Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/8809dd-667a-4047-8104-de58698b6470/1/pAnwR7Fgg14QvyasqyL6lWYyImY.roa
File: pAnwR7Fgg14QvyasqyL6lWYyImY.roa (raw, json)
Hash identifier: Piw623mOgnwACdsUAdFogG0nuiibKTNsXCoCCHbj49s=
Subject key identifier: A4:09:F0:47:B1:60:83:5E:10:BF:26:AC:AB:22:FA:95:66:32:22:66
Certificate issuer: /CN=56a4987bf8c6b4cdd657bbc2d0a5e13e9b626cb9
Certificate serial: 018E1710802349AA761624BB7C7560BB7434
Authority key identifier: 56:A4:98:7B:F8:C6:B4:CD:D6:57:BB:C2:D0:A5:E1:3E:9B:62:6C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VqSYe_jGtM3WV7vC0KXhPptibLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/8809dd-667a-4047-8104-de58698b6470/1/pAnwR7Fgg14QvyasqyL6lWYyImY.roa
Signing time: Thu 07 Mar 2024 03:59:01 +0000
ROA not before: Thu 07 Mar 2024 03:59:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25133
IP address blocks: 37.139.160.0/22 maxlen: 22
37.139.164.0/22 maxlen: 22
37.139.168.0/24 maxlen: 24
37.139.169.0/24 maxlen: 24
37.139.170.0/24 maxlen: 24
37.139.171.0/24 maxlen: 24
37.139.172.0/24 maxlen: 24
37.139.173.0/24 maxlen: 24
37.139.174.0/24 maxlen: 24
37.139.175.0/24 maxlen: 24
37.139.176.0/24 maxlen: 24
37.139.177.0/24 maxlen: 24
37.139.178.0/24 maxlen: 24
37.139.179.0/24 maxlen: 24
37.139.180.0/22 maxlen: 22
37.139.184.0/22 maxlen: 22
37.139.188.0/22 maxlen: 22
45.95.164.0/22 maxlen: 22
45.143.48.0/22 maxlen: 22
45.153.208.0/22 maxlen: 22
45.158.48.0/22 maxlen: 22
46.255.32.0/22 maxlen: 22
46.255.36.0/22 maxlen: 22
78.137.0.0/19 maxlen: 19
78.137.32.0/24 maxlen: 24
78.137.33.0/24 maxlen: 24
78.137.34.0/24 maxlen: 24
78.137.35.0/24 maxlen: 24
78.137.36.0/22 maxlen: 22
78.137.40.0/21 maxlen: 21
78.137.48.0/20 maxlen: 20
83.142.48.0/22 maxlen: 22
89.200.232.0/21 maxlen: 21
91.105.207.0/24 maxlen: 24
91.211.136.0/22 maxlen: 22
91.217.144.0/24 maxlen: 24
91.244.0.0/18 maxlen: 18
92.43.80.0/22 maxlen: 22
92.118.220.0/22 maxlen: 22
103.35.160.0/22 maxlen: 22
103.237.44.0/22 maxlen: 22
109.227.64.0/19 maxlen: 19
109.227.96.0/19 maxlen: 19
152.89.20.0/22 maxlen: 22
176.67.0.0/21 maxlen: 21
176.67.8.0/22 maxlen: 22
176.67.12.0/22 maxlen: 22
176.67.16.0/24 maxlen: 24
176.67.17.0/24 maxlen: 24
176.67.18.0/24 maxlen: 24
176.67.19.0/24 maxlen: 24
176.67.20.0/24 maxlen: 24
176.67.21.0/24 maxlen: 24
176.67.22.0/24 maxlen: 24
176.67.23.0/24 maxlen: 24
176.67.24.0/24 maxlen: 24
176.67.25.0/24 maxlen: 24
176.67.26.0/24 maxlen: 24
176.67.27.0/24 maxlen: 24
176.67.28.0/24 maxlen: 24
176.67.29.0/24 maxlen: 24
176.67.30.0/24 maxlen: 24
176.67.31.0/24 maxlen: 24
178.216.16.0/21 maxlen: 21
185.3.148.0/24 maxlen: 24
185.3.149.0/24 maxlen: 24
185.3.150.0/24 maxlen: 24
185.3.151.0/24 maxlen: 24
185.41.192.0/23 maxlen: 23
185.41.194.0/23 maxlen: 23
185.62.96.0/22 maxlen: 22
185.96.28.0/22 maxlen: 22
185.103.40.0/23 maxlen: 23
185.103.42.0/23 maxlen: 23
185.128.92.0/22 maxlen: 22
185.176.108.0/22 maxlen: 22
185.176.112.0/22 maxlen: 22
185.203.244.0/22 maxlen: 22
185.208.112.0/22 maxlen: 22
185.220.94.0/23 maxlen: 23
185.228.100.0/22 maxlen: 22
193.106.80.0/22 maxlen: 22
194.1.220.0/23 maxlen: 23
212.55.64.0/22 maxlen: 22
212.55.68.0/22 maxlen: 22
212.55.72.0/23 maxlen: 23
212.55.74.0/23 maxlen: 23
212.55.76.0/22 maxlen: 22
212.55.80.0/22 maxlen: 22
212.55.84.0/23 maxlen: 23
212.55.86.0/23 maxlen: 23
212.55.88.0/22 maxlen: 22
212.55.92.0/22 maxlen: 22
213.108.52.0/22 maxlen: 22
