Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/o6sjUEphqaBoiaQcUlyKoWrYgqo.roa
File: o6sjUEphqaBoiaQcUlyKoWrYgqo.roa (raw, json)
Hash identifier: iFMmdyzSvWzmHUKW8W+RU/LSoLsvg6ycZouH4AC7sHM=
Subject key identifier: A3:AB:23:50:4A:61:A9:A0:68:89:A4:1C:52:5C:8A:A1:6A:D8:82:AA
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018CC86F7146F9FDBE56EB249DC8D3744189
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/o6sjUEphqaBoiaQcUlyKoWrYgqo.roa
Signing time: Tue 02 Jan 2024 04:29:55 +0000
ROA not before: Tue 02 Jan 2024 04:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 178.170.242.0/24 maxlen: 24
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
194.5.92.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
37.230.192.0/21 maxlen: 21
188.72.106.0/23 maxlen: 23
188.72.118.0/24 maxlen: 24
188.72.117.0/24 maxlen: 24
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
94.139.252.0/22 maxlen: 22
178.170.192.0/22 maxlen: 22
178.170.191.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
45.89.224.0/22 maxlen: 22
46.243.172.0/24 maxlen: 24
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
37.230.139.0/24 maxlen: 24
37.18.102.0/24 maxlen: 24
37.18.100.0/23 maxlen: 23
37.18.112.0/23 maxlen: 23
37.18.108.0/22 maxlen: 22
176.109.96.0/20 maxlen: 20
37.18.107.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.114.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.230.179.0/24 maxlen: 24
37.18.122.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
37.230.186.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
46.243.206.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
37.18.72.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
185.50.200.0/22 maxlen: 22
141.101.201.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.151.0/24 maxlen: 24
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 12 Feb 2024 13:55:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:71:46:f9:fd:be:56:eb:24:9d:c8:d3:74:41:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Jan 2 04:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3ab23504a61a9a06889a41c525c8aa16ad882aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:68:71:41:04:90:92:0e:10:8c:57:31:6f:51:
e5:58:1d:0a:23:a9:50:01:06:b6:4a:bf:38:44:4d:
f2:99:c8:ae:d6:cc:21:b4:8d:14:44:3b:a3:73:6f:
f4:1f:02:fd:12:90:7a:57:4d:9b:1f:03:92:cc:63:
ff:ce:18:8a:52:b8:d5:af:80:73:43:f7:2b:c9:14:
e2:dd:0a:cb:20:98:42:2b:10:83:72:92:ec:fe:ce:
7e:04:fb:1d:03:2a:52:bf:04:d1:5c:c4:22:c7:c8:
e0:7c:f9:d4:ab:23:29:09:5d:6e:a6:f1:74:58:c3:
d9:3f:3e:a2:bd:82:38:89:d7:3c:f4:f7:f3:b1:81:
0b:c4:5d:4e:5b:24:08:c1:af:ca:f7:c5:53:21:98:
22:b9:b2:6f:c3:42:25:1c:ec:3a:ea:6b:cf:36:58:
a6:87:65:a6:bc:3e:7d:f4:c0:af:49:ff:6c:96:3e:
98:ea:1a:b6:94:a8:be:f3:79:c5:16:66:30:60:84:
36:95:3c:15:45:6a:bd:a9:02:79:54:5b:7f:53:25:
59:7e:6a:1c:07:fa:b7:73:23:9d:bc:59:8a:3b:70:
7d:74:08:87:b0:50:d8:1c:c8:e4:a1:db:06:73:44:
1d:a4:9a:a1:eb:32:d2:da:a8:d5:9e:82:5b:2e:8e:
4f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AB:23:50:4A:61:A9:A0:68:89:A4:1C:52:5C:8A:A1:6A:D8:82:AA
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/o6sjUEphqaBoiaQcUlyKoWrYgqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
94.139.252.0/22
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
30:23:e7:c2:2d:74:2f:63:14:75:78:76:83:68:3e:12:e2:c8:
3e:69:84:e8:e4:47:4f:32:a1:44:c6:cb:5b:37:ab:63:73:61:
dd:d3:76:ca:6a:3a:a5:cf:f4:d2:2e:a0:a6:d9:52:d7:7d:60:
73:1d:c8:cb:4a:cd:b5:c5:72:21:0d:51:92:61:f1:be:ad:c1:
b3:8d:ad:8d:b9:c4:29:cb:5b:fd:d4:02:a4:9d:67:ea:c1:d1:
ec:06:4e:4e:ac:1a:da:53:aa:95:8b:1d:6d:6b:01:3c:33:6d:
65:2e:8c:3c:ec:5a:45:e4:7d:5a:97:97:5c:d6:58:84:26:5a:
38:9b:2c:0c:04:f6:8d:b7:df:63:d8:e2:8b:28:6d:ea:0c:35:
a0:9c:43:7d:53:94:93:5e:29:61:b6:16:46:d7:92:7a:4b:20:
d8:7d:a6:2e:34:3c:d1:e8:33:98:e8:e3:d3:5b:6a:84:ee:7d:
5f:3d:21:66:3b:dc:10:ca:fd:63:0d:db:57:8c:b4:26:14:23:
22:fd:9b:5b:b7:c9:81:d4:46:a8:6b:2f:6d:b8:60:1b:59:a0:
43:30:cb:c3:0f:80:26:83:3f:dc:ad:34:96:9d:4f:43:0e:06:
21:ab:d1:46:1f:d3:b2:a1:63:83:a3:38:d5:c8:b5:ad:bd:73:
01:f5:60:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:55 2024 by rpki-client on console-ams.rpki-client.org