Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/93686d-11f5-4e3e-b5c4-43843c2e943b/1/pgvVaPSlBSKfqeDXzPb8HYb8ceQ.roa
File: pgvVaPSlBSKfqeDXzPb8HYb8ceQ.roa (raw, json)
Hash identifier: FOPGWwkp6gnr+wNOZcUTV+VMaR864i3PdyIZs3kN0IY=
Subject key identifier: A6:0B:D5:68:F4:A5:05:22:9F:A9:E0:D7:CC:F6:FC:1D:86:FC:71:E4
Certificate issuer: /CN=9d210f2259093aaf45285922a588e9a661aba9fa
Certificate serial: 018CA569B8CDD6010C7D75371E753CF73146
Authority key identifier: 9D:21:0F:22:59:09:3A:AF:45:28:59:22:A5:88:E9:A6:61:AB:A9:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSEPIlkJOq9FKFkipYjppmGrqfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/93686d-11f5-4e3e-b5c4-43843c2e943b/1/pgvVaPSlBSKfqeDXzPb8HYb8ceQ.roa
Signing time: Tue 26 Dec 2023 09:16:58 +0000
ROA not before: Tue 26 Dec 2023 09:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35104
IP address blocks: 46.235.84.0/24 maxlen: 24
46.235.83.0/24 maxlen: 24
46.235.82.0/24 maxlen: 24
46.235.81.0/24 maxlen: 24
46.235.85.0/24 maxlen: 24
46.235.80.0/24 maxlen: 24
46.235.87.0/24 maxlen: 24
46.235.86.0/24 maxlen: 24
188.127.40.0/24 maxlen: 24
188.127.39.0/24 maxlen: 24
188.127.44.0/24 maxlen: 24
188.127.43.0/24 maxlen: 24
188.127.42.0/24 maxlen: 24
188.127.41.0/24 maxlen: 24
37.228.64.0/24 maxlen: 24
188.127.45.0/24 maxlen: 24
188.127.48.0/24 maxlen: 24
37.228.68.0/24 maxlen: 24
37.228.67.0/24 maxlen: 24
37.228.66.0/24 maxlen: 24
37.228.65.0/24 maxlen: 24
37.228.71.0/24 maxlen: 24
37.228.70.0/24 maxlen: 24
37.228.69.0/24 maxlen: 24
188.127.38.0/24 maxlen: 24
188.127.33.0/24 maxlen: 24
188.127.32.0/24 maxlen: 24
188.127.37.0/24 maxlen: 24
188.127.36.0/24 maxlen: 24
188.127.35.0/24 maxlen: 24
188.127.34.0/24 maxlen: 24
93.185.67.0/24 maxlen: 24
93.185.66.0/24 maxlen: 24
93.185.65.0/24 maxlen: 24
93.185.71.0/24 maxlen: 24
93.185.70.0/24 maxlen: 24
93.185.69.0/24 maxlen: 24
93.185.68.0/24 maxlen: 24
93.185.74.0/24 maxlen: 24
93.185.73.0/24 maxlen: 24
93.185.72.0/24 maxlen: 24
93.185.78.0/24 maxlen: 24
93.185.77.0/24 maxlen: 24
93.185.76.0/24 maxlen: 24
93.185.75.0/24 maxlen: 24
93.185.72.0/21 maxlen: 21
93.185.79.0/24 maxlen: 24
89.219.24.0/24 maxlen: 24
89.219.25.0/24 maxlen: 24
89.219.27.0/24 maxlen: 24
89.219.26.0/24 maxlen: 24
77.245.97.0/24 maxlen: 24
77.245.96.0/24 maxlen: 24
77.245.98.0/24 maxlen: 24
77.245.104.0/22 maxlen: 22
77.245.100.0/24 maxlen: 24
77.245.99.0/24 maxlen: 24
77.245.104.0/24 maxlen: 24
77.245.103.0/24 maxlen: 24
77.245.102.0/24 maxlen: 24
77.245.101.0/24 maxlen: 24
77.245.105.0/24 maxlen: 24
77.245.108.0/23 maxlen: 23
77.245.111.0/24 maxlen: 24
77.245.110.0/24 maxlen: 24
77.245.109.0/24 maxlen: 24
77.245.108.0/24 maxlen: 24
77.245.107.0/24 maxlen: 24
77.245.106.0/24 maxlen: 24
93.185.64.0/24 maxlen: 24
193.29.53.0/24 maxlen: 24
185.20.125.0/24 maxlen: 24
185.20.124.0/24 maxlen: 24
185.20.127.0/24 maxlen: 24
