Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/AU79g4kiy7nOd8mVVajQVd6685c.roa
File: AU79g4kiy7nOd8mVVajQVd6685c.roa (raw, json)
Hash identifier: GMEE5/8c7ibzJyRzDzAzfnvPYoYFT+WzUHVMW8Y4to0=
Subject key identifier: 01:4E:FD:83:89:22:CB:B9:CE:77:C9:95:55:A8:D0:55:DE:BA:F3:97
Certificate issuer: /CN=c9265b8ba9e6190f2609787cd9d92efd48efbd9d
Certificate serial: 01857246BD320728992314A92E6583F00F77
Authority key identifier: C9:26:5B:8B:A9:E6:19:0F:26:09:78:7C:D9:D9:2E:FD:48:EF:BD:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySZbi6nmGQ8mCXh82dku_UjvvZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/AU79g4kiy7nOd8mVVajQVd6685c.roa
Signing time: Mon 02 Jan 2023 11:38:36 +0000
ROA not before: Mon 02 Jan 2023 11:38:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8343
IP address blocks: 178.23.136.0/21 maxlen: 21
178.23.138.0/24 maxlen: 24
178.23.139.0/24 maxlen: 24
178.23.142.0/24 maxlen: 24
178.23.141.0/24 maxlen: 24
178.23.140.0/24 maxlen: 24
178.23.143.0/24 maxlen: 24
185.19.244.0/22 maxlen: 22
37.143.95.0/24 maxlen: 24
37.143.93.0/24 maxlen: 24
37.143.92.0/24 maxlen: 24
37.143.94.0/24 maxlen: 24
195.58.242.0/24 maxlen: 24
195.58.244.0/24 maxlen: 24
195.58.243.0/24 maxlen: 24
195.58.246.0/24 maxlen: 24
195.58.245.0/24 maxlen: 24
195.58.241.0/24 maxlen: 24
195.58.249.0/24 maxlen: 24
195.58.251.0/24 maxlen: 24
195.58.250.0/24 maxlen: 24
195.58.253.0/24 maxlen: 24
195.58.252.0/22 maxlen: 22
195.58.252.0/24 maxlen: 24
195.58.248.0/24 maxlen: 24
195.58.247.0/24 maxlen: 24
195.58.255.0/24 maxlen: 24
195.58.254.0/24 maxlen: 24
37.143.88.0/21 maxlen: 21
37.143.89.0/24 maxlen: 24
37.143.88.0/24 maxlen: 24
37.143.91.0/24 maxlen: 24
37.143.90.0/24 maxlen: 24
195.58.224.0/19 maxlen: 19
195.58.224.0/24 maxlen: 24
195.58.226.0/24 maxlen: 24
195.58.227.0/24 maxlen: 24
195.58.229.0/24 maxlen: 24
195.58.228.0/24 maxlen: 24
195.58.230.0/24 maxlen: 24
195.58.232.0/24 maxlen: 24
195.58.231.0/24 maxlen: 24
195.58.233.0/24 maxlen: 24
195.58.236.0/24 maxlen: 24
195.58.235.0/24 maxlen: 24
195.58.237.0/24 maxlen: 24
195.58.239.0/24 maxlen: 24
195.58.240.0/24 maxlen: 24
195.58.238.0/24 maxlen: 24
195.58.234.0/24 maxlen: 24
2a00:1b50:1::/48 maxlen: 48
2a00:1b50:1000::/48 maxlen: 48
2a00:1b50:10::/48 maxlen: 48
2a00:1b50::/32 maxlen: 32
2a00:1b50::/36 maxlen: 36
2a00:1b50:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:bd:32:07:28:99:23:14:a9:2e:65:83:f0:0f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9265b8ba9e6190f2609787cd9d92efd48efbd9d
