Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jQ827PbeUun-ci_mCxi_m4DehfA.roa
File: jQ827PbeUun-ci_mCxi_m4DehfA.roa (raw, json)
Hash identifier: ZOkJGybvn2mS2aOTGxLOxHcMXhwJ3HFzQF3M/Lxm+1Y=
Subject key identifier: 8D:0F:36:EC:F6:DE:52:E9:FE:72:2F:E6:0B:18:BF:9B:80:DE:85:F0
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 018A89640D351538D4C657FF8F3BBC589475
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jQ827PbeUun-ci_mCxi_m4DehfA.roa
Signing time: Tue 12 Sep 2023 12:35:50 +0000
ROA not before: Tue 12 Sep 2023 12:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57169
IP address blocks: 37.235.50.0/23 maxlen: 23
37.235.48.0/20 maxlen: 20
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.30.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
2a03:f80:359::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
2a03:f80::/29 maxlen: 29
2a03:f80:57::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f80:7::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 05 Oct 2023 09:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:64:0d:35:15:38:d4:c6:57:ff:8f:3b:bc:58:94:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Sep 12 12:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d0f36ecf6de52e9fe722fe60b18bf9b80de85f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:b3:f3:2e:40:5d:ab:f4:43:e5:31:a7:0e:
70:5d:df:1c:52:70:06:06:a0:44:ec:65:7c:65:79:
c7:b7:09:24:0d:bc:90:8c:7f:7e:8f:22:d1:f1:26:
45:7e:6b:7b:7b:8b:8d:e5:a6:78:05:8c:ff:64:a5:
c0:b7:9d:97:66:5d:ef:bb:f5:91:c2:41:dc:56:30:
7f:35:78:75:54:09:1c:80:68:d5:7a:90:9d:a2:f1:
59:f0:7a:55:01:08:69:1c:3c:30:bb:cf:cb:d2:25:
8f:ce:c1:52:96:29:f4:d2:0a:83:04:c9:66:59:5e:
b3:ae:35:78:a0:52:d2:83:99:d8:28:3c:ad:28:1b:
25:27:d1:68:49:88:a7:c6:1f:11:a3:6c:99:d0:7f:
d0:95:28:d4:a5:aa:40:7b:e3:23:81:01:30:df:13:
f8:ad:8d:62:9c:2b:d4:46:99:a8:c2:11:f4:af:ec:
b2:46:14:fa:fc:d0:59:66:43:aa:8c:70:a5:f7:2d:
58:89:f9:a9:6e:4b:9d:4d:cb:c7:5a:58:40:3b:56:
63:c3:d3:dd:aa:85:e6:d8:97:17:69:11:6b:7c:90:
86:85:08:b6:54:7c:38:15:9b:9d:ce:f0:7a:1e:cb:
31:0d:61:af:d8:0b:d2:15:f9:46:ed:66:09:89:cf:
63:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:0F:36:EC:F6:DE:52:E9:FE:72:2F:E6:0B:18:BF:9B:80:DE:85:F0
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jQ827PbeUun-ci_mCxi_m4DehfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.48.0/20
83.243.120.0/24
83.243.122.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
103.57.250.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0/23
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
39:5d:67:90:8e:1f:a3:a2:c1:79:61:d9:0a:c6:96:a5:f7:e2:
48:c5:3c:91:b6:82:83:3a:7c:f4:7b:34:25:28:db:f1:90:db:
de:78:dc:ba:3a:c5:4e:4a:16:bb:83:6e:c1:03:d7:cc:79:55:
cb:56:3a:81:97:a4:f6:22:17:92:19:f1:2f:31:da:e9:0b:a3:
07:76:c5:24:d9:31:b6:9c:8c:26:45:d6:ab:e0:3b:5d:13:0f:
0e:b1:a2:21:a8:e5:37:71:4f:4d:51:fc:0b:33:f9:b1:b5:ea:
46:09:27:69:d0:79:62:64:4b:55:94:bc:d0:fa:1b:ae:17:22:
81:ee:b2:57:70:3a:30:45:e0:c4:2f:2b:4f:e2:b6:de:39:41:
9c:70:41:2b:d6:85:1e:f7:bf:31:e7:1e:c8:ff:81:23:c2:72:
84:69:8e:d9:8b:ed:53:95:5b:dd:e2:73:5a:13:62:03:9c:bd:
86:13:fb:15:a6:ff:06:91:95:ad:0f:6f:f5:59:a0:03:19:cc:
ed:94:5d:67:03:2d:a4:2f:ba:15:a5:f8:87:50:1e:9d:ea:ee:
25:97:d0:cc:a7:b0:92:15:d4:a7:88:77:d5:ce:0f:de:64:0f:
26:6c:db:a9:76:2c:66:32:1f:e0:3f:79:b1:0f:29:6d:df:42:
d1:81:26:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:28 2024 by rpki-client on console-fra.rpki-client.org