185.20.126.0/24 maxlen: 24
80.242.211.0/24 maxlen: 24
80.242.210.0/24 maxlen: 24
80.242.209.0/24 maxlen: 24
80.242.213.0/24 maxlen: 24
80.242.212.0/24 maxlen: 24
80.242.208.0/24 maxlen: 24
185.20.126.0/23 maxlen: 23
80.242.218.0/24 maxlen: 24
80.242.217.0/24 maxlen: 24
80.242.216.0/24 maxlen: 24
80.242.219.0/24 maxlen: 24
80.242.215.0/24 maxlen: 24
80.242.214.0/24 maxlen: 24
80.242.223.0/24 maxlen: 24
80.242.222.0/24 maxlen: 24
80.242.221.0/24 maxlen: 24
80.242.220.0/24 maxlen: 24
95.141.128.0/24 maxlen: 24
95.141.132.0/24 maxlen: 24
95.141.131.0/24 maxlen: 24
95.141.130.0/24 maxlen: 24
95.141.129.0/24 maxlen: 24
95.141.136.0/22 maxlen: 22
95.141.135.0/24 maxlen: 24
95.141.134.0/24 maxlen: 24
95.141.133.0/24 maxlen: 24
95.141.139.0/24 maxlen: 24
95.141.138.0/24 maxlen: 24
95.141.137.0/24 maxlen: 24
95.141.136.0/24 maxlen: 24
95.141.142.0/24 maxlen: 24
95.141.141.0/24 maxlen: 24
95.141.140.0/24 maxlen: 24
95.141.143.0/24 maxlen: 24
217.196.16.0/24 maxlen: 24
217.196.17.0/24 maxlen: 24
217.196.24.0/24 maxlen: 24
217.196.23.0/24 maxlen: 24
217.196.19.0/24 maxlen: 24
217.196.18.0/24 maxlen: 24
217.196.22.0/24 maxlen: 24
217.196.21.0/24 maxlen: 24
217.196.20.0/24 maxlen: 24
217.196.31.0/24 maxlen: 24
217.196.30.0/24 maxlen: 24
217.196.26.0/24 maxlen: 24
217.196.25.0/24 maxlen: 24
217.196.29.0/24 maxlen: 24
217.196.28.0/24 maxlen: 24
217.196.27.0/24 maxlen: 24
217.196.26.0/23 maxlen: 23
195.189.31.0/24 maxlen: 24
195.189.30.0/24 maxlen: 24
195.189.29.0/24 maxlen: 24
195.189.28.0/24 maxlen: 24
188.0.132.0/24 maxlen: 24
188.0.131.0/24 maxlen: 24
188.0.130.0/24 maxlen: 24
188.0.129.0/24 maxlen: 24
188.0.128.0/24 maxlen: 24
188.0.139.0/24 maxlen: 24
188.0.138.0/24 maxlen: 24
188.0.137.0/24 maxlen: 24
188.0.136.0/24 maxlen: 24
188.0.135.0/24 maxlen: 24
188.0.134.0/24 maxlen: 24
188.0.133.0/24 maxlen: 24
188.0.145.0/24 maxlen: 24
188.0.144.0/24 maxlen: 24
188.0.143.0/24 maxlen: 24
188.0.142.0/24 maxlen: 24
188.0.141.0/24 maxlen: 24
188.0.140.0/22 maxlen: 24
188.0.146.0/24 maxlen: 24
188.0.149.0/24 maxlen: 24
188.0.148.0/24 maxlen: 24
188.0.147.0/24 maxlen: 24
188.0.152.0/24 maxlen: 24
188.0.151.0/24 maxlen: 24
188.0.150.0/24 maxlen: 24
188.0.159.0/24 maxlen: 24
188.0.158.0/24 maxlen: 24
188.0.157.0/24 maxlen: 24
188.0.153.0/24 maxlen: 24
188.0.156.0/24 maxlen: 24
188.0.155.0/24 maxlen: 24
188.0.154.0/24 maxlen: 24
2a03:a300:4000::/44 maxlen: 44
2a03:a300:5000::/44 maxlen: 44
2a03:a300:5000::/42 maxlen: 42
2a03:a300:1140::/48 maxlen: 48
2a03:a300:2020::/48 maxlen: 48
2a03:a300:3000::/48 maxlen: 48
2a03:a300:1000::/48 maxlen: 48
2a03:a300:2000::/48 maxlen: 48
2a03:a300:4100::/48 maxlen: 48
2a03:a300:800::/37 maxlen: 37
2a03:a300:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a5:69:b8:cd:d6:01:0c:7d:75:37:1e:75:3c:f7:31:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d210f2259093aaf45285922a588e9a661aba9fa
