Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0n4sDYZM46rs7Xv6hN-eTGRhTCU.roa
File: 0n4sDYZM46rs7Xv6hN-eTGRhTCU.roa (raw, json)
Hash identifier: Cdizbhx8z2YP6TE4wHaKN3eHEfmYk79MxUsS35VnhkA=
Subject key identifier: D2:7E:2C:0D:86:4C:E3:AA:EC:ED:7B:FA:84:DF:9E:4C:64:61:4C:25
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 018901474E87FF3D73F938FAE2BEEB89F81B
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0n4sDYZM46rs7Xv6hN-eTGRhTCU.roa
Signing time: Wed 28 Jun 2023 09:13:17 +0000
ROA not before: Wed 28 Jun 2023 09:13:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57169
IP address blocks: 37.235.50.0/23 maxlen: 23
37.235.48.0/20 maxlen: 20
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.30.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
2a03:f80:359::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
2a03:f80::/29 maxlen: 29
2a03:f80:57::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f80:7::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Jul 2023 06:43:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:47:4e:87:ff:3d:73:f9:38:fa:e2:be:eb:89:f8:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jun 28 09:13:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d27e2c0d864ce3aaeced7bfa84df9e4c64614c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a2:16:9e:f5:c3:d1:23:4f:45:f5:a3:3a:cc:
04:cd:45:b9:f9:19:af:fa:9f:f7:82:ed:19:2f:cd:
6d:fd:5d:0f:14:c8:1d:f8:d0:05:d3:21:86:0b:4f:
3c:28:4b:dd:f5:ad:ba:bd:32:5b:77:d1:09:d8:bd:
54:34:af:c4:f5:34:a4:bf:6c:3c:b8:ab:08:e2:50:
fe:12:54:71:1c:5b:26:fe:b3:ca:d3:3d:e6:78:51:
31:29:2c:a8:64:7b:d4:ed:28:4a:9b:f1:4a:7f:37:
d2:34:9b:11:5e:7a:12:87:2f:ba:89:4e:65:a9:e2:
11:0a:a3:7b:9b:09:77:1e:21:8c:3f:2c:ba:9a:a4:
69:a5:91:9f:85:28:57:5f:f1:aa:c9:f7:17:26:f2:
a5:bc:a5:da:07:11:e4:89:d4:64:50:a2:77:04:2d:
b6:35:dd:b9:cd:5f:34:fa:ca:73:46:4d:fa:20:89:
6a:f2:09:01:4f:15:9d:01:37:98:a1:e8:84:39:1f:
6e:3f:e0:c9:b7:45:65:20:0c:7c:d2:fc:4a:e2:c6:
da:0b:5d:9d:38:f3:4b:28:fb:5a:87:a7:13:47:ad:
fe:9e:9f:a5:1d:a0:e0:0c:02:b4:8b:c1:2b:d5:1b:
89:b2:15:8f:db:2b:80:51:ec:58:24:88:50:4b:69:
f5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7E:2C:0D:86:4C:E3:AA:EC:ED:7B:FA:84:DF:9E:4C:64:61:4C:25
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0n4sDYZM46rs7Xv6hN-eTGRhTCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.48.0/20
83.243.120.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
103.57.250.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0/23
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
9c:5b:74:3f:99:81:9b:d4:c9:a9:53:e9:31:17:39:2c:6e:3e:
f3:08:46:29:c4:d4:6d:4b:e4:43:97:3f:5b:9b:39:69:9f:8b:
12:06:1e:4d:e3:70:2a:e2:2d:54:47:32:37:b4:6f:c2:36:db:
1e:0b:27:37:44:8e:6e:bd:18:96:23:26:72:1f:86:84:1a:e1:
28:69:3c:47:ea:80:ac:a3:be:99:0c:07:23:d3:f4:79:e2:f4:
1b:3b:8f:1c:fd:8b:1f:7a:96:62:37:ae:2f:88:12:aa:7b:e8:
4b:67:b9:cb:58:e6:d4:e3:c2:4f:ad:8e:1e:17:f4:4d:c4:88:
0e:97:9b:8a:dc:2b:b4:5c:d4:14:ff:f2:06:6d:30:32:77:11:
8f:ea:39:43:f5:ae:9d:05:82:1c:62:57:9f:47:a9:b2:32:a9:
ca:f0:84:19:27:f7:99:4b:f7:82:92:63:c3:d5:79:46:c4:d6:
41:a2:e8:df:09:09:9a:9a:f1:dc:a0:e9:a8:a2:83:03:be:4f:
4c:c6:b9:b3:6a:54:ea:d7:22:9c:e3:1b:80:19:a8:f1:43:e5:
43:7e:d1:7b:20:8c:eb:dc:70:05:e7:8a:fb:ea:49:40:38:a1:
26:85:5c:56:2c:ca:b0:5c:26:7b:9b:5a:c9:ec:a3:73:4b:fb:
1e:30:bc:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org