2:96:37:c9:63:5a:c3:74:
c0:bb:2b:0c:95:4e:35:44:d2:04:88:8f:12:99:d2:39:ad:13:
18:b9:6b:c5:3e:32:55:67:9e:45:56:9a:07:8b:c4:26:c4:82:
04:9c:e7:1c:94:04:91:30:5e:1e:b9:cd:92:d5:35:4b:be:a7:
c1:a5:99:dd:ec:03:e8:ba:47:0b:b7:40:c2:29:1c:09:71:85:
80:f4:f0:4d:46:f0:c8:c9:cc:8c:59:6c:bf:04:8a:7f:49:1b:
c0:43:27:95:50:02:31:57:20:ad:bc:ec:1f:f9:b9:26:fa:1f:
48:b3:55:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org