Validity
Not Before: Dec 26 09:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a60bd568f4a505229fa9e0d7ccf6fc1d86fc71e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0d:a4:1b:4a:3c:44:60:fa:26:e7:8c:85:98:
26:ff:2d:ee:ed:65:1c:80:0e:86:eb:11:05:06:35:
80:6d:14:20:a2:69:37:71:e1:5a:79:d0:3b:48:37:
b0:54:6f:3c:50:69:19:37:ec:df:4b:43:03:83:3f:
9a:e4:93:14:c4:63:64:ba:4f:ea:93:04:9e:f2:3e:
18:e7:2c:76:83:31:1b:5d:b0:5f:25:3b:d8:56:39:
48:03:56:03:d9:e7:8b:a2:29:1d:cf:62:2b:1f:a3:
50:3e:7a:df:37:7b:7e:74:4c:ce:78:b6:cb:66:ff:
f7:ea:1c:25:f3:0b:f3:f5:85:43:be:57:f3:5a:9c:
ec:a0:85:69:ea:da:af:05:29:f8:d0:9e:ec:86:e3:
eb:13:cc:bf:24:f3:d3:f8:8d:58:c2:ff:73:eb:69:
eb:6e:05:77:44:04:ba:69:1e:6b:54:a6:aa:90:2c:
83:25:98:a1:72:f6:44:ad:09:f3:c7:e8:aa:c2:1c:
e2:ed:ed:e8:07:ad:32:a0:9e:7e:38:c6:90:a6:2c:
a4:70:09:e8:a6:ff:9c:77:da:db:ea:87:ac:a8:04:
53:ba:73:51:96:0a:eb:5c:6e:03:f7:22:61:72:b5:
af:b7:e4:35:55:85:6d:28:14:a7:03:e8:04:97:85:
aa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0B:D5:68:F4:A5:05:22:9F:A9:E0:D7:CC:F6:FC:1D:86:FC:71:E4
X509v3 Authority Key Identifier:
keyid:9D:21:0F:22:59:09:3A:AF:45:28:59:22:A5:88:E9:A6:61:AB:A9:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSEPIlkJOq9FKFkipYjppmGrqfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/93686d-11f5-4e3e-b5c4-43843c2e943b/1/pgvVaPSlBSKfqeDXzPb8HYb8ceQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/93686d-11f5-4e3e-b5c4-43843c2e943b/1/nSEPIlkJOq9FKFkipYjppmGrqfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.64.0/21
46.235.80.0/21
77.245.96.0/20
80.242.208.0/20
89.219.24.0/22
93.185.64.0/20
95.141.128.0/20
185.20.124.0/22
188.0.128.0/19
188.127.32.0-188.127.45.255
188.127.48.0/24
193.29.53.0/24
195.189.28.0/22
217.196.16.0/20
IPv6:
2a03:a300:800::-2a03:a300:1000:ffff:ffff:ffff:ffff:ffff
2a03:a300:1140::/48
2a03:a300:2000::/48
2a03:a300:2020::/48
2a03:a300:3000::/48
2a03:a300:4000::/44
2a03:a300:4100::/48
2a03:a300:5000::/36
Signature Algorithm: sha256WithRSAEncryption
a9:e3:54:04:58:85:3c:5e:5a:69:39:d5:3a:2f:b2:65:3c:9c:
c8:a5:13:6a:f7:6f:af:ca:01:97:aa:30:c8:de:d4:72:49:5c:
cd:61:64:37:01:1d:16:d1:16:90:8f:48:76:81:c5:07:21:41:
2e:35:47:58:44:ab:59:f1:a6:39:e0:62:da:2c:3e:ff:34:1f:
66:c7:fc:60:96:64:2f:7d:ce:75:a1:68:e6:33:65:c9:43:f4:
e6:84:83:13:cd:17:0b:3e:61:50:be:18:c8:8e:e7:35:a7:d6:
ad:cd:d9:76:04:c2:25:42:d9:d0:14:7e:d1:34:0e:a4:b2:4b:
4a:12:db:bf:75:1e:84:04:cc:6e:63:7c:5e:97:89:58:aa:d0:
28:83:f1:47:1e:3e:47:ef:23:b3:d0:c8:ba:82:d1:f2:1d:10:
da:49:45:6d:22:67:e6:ec:fa:66:d7:0b:1d:a6:43:12:14:e1:
69:b3:be:59:18:7f:15:02:fb:40:45:98:ab:eb:df:3c:5e:41:
cc:7d:32:51:23:f9:77:52:2b:85:55:f6:c1:0b:35:12:27:bd:
4e:de:b4:85:8b:40:c2:d2:ff:ea:6e:be:64:f9:bc:33:d6:5b:
3e:93:bd:79:fc:01:7b:5e:28:23:bc:77:b2:9f:18:b6:49:6f:
c4:4f:db:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org