Validity
Not Before: Jan 2 11:38:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=014efd838922cbb9ce77c99555a8d055debaf397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:87:54:c7:c9:7c:4f:d1:72:c2:3b:3b:84:90:
d6:9a:15:69:f5:03:80:3d:77:46:91:b2:b6:4a:69:
1b:87:1d:99:1d:26:1e:fb:c2:30:1d:35:a7:0d:06:
2f:b8:1f:d6:db:e7:9d:d6:c3:52:2d:99:08:84:0f:
83:ff:05:e1:d3:e7:29:11:54:ea:12:ba:c3:b4:a9:
d0:1a:be:0d:9a:bd:b8:68:bf:91:1a:6f:d2:43:b8:
18:65:43:33:c9:8b:6d:1c:7d:b1:ed:48:90:92:8b:
06:45:6d:1d:04:26:c4:ef:33:aa:f7:63:42:17:e3:
21:5a:a5:bb:cd:3d:d0:05:66:f7:01:b2:f0:dc:53:
5e:eb:21:6c:8d:31:f6:31:d5:f7:e1:48:b5:2e:76:
e8:b4:95:8a:99:6b:59:48:df:c5:96:c6:4b:06:e4:
f7:11:61:46:fc:aa:02:23:30:06:76:fa:f9:d9:0f:
c7:d0:c5:da:49:81:23:5d:7c:5f:c7:1f:da:bb:86:
e2:50:29:f2:e9:ad:4d:51:da:8b:84:ef:23:61:41:
2c:d2:1c:31:29:a5:f2:90:32:06:64:b4:68:95:00:
0a:05:15:2a:0e:5a:57:67:ee:fa:28:4b:1d:81:21:
5d:92:db:e9:32:08:67:44:be:fc:97:4f:d0:de:ac:
46:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4E:FD:83:89:22:CB:B9:CE:77:C9:95:55:A8:D0:55:DE:BA:F3:97
X509v3 Authority Key Identifier:
keyid:C9:26:5B:8B:A9:E6:19:0F:26:09:78:7C:D9:D9:2E:FD:48:EF:BD:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySZbi6nmGQ8mCXh82dku_UjvvZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/AU79g4kiy7nOd8mVVajQVd6685c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e27d9b-cad6-4e1d-9d07-b7a6608a8fbc/1/ySZbi6nmGQ8mCXh82dku_UjvvZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.88.0/21
178.23.136.0/21
185.19.244.0/22
195.58.224.0/19
IPv6:
2a00:1b50::/32
Signature Algorithm: sha256WithRSAEncryption
37:a7:6a:17:b9:de:61:93:86:ec:f1:b1:f2:16:b7:10:77:e3:
91:b4:0d:e6:c9:82:71:ef:18:ff:66:55:09:45:fb:b8:7a:c6:
90:8e:d1:86:42:ad:b8:4b:c1:c8:dd:8b:44:66:c3:0a:cd:75:
aa:db:63:05:b8:cb:69:6f:9c:9e:d8:b6:8d:64:be:45:9c:61:
af:84:eb:dc:ef:06:1d:c6:68:00:01:d6:00:d6:20:2f:d2:a4:
8a:97:74:c9:7c:48:33:64:37:06:9f:47:30:79:af:0a:82:4b:
5e:02:f8:c5:b3:e5:aa:67:1d:20:b5:06:07:8e:f6:9f:65:db:
ff:44:07:a4:61:34:d2:30:e9:27:1f:f2:a9:a7:3c:00:a1:95:
1e:6b:51:c3:2f:43:25:cb:db:ce:c0:29:4d:36:42:5d:8f:c0:
4b:de:77:c9:44:8b:61:20:fc:a8:57:0c:e6:14:f6:8c:34:d4:
7e:c5:43:67:5c:7f:f0:26:4c:48:ac:67:f3:85:76:40:02:77:
fc:50:01:ee:1a:b4:27:31:9a:76:40:b3:64:ac:b0:66:54:8c:
9d:11:65:a9:f3:dd:87:fb:9b:9f:ad:9c:ec:b8:82:37:02:25:
5a:10:cc:68:85:94:0e:00:aa:fa:10:8e:8e:23:6b:cd:55:26:
a1:df:ad:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org