Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/CsADYAk3vY4V2ZdZXD8lBzwt1oM.roa
File: CsADYAk3vY4V2ZdZXD8lBzwt1oM.roa (raw, json)
Hash identifier: Fjg7vvjK+vCL3rOthlI5i2Uc7dAHRnCpFnhUM0f7S6E=
Subject key identifier: 0A:C0:03:60:09:37:BD:8E:15:D9:97:59:5C:3F:25:07:3C:2D:D6:83
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018DD9F01D3CE7FFA6B2EC9CE4EA501EA305
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/CsADYAk3vY4V2ZdZXD8lBzwt1oM.roa
Signing time: Sat 24 Feb 2024 07:06:48 +0000
ROA not before: Sat 24 Feb 2024 07:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203963
IP address blocks: 37.49.144.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
109.203.163.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.141.0/24 maxlen: 24
176.46.142.0/24 maxlen: 24
176.46.144.0/24 maxlen: 24
176.46.148.0/24 maxlen: 24
176.46.149.0/24 maxlen: 24
176.46.150.0/24 maxlen: 24
176.46.152.0/24 maxlen: 24
176.46.153.0/24 maxlen: 24
176.46.154.0/24 maxlen: 24
176.46.155.0/24 maxlen: 24
176.46.156.0/24 maxlen: 24
176.46.157.0/24 maxlen: 24
176.46.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 09:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d9:f0:1d:3c:e7:ff:a6:b2:ec:9c:e4:ea:50:1e:a3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Feb 24 07:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ac003600937bd8e15d997595c3f25073c2dd683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:ab:be:ae:6e:fb:14:a3:6c:07:4a:c4:1f:
8a:a2:45:b6:8e:67:30:6e:4d:84:72:b1:af:7b:9d:
33:b8:00:d7:46:2d:60:21:44:6f:c1:6d:2e:61:21:
ee:82:67:cc:4c:5e:90:88:72:3b:88:90:44:59:56:
c4:7c:3c:63:9b:b6:4c:55:4f:7f:c7:9f:88:56:5a:
8e:60:91:1e:4d:ab:ff:31:f4:c8:3d:5c:3c:0a:c9:
56:8d:cf:b3:cf:c6:48:a8:8d:e8:2b:59:52:35:95:
7a:f5:ee:32:a1:cb:85:7d:97:cc:c2:d0:b0:85:98:
d0:94:b6:84:2e:28:48:d9:a4:d6:d9:d2:7d:aa:47:
f7:43:56:54:dd:a3:87:f4:8c:62:ca:15:db:2f:65:
54:80:51:17:dc:9a:94:79:e4:99:50:76:fa:85:8f:
2d:af:01:d1:cf:83:5c:01:a9:fe:bd:b5:bf:73:0c:
a6:97:16:a9:85:d1:66:39:73:8d:06:0d:58:fa:50:
01:d8:48:73:88:b5:56:56:0d:36:88:23:d0:40:ad:
25:36:41:7a:92:c1:72:4c:e9:8d:52:c6:08:e8:f4:
0c:80:0c:07:3f:0e:90:75:9d:a9:be:b9:2a:30:3e:
dc:68:14:85:c1:dd:be:36:0e:0e:7c:0b:75:93:29:
0f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C0:03:60:09:37:BD:8E:15:D9:97:59:5C:3F:25:07:3C:2D:D6:83
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/CsADYAk3vY4V2ZdZXD8lBzwt1oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/24
37.49.148.0/24
94.74.137.0/24
94.74.156.0/24
94.74.158.0/23
94.74.164.0/24
94.74.169.0/24
94.74.171.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
109.203.163.0/24
176.46.136.0/24
176.46.138.0/23
176.46.141.0-176.46.142.255
176.46.144.0/24
176.46.148.0-176.46.150.255
176.46.152.0-176.46.158.255
Signature Algorithm: sha256WithRSAEncryption
44:39:d3:25:34:ae:a0:ce:8d:41:13:39:7d:d6:08:ca:e1:bb:
f1:f0:69:29:f6:1d:64:23:49:79:b1:df:92:56:83:5a:70:f3:
48:03:cb:8c:68:7c:eb:96:a6:61:17:e3:fa:75:4f:9c:af:27:
f2:49:84:5a:cb:21:f1:d6:ee:5f:c5:06:c3:2d:66:6a:9a:eb:
65:a8:d1:cf:1f:e8:d5:2a:8d:d1:d3:b3:17:83:42:e1:ee:12:
09:20:11:5d:08:68:4a:1c:a4:b3:f0:47:d4:68:dc:27:04:ed:
b7:85:fa:65:b3:cb:7f:a7:ed:45:12:3f:68:70:3c:ce:91:ea:
45:63:18:e9:65:1d:a6:5f:a8:cc:3f:0d:7d:7d:65:21:cd:63:
9e:39:df:2f:37:a7:78:dc:45:61:71:0c:f9:80:d3:31:d7:9a:
bc:7a:a2:15:ff:09:07:20:fd:9f:5f:c9:45:aa:fa:6a:65:59:
3a:8b:98:8e:f5:9e:b2:95:ae:d2:f6:d8:b1:b9:c4:5a:96:eb:
b3:76:1a:7e:fe:cc:11:c7:9a:40:42:fa:a7:db:83:ec:b5:7f:
f1:59:01:6c:ed:62:e3:1d:48:32:71:69:29:1b:5e:a1:40:84:
95:b8:f8:c8:40:5d:10:ff:01:68:8a:da:18:ba:8d:18:bb:f8:
f0:14:f9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:11 2025 by rpki-client