Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Eulim-ZAfss9_WZmrQ0aI8U4m_E.roa
File: Eulim-ZAfss9_WZmrQ0aI8U4m_E.roa (raw, json)
Hash identifier: gB259+0qmPzMwt9aPiUMSmw+7wV/O3vUMpShR8Hzk80=
Subject key identifier: 12:E9:62:9B:E6:40:7E:CB:3D:FD:66:66:AD:0D:1A:23:C5:38:9B:F1
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 01864AFB59B48ADF47D534A467C04FD5B108
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Eulim-ZAfss9_WZmrQ0aI8U4m_E.roa
Signing time: Mon 13 Feb 2023 13:33:51 +0000
ROA not before: Mon 13 Feb 2023 13:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57169
IP address blocks: 37.235.50.0/23 maxlen: 23
37.235.48.0/20 maxlen: 20
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.30.0/24 maxlen: 24
2a03:f80:56::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
2a03:f80::/29 maxlen: 29
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:fb:59:b4:8a:df:47:d5:34:a4:67:c0:4f:d5:b1:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Feb 13 13:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12e9629be6407ecb3dfd6666ad0d1a23c5389bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:43:bb:9a:34:c7:41:41:72:1a:cc:78:f2:
3a:bd:7b:c7:db:3e:9a:90:73:80:d7:42:8c:ff:bf:
82:c0:26:41:b6:db:37:63:22:cf:8d:4e:67:ee:bf:
a5:fb:4a:f1:23:11:2c:ba:f6:24:03:25:7b:0d:8b:
86:9e:1d:a4:2c:a2:c9:8f:69:c5:01:d1:ff:f6:8d:
2c:ec:c5:d0:6a:dd:52:51:37:a4:24:29:61:85:c6:
27:10:f7:aa:9b:e0:6e:ed:05:1d:c8:0e:e0:ca:27:
5a:8e:c8:be:ba:85:d7:f8:10:ce:9b:6f:d6:d5:59:
cf:03:e0:bd:a7:f7:5e:91:a1:5e:e4:13:84:1a:0d:
78:cd:84:1a:95:13:c6:a0:1c:e7:3e:1c:fa:c9:1c:
37:a4:c5:48:ba:e0:73:55:e1:d6:47:4a:34:30:8a:
76:82:d4:a5:b6:75:ea:86:6c:24:ec:9d:63:e8:47:
80:3b:fb:54:8b:c9:4c:17:17:df:49:37:b7:d2:13:
48:2a:47:c9:9d:d0:cc:f8:6e:0c:79:68:a9:fb:6b:
a7:2d:d8:81:ac:8b:e9:54:45:e2:58:df:38:d3:58:
35:4c:74:ef:50:ad:a1:0e:65:85:db:25:ab:e1:0b:
ae:91:db:6d:5f:57:97:ac:fe:57:8c:39:1a:38:8b:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E9:62:9B:E6:40:7E:CB:3D:FD:66:66:AD:0D:1A:23:C5:38:9B:F1
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/Eulim-ZAfss9_WZmrQ0aI8U4m_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.48.0/20
83.243.120.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0/23
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
ab:85:99:f9:86:b2:9f:02:c5:84:42:ba:68:5e:ab:1e:9c:11:
be:51:de:6a:c5:78:24:49:1b:68:43:d7:63:93:f7:8d:27:10:
0b:b4:56:e8:92:7a:9b:70:a3:02:02:a4:95:2d:98:44:a5:c8:
81:82:b4:f0:f2:ff:d7:e6:16:3c:98:0f:0e:da:df:6f:14:7d:
d2:71:5d:7a:50:93:dc:80:ed:7a:69:55:ee:d9:74:23:cb:a5:
ed:78:97:c8:bd:8a:65:af:37:23:85:37:c6:72:cd:cd:e4:21:
50:c9:70:93:cc:92:30:91:c1:c4:69:45:d8:d2:96:42:83:79:
57:72:c2:61:2a:1e:92:86:93:75:b8:be:91:cc:4a:9e:27:63:
f6:f8:4b:fd:bf:3b:fa:0b:07:36:a3:dc:63:9d:3a:4b:b5:88:
c5:7f:96:a4:61:03:cb:7f:c3:12:6e:7f:d5:76:62:ee:20:e9:
8f:01:35:55:d0:f5:5e:80:07:23:06:2c:50:bb:7d:55:13:7a:
9e:ee:63:60:51:0c:08:7d:32:c3:a9:58:88:b1:32:7a:f3:ca:
50:fb:b4:c9:0a:f2:76:dc:5b:94:29:b5:03:43:89:77:3a:d3:
b0:e7:c2:e2:c4:0d:87:e6:db:cf:c2:1c:3a:8d:0e:0c:7d:0f:
14:83:b4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org