Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Bt6bVDSD4koB07yKECXMUBZuDew.roa
File: Bt6bVDSD4koB07yKECXMUBZuDew.roa (raw, json)
Hash identifier: EJ19hb9wxdnlktgnbZFmEJ5xhtD9R87/J2LseFJcZUA=
Subject key identifier: 06:DE:9B:54:34:83:E2:4A:01:D3:BC:8A:10:25:CC:50:16:6E:0D:EC
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 018731332A8E6ED883F0910989F6B0943EE6
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Bt6bVDSD4koB07yKECXMUBZuDew.roa
Signing time: Thu 30 Mar 2023 06:27:29 +0000
ROA not before: Thu 30 Mar 2023 06:27:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57169
IP address blocks: 37.235.50.0/23 maxlen: 23
37.235.48.0/20 maxlen: 20
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.30.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
2a03:f80:56::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
2a03:f80::/29 maxlen: 29
2a03:f80:57::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:33:2a:8e:6e:d8:83:f0:91:09:89:f6:b0:94:3e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Mar 30 06:27:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06de9b543483e24a01d3bc8a1025cc50166e0dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6e:ad:f2:01:41:19:5c:0d:b6:bc:6d:a0:5a:
b3:83:21:39:ee:09:29:6e:17:f1:c0:b2:af:60:44:
6a:81:a4:07:e8:9f:92:a6:25:4c:30:6f:14:13:ba:
b0:90:e8:ec:fa:4f:ce:9b:8a:d1:47:a9:ec:4e:de:
87:86:99:35:26:97:b1:e8:c9:0e:e9:99:04:10:6f:
56:6c:d3:39:54:d7:fb:91:f5:2c:84:e6:58:f5:33:
0c:f0:66:bc:34:34:81:c2:56:5e:c9:ba:46:4a:23:
eb:75:e5:ab:87:99:d1:ae:45:b7:04:bb:bf:84:b6:
cd:58:e0:e3:f1:2b:8d:a3:36:6b:68:7f:8b:55:04:
7b:35:40:3d:9b:37:68:2c:da:d5:ea:74:b0:e2:c6:
cf:cd:50:48:cf:13:94:10:fe:23:ef:d8:9a:02:05:
4f:69:dd:5c:af:61:ed:67:a4:7c:94:67:ed:4d:01:
a7:44:07:ad:18:03:6f:59:3c:f1:ed:03:86:db:f6:
49:60:36:2c:bd:44:42:59:c3:dc:a3:1f:c3:4e:50:
f0:26:2f:80:87:19:0d:3e:81:e0:d9:47:6a:88:40:
c4:c3:c1:53:c7:24:de:8b:a4:a2:60:4f:fa:e5:d3:
8f:05:7b:22:42:7f:d5:1b:97:2a:08:cb:b5:e2:ac:
d2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DE:9B:54:34:83:E2:4A:01:D3:BC:8A:10:25:CC:50:16:6E:0D:EC
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Bt6bVDSD4koB07yKECXMUBZuDew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.48.0/20
83.243.120.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
103.57.250.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0/23
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
51:95:eb:5e:dd:60:23:2e:26:2a:25:0d:d2:da:63:86:f7:fa:
03:64:68:50:eb:26:4f:db:c1:f6:2d:91:27:26:73:c6:80:15:
33:90:78:04:7d:8e:5d:91:a4:d6:9a:c0:fd:b5:78:04:50:72:
8b:d8:98:82:c4:41:58:b2:84:b0:20:b4:71:e3:8a:e3:0e:d1:
f6:1f:c4:1a:1d:0b:05:1e:ec:4f:40:38:bc:3a:38:01:df:0f:
c6:be:cd:e9:80:75:6f:f6:e0:51:02:81:9b:29:5f:25:25:3e:
02:d1:b9:c9:d3:ac:7e:62:92:00:7b:f1:d0:cf:e8:f6:04:57:
06:84:92:e9:d0:f7:d1:53:5f:1f:23:9c:af:99:b7:12:fc:48:
8f:05:23:9f:f9:88:9a:aa:8f:82:d8:0f:58:2d:53:ab:69:c7:
76:95:4e:d8:f6:2c:8c:22:0c:6c:c6:0c:58:e4:f1:6d:f3:c1:
79:b3:90:a3:6b:93:89:db:70:88:51:0a:95:eb:3c:9a:d1:21:
e1:3f:fe:e9:8a:1e:9a:f4:e6:40:59:78:0b:9c:eb:5f:9a:ef:
5a:bf:d1:27:d4:93:7f:d4:f2:9d:9c:d4:76:16:4c:8f:67:b0:
ea:44:d4:e8:7c:e4:39:55:41:63:c6:0e:25:00:9b:12:a6:03:
03:8f:a8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org