Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/GHRkbRmufhxc-6ZJ90p60HhmjTQ.roa
File: GHRkbRmufhxc-6ZJ90p60HhmjTQ.roa (raw, json)
Hash identifier: JhUk/rGeJXFt7fKXYqWMlHY1aTIDqPwWCLFeXk6+/Gw=
Subject key identifier: 18:74:64:6D:19:AE:7E:1C:5C:FB:A6:49:F7:4A:7A:D0:78:66:8D:34
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018EBC6C8C241EFFD2474AAECEF9B3F095B7
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/GHRkbRmufhxc-6ZJ90p60HhmjTQ.roa
Signing time: Mon 08 Apr 2024 06:36:54 +0000
ROA not before: Mon 08 Apr 2024 06:36:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12716
IP address blocks: 37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
37.63.20.0/22 maxlen: 24
37.63.24.0/22 maxlen: 22
37.63.28.0/22 maxlen: 24
37.63.96.0/24 maxlen: 24
37.63.97.0/24 maxlen: 24
37.63.98.0/24 maxlen: 24
37.63.99.0/24 maxlen: 24
62.204.154.0/23 maxlen: 23
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
85.118.64.0/22 maxlen: 22
85.118.68.0/23 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.71.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
85.118.74.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.80.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
151.251.121.0/24 maxlen: 24
151.251.126.0/23 maxlen: 23
151.251.192.0/22 maxlen: 22
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.240.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.243.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
176.222.0.0/20 maxlen: 24
185.151.156.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
213.226.17.0/24 maxlen: 24
213.226.19.0/24 maxlen: 24
213.226.36.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 07:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:6c:8c:24:1e:ff:d2:47:4a:ae:ce:f9:b3:f0:95:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 8 06:36:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1874646d19ae7e1c5cfba649f74a7ad078668d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:94:53:e3:9b:54:cf:1e:0b:c0:43:a8:ef:0e:
f7:b9:08:d2:01:aa:6f:7f:ce:ab:10:b6:8f:38:f8:
bf:2e:4b:48:04:e7:0f:de:ff:ef:87:5a:01:10:7e:
62:0d:6a:16:99:10:fc:b9:c6:54:8c:60:62:09:3b:
d7:45:4e:bb:40:39:d5:dc:ff:79:f5:34:fe:dd:7d:
d5:3f:55:40:d6:3f:74:8a:cb:31:cb:15:36:96:69:
7d:52:6b:bd:ed:4a:e2:bc:6b:db:e6:33:27:a6:df:
5b:86:fa:8f:8e:03:4a:2f:a6:ee:7b:6a:7f:93:97:
b6:4a:fd:94:d9:91:94:6b:bf:c2:31:51:e2:7b:70:
e5:db:78:9d:25:95:b0:6a:32:28:45:bd:7a:2a:94:
da:60:b8:09:8f:40:fc:50:27:81:ce:17:e0:ea:2e:
68:f2:14:8e:0e:ef:ca:14:a2:ff:a5:d4:8d:4b:5b:
2c:6e:00:86:f8:45:de:03:76:e6:48:d6:c3:f9:69:
1f:8e:7a:fb:37:4e:d0:fa:42:b8:22:98:08:f3:a6:
30:e0:5c:b9:ce:3a:2a:a4:52:f2:2b:dd:37:5b:66:
6b:5f:29:c8:1d:d0:e5:36:a6:fc:ac:c2:f0:82:4b:
d5:1d:82:e2:ba:95:25:ee:b2:da:08:a5:ed:45:9b:
c5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:74:64:6D:19:AE:7E:1C:5C:FB:A6:49:F7:4A:7A:D0:78:66:8D:34
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/GHRkbRmufhxc-6ZJ90p60HhmjTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0/19
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.126.0/23
151.251.192.0/22
151.251.238.0-151.251.255.255
176.222.0.0/20
185.151.156.0/22
185.224.160.0/23
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e9:18:1c:d1:b5:2d:39:e4:17:fe:fa:fa:dc:89:d2:fe:db:
e6:af:0a:e6:ed:6a:4a:be:c1:2e:d8:50:a2:59:3b:19:d8:0a:
05:37:90:ee:ab:91:b5:de:b5:23:18:5f:33:40:7b:72:5a:cc:
ff:a2:4e:fe:ed:0b:01:de:85:96:f6:59:84:af:3c:b8:7a:e0:
87:13:26:9a:8f:1b:0e:12:7c:66:20:e6:2a:fe:44:c4:82:5e:
c3:52:de:b9:c4:b0:34:66:e0:fc:c9:fa:87:65:7a:78:c0:eb:
04:6c:61:2e:33:ea:b2:5f:75:a7:cc:8b:be:b4:10:7b:64:ff:
a6:4f:5a:cc:44:e9:3a:e0:81:e9:3a:78:30:1c:cf:23:48:9f:
d7:6c:0d:55:57:a6:69:01:11:35:d8:30:43:c0:04:5c:2b:f5:
48:6b:35:66:75:b1:78:b8:01:26:0f:bf:9e:f3:67:6a:36:74:
cc:fb:57:e7:fd:3d:f3:ef:db:61:00:3e:d1:b6:a5:79:74:e7:
d3:5d:15:24:6e:10:ee:0d:d4:db:dc:78:49:70:19:72:4c:98:
26:4c:cc:15:ee:fc:91:a3:18:b8:4d:43:3a:0e:b7:5e:cb:16:
b1:12:6f:f4:38:28:db:49:40:76:07:91:39:7b:8f:75:ff:1a:
18:61:21:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:20:04 2025 by rpki-client