217.115.96.0/21 maxlen: 21
217.115.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 16 Apr 2024 11:53:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:17:10:80:23:49:aa:76:16:24:bb:7c:75:60:bb:74:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56a4987bf8c6b4cdd657bbc2d0a5e13e9b626cb9
Validity
Not Before: Mar 7 03:59:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a409f047b160835e10bf26acab22fa9566322266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:39:ea:16:c9:f0:69:6a:1c:09:f3:ad:86:
80:2a:f0:f8:88:62:e4:45:e1:ce:6f:15:89:5a:a6:
dc:26:d8:85:c5:92:c3:e8:16:af:11:f0:1f:6d:38:
8a:5f:df:b7:2e:77:4d:6a:10:b6:a0:1a:dd:50:60:
1d:11:f5:6f:ad:aa:eb:a1:f6:72:11:63:d6:fd:9d:
3a:a4:59:c6:eb:41:ea:3c:06:21:18:3b:83:6e:0f:
24:2c:51:67:f7:b9:ca:89:45:02:f7:dc:3c:6f:9f:
8a:00:29:63:ab:b7:15:23:30:ac:5a:87:aa:b6:55:
89:13:90:68:8c:a8:64:85:92:c4:53:28:78:78:fd:
3e:f1:59:1d:a1:0b:02:96:62:0c:3c:1a:2d:ad:62:
ca:f0:69:e1:89:35:19:bb:5d:24:25:46:7e:0a:ba:
85:9c:96:29:ba:1f:f3:2a:df:ac:c1:e8:bb:78:0d:
f0:60:c6:18:6c:75:3b:06:40:19:e7:58:66:a0:42:
84:6b:6e:8e:d5:5d:5e:84:ca:be:5c:68:e1:7e:9e:
d9:91:de:6c:37:4e:41:fe:be:d2:1f:93:f5:e2:de:
12:1f:9f:5c:b8:79:47:96:de:7d:73:be:6c:33:7e:
e5:81:89:96:24:45:45:03:69:34:bb:09:53:01:ce:
45:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:09:F0:47:B1:60:83:5E:10:BF:26:AC:AB:22:FA:95:66:32:22:66
X509v3 Authority Key Identifier:
keyid:56:A4:98:7B:F8:C6:B4:CD:D6:57:BB:C2:D0:A5:E1:3E:9B:62:6C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VqSYe_jGtM3WV7vC0KXhPptibLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/8809dd-667a-4047-8104-de58698b6470/1/pAnwR7Fgg14QvyasqyL6lWYyImY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/8809dd-667a-4047-8104-de58698b6470/1/VqSYe_jGtM3WV7vC0KXhPptibLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.160.0/19
45.95.164.0/22
45.143.48.0/22
45.153.208.0/22
45.158.48.0/22
46.255.32.0/21
78.137.0.0/18
83.142.48.0/22
89.200.232.0/21
91.105.207.0/24
91.211.136.0/22
91.217.144.0/24
91.244.0.0/18
92.43.80.0/22
92.118.220.0/22
103.35.160.0/22
103.237.44.0/22
109.227.64.0/18
152.89.20.0/22
176.67.0.0/19
178.216.16.0/21
185.3.148.0/22
185.41.192.0/22
185.62.96.0/22
185.96.28.0/22
185.103.40.0/22
185.128.92.0/22
185.176.108.0-185.176.115.255
185.203.244.0/22
185.208.112.0/22
185.220.94.0/23
185.228.100.0/22
193.106.80.0/22
194.1.220.0/23
212.55.64.0/19
213.108.52.0/22
217.115.96.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:f2:39:90:84:17:11:c3:19:28:a4:65:62:ae:2f:34:fb:5f:
7d:1a:04:5f:4e:7b:7a:5a:a3:dc:f6:95:3d:f2:c9:f3:75:f8:
b2:7d:03:c2:4f:22:d9:6b:96:a5:cf:4f:fb:dc:c9:58:62:8e:
5e:95:52:ed:ff:b2:66:a5:d3:ad:23:b9:46:19:cc:8e:ef:73:
33:01:d0:71:fc:66:af:6a:e0:61:04:3d:ba:c9:7e:81:60:18:
c5:6d:9c:e8:ef:28:1d:3d:d4:02:f0:16:00:17:34:a3:f9:93:
5a:d3:83:6b:ca:f0:c8:b6:fd:1b:16:37:bf:3a:19:c1:22:4d:
78:c4:bc:ed:ab:c7:e5:7f:1a:b9:2b:ca:6b:6d:4d:99:df:56:
5b:ef:13:3a:25:a5:4b:41:89:42:7c:c6:0b:65:66:8b:92:ca:
1b:9e:15:cb:02:79:a0:09:ef:eb:88:40:ef:b2:33:aa:f3:d5:
43:dc:41:89:97:08:b1:0a:0f:98:3d:c3:a9:b1:c0:d0:98:94:
4b:f1:00:d0:d2:73:a1:8f:33:b2:4a:a9:5a:04:6f:8f:d1:0c:
bb:23:b1:a6:cb:59:9a:8d:43:b3:b2:0b:3a:5c:8d:2e:74:21:
1b:4f:1b:96:03:ca:f6:7c:47:a6:e7:cd:be:42:c3:20:49:25:
fc:cd:95:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:32 2024 by rpki-client on console-fra.rpki-client.org