Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/OwU0-I1n7Cw2p8RhiCNeJSW3A6U.roa
File: OwU0-I1n7Cw2p8RhiCNeJSW3A6U.roa (raw, json)
Hash identifier: LQRQtmCzQ8Zeyy5J1QmqhLhwRN7HZL27tFGRPdbBqbQ=
Subject key identifier: 3B:05:34:F8:8D:67:EC:2C:36:A7:C4:61:88:23:5E:25:25:B7:03:A5
Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Certificate serial: 01857271182A930F327B037AF506B0BABF7E
Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/OwU0-I1n7Cw2p8RhiCNeJSW3A6U.roa
Signing time: Mon 02 Jan 2023 12:24:52 +0000
ROA not before: Mon 02 Jan 2023 12:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34358
IP address blocks: 37.251.255.0/24 maxlen: 24
89.36.130.0/24 maxlen: 24
89.36.132.0/23 maxlen: 24
89.36.129.0/24 maxlen: 24
89.36.128.0/23 maxlen: 23
89.36.128.0/24 maxlen: 24
89.36.134.0/24 maxlen: 24
89.36.135.0/24 maxlen: 24
93.115.112.0/21 maxlen: 21
37.251.248.0/21 maxlen: 21
46.102.144.0/22 maxlen: 22
89.42.11.0/24 maxlen: 24
193.242.120.0/24 maxlen: 24
188.215.48.0/21 maxlen: 21
89.38.248.0/24 maxlen: 24
89.38.250.0/23 maxlen: 23
89.38.249.0/24 maxlen: 24
89.38.252.0/22 maxlen: 22
89.45.192.0/21 maxlen: 21
89.45.192.0/23 maxlen: 23
193.239.130.0/23 maxlen: 23
91.200.120.0/22 maxlen: 22
91.200.120.0/23 maxlen: 23
91.200.122.0/23 maxlen: 23
89.32.44.0/24 maxlen: 24
89.32.44.0/22 maxlen: 22
89.45.168.0/21 maxlen: 21
37.251.160.0/20 maxlen: 20
109.95.8.0/21 maxlen: 21
94.24.76.0/23 maxlen: 23
94.24.78.0/24 maxlen: 24
94.24.72.0/22 maxlen: 22
94.24.29.0/24 maxlen: 24
37.251.128.0/19 maxlen: 19
94.24.48.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:18:2a:93:0f:32:7b:03:7a:f5:06:b0:ba:bf:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Validity
Not Before: Jan 2 12:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b0534f88d67ec2c36a7c46188235e2525b703a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1a:42:f5:13:9f:43:38:f4:3a:6c:d5:a8:24:
c4:cb:37:c0:ca:bf:0d:d8:b8:5a:ea:d6:44:28:97:
8a:3b:e6:9d:39:4c:cf:a8:cb:cf:b0:32:36:00:b7:
35:65:69:7a:80:43:16:a0:05:52:b4:fb:07:e1:56:
ae:f6:43:1e:90:27:1f:95:80:b8:e0:4e:9b:9d:7c:
35:a7:8e:c6:9d:08:ae:27:bd:c2:52:ca:46:cf:2b:
2f:74:87:22:ec:96:dc:46:54:38:91:fb:9f:76:a9:
bd:79:20:d0:6b:8c:bb:56:c6:f1:69:2a:54:d6:2a:
11:f3:18:b9:d8:a8:28:61:b4:8c:80:1c:f3:36:38:
41:15:5b:3a:05:48:56:0e:2f:12:c6:55:29:e7:c8:
fe:c6:54:c4:5f:35:81:99:5d:c9:96:12:b0:9b:42:
cf:46:b3:84:3c:61:5c:4e:f7:87:b1:21:97:35:82:
dd:20:8d:ce:2c:9e:4f:48:a9:1a:29:bc:39:3e:00:
00:e5:ef:39:cf:75:6e:ec:9e:4b:45:d7:c9:9e:50:
0d:09:06:a3:13:75:1e:c8:28:d6:bc:b1:dd:95:05:
ca:8c:f6:5f:f4:d8:2b:f0:fd:10:a7:d0:81:15:3a:
a7:69:ee:e7:2f:87:30:48:2a:9c:bf:32:06:c6:6f:
e3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:05:34:F8:8D:67:EC:2C:36:A7:C4:61:88:23:5E:25:25:B7:03:A5
X509v3 Authority Key Identifier:
keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/OwU0-I1n7Cw2p8RhiCNeJSW3A6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.128.0-37.251.175.255
37.251.248.0/21
46.102.144.0/22
89.32.44.0/22
89.36.128.0-89.36.130.255
89.36.132.0/22
89.38.248.0/21
89.42.11.0/24
89.45.168.0/21
89.45.192.0/21
91.200.120.0/22
93.115.112.0/21
94.24.29.0/24
94.24.48.0/21
94.24.72.0-94.24.78.255
109.95.8.0/21
188.215.48.0/21
193.239.130.0/23
193.242.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e2:91:d5:8e:35:07:9f:6f:2a:84:12:ec:41:80:37:6d:34:
d9:6e:db:24:5c:11:94:05:d6:17:56:df:2d:d5:af:35:18:a1:
57:6d:d8:bc:4b:08:8e:73:54:45:15:91:7d:03:5d:31:cc:47:
41:69:3b:99:fd:8a:64:78:44:ae:64:f3:07:ab:67:d3:88:1e:
3f:5c:5d:16:f0:3d:31:50:15:81:9a:06:d2:4d:00:a0:a2:e0:
c1:80:ba:1c:9a:b3:58:67:3c:e4:ff:6f:ae:33:59:d0:49:76:
37:1b:3a:f8:71:5e:88:a8:bd:9e:41:6e:a4:c9:de:be:97:47:
9d:25:ce:f3:ac:45:e0:0f:99:b8:9b:d7:39:e4:ab:1f:6c:70:
a7:98:d2:69:32:d4:e3:22:f3:33:eb:0b:86:0c:53:58:02:99:
82:b2:f6:72:0b:03:14:9f:79:31:58:e7:bc:69:da:11:ac:9a:
26:56:00:5d:14:66:14:79:f4:25:58:13:7a:4a:d4:48:d5:1b:
66:a8:c9:e1:b9:df:ce:79:83:39:bc:ff:5e:47:06:bf:3c:3c:
d6:8d:c0:3a:70:aa:b3:62:5e:19:27:69:b2:9e:a0:68:a8:0a:
ef:f6:d2:e4:a6:fd:6b:ab:21:68:9b:05:ac:b5:6a:e4:ea:90:
cf:ac:79:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org