Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/MDIsOmX1-7286tMlddWjUVyAaWM.roa
File: MDIsOmX1-7286tMlddWjUVyAaWM.roa (raw, json)
Hash identifier: Y/9QgIq29YwXxNs+AR0RriI63BPQWdVZZwtAFy++c6M=
Subject key identifier: 30:32:2C:3A:65:F5:FB:BD:BC:EA:D3:25:75:D5:A3:51:5C:80:69:63
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018EBC9D12FDBDC16DAF9B29392186F3B888
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/MDIsOmX1-7286tMlddWjUVyAaWM.roa
Signing time: Mon 08 Apr 2024 07:29:54 +0000
ROA not before: Mon 08 Apr 2024 07:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12716
IP address blocks: 37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
37.63.20.0/22 maxlen: 24
37.63.24.0/22 maxlen: 22
37.63.28.0/22 maxlen: 24
37.63.32.0/22 maxlen: 24
37.63.96.0/24 maxlen: 24
37.63.97.0/24 maxlen: 24
37.63.98.0/24 maxlen: 24
37.63.99.0/24 maxlen: 24
62.204.154.0/23 maxlen: 23
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
85.118.64.0/22 maxlen: 22
85.118.68.0/23 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.71.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
85.118.74.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.80.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
151.251.121.0/24 maxlen: 24
151.251.126.0/23 maxlen: 23
151.251.192.0/22 maxlen: 22
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.240.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.243.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
176.222.0.0/20 maxlen: 24
185.151.156.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
213.226.17.0/24 maxlen: 24
213.226.19.0/24 maxlen: 24
213.226.36.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 12:24:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:9d:12:fd:bd:c1:6d:af:9b:29:39:21:86:f3:b8:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 8 07:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30322c3a65f5fbbdbcead32575d5a3515c806963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f4:e4:53:42:31:a4:b7:8d:91:c7:d6:5c:99:
fc:5d:60:47:8b:2d:30:14:d3:c2:05:3b:75:e4:de:
85:78:08:eb:f5:d5:a7:26:7a:50:a3:87:d0:a8:cb:
24:59:cf:f3:ed:3e:51:58:b7:83:c3:ee:7d:d2:ca:
42:09:13:df:ee:72:a3:04:a0:9d:23:ff:6e:bb:cc:
4e:20:d7:b4:86:3f:7e:f0:3e:e3:ec:a9:c2:f3:7a:
fd:51:9c:33:af:dd:3e:ab:f1:7e:62:51:1f:fb:21:
f9:08:4e:a3:32:1b:89:17:05:ba:70:70:af:2d:d0:
da:fc:b6:11:83:2f:7e:b7:78:a1:78:08:16:1f:84:
0b:72:c8:7e:57:22:58:67:f1:c7:d8:58:9c:9f:92:
8e:91:d1:d7:81:43:92:9f:4a:37:71:0c:15:a6:01:
e7:fb:62:c1:4a:09:ad:e2:76:52:ed:b8:c7:f4:db:
15:66:6a:51:c7:66:8d:cc:46:45:a2:b8:4f:e9:af:
d3:7c:66:21:f6:ab:73:d5:42:47:58:c6:0f:9d:90:
d4:12:df:d2:b3:5d:73:1f:bb:76:9b:89:4f:7b:e7:
06:76:29:e0:bc:2a:c6:0b:a9:b2:60:e5:0b:a9:4a:
67:7f:32:57:47:3e:b1:93:c6:d7:5b:ec:c4:7a:98:
5e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:32:2C:3A:65:F5:FB:BD:BC:EA:D3:25:75:D5:A3:51:5C:80:69:63
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/MDIsOmX1-7286tMlddWjUVyAaWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0-37.63.35.255
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.126.0/23
151.251.192.0/22
151.251.238.0-151.251.255.255
176.222.0.0/20
185.151.156.0/22
185.224.160.0/23
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b6:e6:1e:89:16:36:60:16:6e:9e:6d:38:42:a0:a0:f5:d4:
60:23:88:80:fb:b2:61:c3:31:41:3a:ba:5f:58:8c:53:b1:19:
60:65:38:dc:20:45:a8:b0:01:3f:07:56:0b:d4:be:c1:59:d8:
42:59:14:20:5d:48:f5:f4:87:ce:4b:11:ac:2a:dc:d6:b0:71:
67:6f:88:a9:37:fa:4e:c7:f9:db:c8:6b:38:fe:be:24:42:87:
50:51:83:6c:e7:c9:14:46:7e:48:9f:09:62:49:66:de:d9:cf:
ba:1e:ba:a7:78:66:20:b7:d4:07:16:7e:20:29:a3:bd:7b:64:
cc:bd:05:e9:f6:55:bf:25:f7:b5:39:89:1a:fd:03:95:d7:d7:
36:d6:65:02:ad:67:e0:82:4f:e1:ff:e2:ac:ec:be:8e:76:51:
e7:2b:ce:80:33:20:8f:b6:90:2c:af:56:47:00:ad:b0:1e:23:
38:4f:b6:0c:9d:19:e0:8c:41:cf:91:4c:18:96:23:4c:a5:8a:
e6:dd:d1:e4:eb:57:5b:e1:19:b1:0b:58:78:dd:61:56:0f:f4:
51:3d:c0:f9:1c:8b:63:b6:c0:3f:04:34:c6:ef:4b:0d:06:d7:
9d:81:73:35:2d:4a:4d:44:ea:65:6c:2e:4d:03:72:3c:5e:16:
8c:f2:29:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:06 2024 by rpki-client on console-fra.rpki-client.org