Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/s_l02PVKD9TmwLuTltF2eKymiT4.roa
File: s_l02PVKD9TmwLuTltF2eKymiT4.roa (raw, json)
Hash identifier: 6exMOHss8vZFw7P5Ohy/J97G5y+gxKKCIJAnZbfRKxo=
Subject key identifier: B3:F9:74:D8:F5:4A:0F:D4:E6:C0:BB:93:96:D1:76:78:AC:A6:89:3E
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 018B6C1F0C785F4DA574652E045B34A5BD6A
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/s_l02PVKD9TmwLuTltF2eKymiT4.roa
Signing time: Thu 26 Oct 2023 13:14:15 +0000
ROA not before: Thu 26 Oct 2023 13:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57169
IP address blocks: 37.235.50.0/23 maxlen: 23
37.235.48.0/20 maxlen: 20
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
83.243.123.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
213.183.54.0/24 maxlen: 24
213.183.55.0/24 maxlen: 24
213.183.56.0/24 maxlen: 24
213.183.57.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.30.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
2a03:f80:359::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
2a03:f80::/29 maxlen: 29
2a03:f80:57::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f80:7::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Nov 2023 13:46:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:1f:0c:78:5f:4d:a5:74:65:2e:04:5b:34:a5:bd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Oct 26 13:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3f974d8f54a0fd4e6c0bb9396d17678aca6893e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3c:6d:c3:c2:b4:cb:74:a9:e6:e3:b4:25:2e:
f8:85:07:49:e7:76:6a:7b:ee:61:c5:e5:c5:e1:78:
fb:c4:46:e5:98:63:7a:05:57:cc:cf:a7:ab:e6:6d:
d6:0a:ef:08:af:47:87:1a:0f:69:e3:3f:d9:71:93:
76:67:b7:4b:83:eb:df:44:c6:f9:88:62:e4:07:bc:
e5:e7:9f:77:f9:8f:10:36:37:8a:c8:0f:97:ed:48:
ab:e1:30:14:a9:59:cd:05:71:77:31:c5:f1:3f:ac:
05:b2:4e:2e:12:9d:e9:68:89:2c:9e:d1:d2:10:63:
ab:71:b3:f0:27:c7:93:fb:5d:c9:2b:32:79:cb:ce:
07:af:d5:e2:53:e8:25:f7:5a:a0:7a:d8:11:8a:f3:
95:15:d7:bb:2b:19:13:27:cb:0b:33:60:60:81:43:
1d:b3:57:d8:83:d4:88:24:70:09:7d:08:e7:42:ad:
95:09:ef:ea:b1:14:80:cd:de:5b:d1:34:46:fa:be:
d8:26:b5:d4:76:38:45:0e:e3:04:a3:68:11:b2:fa:
6c:ba:74:ef:40:8f:a8:9d:e3:12:ef:06:6b:2e:43:
bc:91:d9:b2:13:33:dc:2c:57:07:a3:a3:cd:36:f8:
67:d8:c2:21:42:b8:27:12:7a:5e:e5:38:47:25:e0:
39:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F9:74:D8:F5:4A:0F:D4:E6:C0:BB:93:96:D1:76:78:AC:A6:89:3E
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/s_l02PVKD9TmwLuTltF2eKymiT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.48.0/20
83.243.120.0/24
83.243.122.0/23
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
103.57.250.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0/23
213.183.54.0-213.183.57.255
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
46:52:e7:63:57:f1:74:08:10:24:90:2b:74:d1:e5:2d:73:5d:
ed:4f:73:c9:d2:c2:43:bc:89:46:34:17:7e:e9:ad:d7:b6:47:
49:fc:ed:dd:e2:7d:4c:bc:a5:08:f1:21:da:33:38:9c:1f:6d:
53:d2:cb:89:a5:04:83:ea:39:9a:13:7c:37:12:7e:ad:18:c9:
80:3b:2e:5a:3c:00:85:3e:78:83:16:28:80:f5:b7:ef:74:0f:
b2:2b:97:41:f2:64:ae:5c:d7:be:8a:c9:3e:26:86:4f:19:9e:
9c:d7:02:55:34:d5:71:5d:de:8a:34:83:13:d5:5b:79:88:72:
9f:36:dd:db:47:c4:79:18:18:9c:59:7f:1b:a5:f6:33:ea:21:
0b:c0:2f:c9:a0:64:75:6e:53:c2:9b:22:c5:38:ca:c1:63:f6:
c3:49:02:aa:85:37:bf:e7:1b:6d:01:89:12:49:e1:dc:ea:b3:
1f:9a:ee:fe:c4:30:3a:02:69:b9:9c:04:c4:7e:75:a4:4b:cf:
99:98:a3:ba:a9:ac:82:7d:de:76:c7:81:ca:95:65:99:a2:e0:
d3:30:4a:e0:08:78:b6:c0:2b:c4:41:c2:c0:ce:31:ff:ed:a4:
f6:0e:72:54:16:38:47:df:3e:c2:7c:a9:59:d9:fa:04:fa:f2:
f3:67:69:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org