Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/evEjwpKi8HMvT4-JGRDFiHKrCM4.roa
File: evEjwpKi8HMvT4-JGRDFiHKrCM4.roa (raw, json)
Hash identifier: MZZ+r5Z+SX+i1jt14z0qvdCjjecTtaUTefMnBWrtGsg=
Subject key identifier: 7A:F1:23:C2:92:A2:F0:73:2F:4F:8F:89:19:10:C5:88:72:AB:08:CE
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018CDFDCF23697C5BD25CBB74D03D5C64549
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/evEjwpKi8HMvT4-JGRDFiHKrCM4.roa
Signing time: Sat 06 Jan 2024 17:40:48 +0000
ROA not before: Sat 06 Jan 2024 17:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49666
IP address blocks: 2.188.0.0/24 maxlen: 24
2.188.1.0/24 maxlen: 24
2.188.0.0/16 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.22.0/24 maxlen: 24
2.188.23.0/24 maxlen: 24
2.188.30.0/24 maxlen: 24
2.188.28.0/24 maxlen: 24
78.39.155.0/24 maxlen: 24
78.39.156.0/24 maxlen: 24
78.39.153.0/24 maxlen: 25
217.218.67.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.76.0/24 maxlen: 24
85.185.0.0/16 maxlen: 24
2.185.0.0/16 maxlen: 16
78.38.246.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.243.0/24 maxlen: 24
78.38.250.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.248.0/24 maxlen: 24
78.38.251.0/24 maxlen: 24
78.38.254.0/24 maxlen: 24
78.39.0.0/16 maxlen: 24
2.177.0.0/16 maxlen: 16
80.191.0.0/16 maxlen: 24
217.218.0.0/16 maxlen: 24
78.39.40.0/24 maxlen: 24
78.39.43.0/24 maxlen: 24
78.39.50.0/24 maxlen: 24
78.39.46.0/24 maxlen: 24
78.39.49.0/24 maxlen: 24
78.39.48.0/24 maxlen: 24
78.39.47.0/24 maxlen: 24
78.39.51.0/24 maxlen: 24
78.39.54.0/24 maxlen: 24
78.39.58.0/24 maxlen: 24
78.39.53.0/24 maxlen: 24
78.39.57.0/24 maxlen: 24
78.39.56.0/24 maxlen: 24
78.39.55.0/24 maxlen: 24
78.39.62.0/23 maxlen: 24
78.39.59.0/24 maxlen: 24
2.176.0.0/17 maxlen: 17
78.38.0.0/16 maxlen: 24
2.176.128.0/17 maxlen: 17
195.146.63.0/24 maxlen: 24
2.189.3.0/24 maxlen: 24
2.189.1.0/24 maxlen: 24
2.189.0.0/16 maxlen: 24
2.188.179.0/24 maxlen: 24
2.188.186.0/24 maxlen: 24
2.188.181.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.184.0/24 maxlen: 24
217.219.0.0/16 maxlen: 24
2.188.187.0/24 maxlen: 24
2.182.0.0/16 maxlen: 24
2.189.72.0/24 maxlen: 24
2.189.44.0/24 maxlen: 24
2.189.42.0/24 maxlen: 24
2.189.63.0/24 maxlen: 24
2.189.59.0/24 maxlen: 24
2001:4188:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 28 Apr 2024 22:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:df:dc:f2:36:97:c5:bd:25:cb:b7:4d:03:d5:c6:45:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 6 17:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7af123c292a2f0732f4f8f891910c58872ab08ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ef:84:2c:35:67:a6:58:c8:84:86:37:c3:d1:
76:9e:38:fe:c5:a1:39:41:35:16:a9:67:9f:fb:88:
ff:7b:e2:e2:df:dc:ef:1e:77:6f:14:e4:76:0c:e7:
f1:ee:72:b5:34:52:cf:b2:f6:ec:60:7c:76:44:60:
ae:07:cb:d3:38:99:2c:22:ef:34:ff:c6:e5:21:cd:
37:fb:be:bc:1d:62:8f:d8:02:36:e8:1c:1d:9b:96:
de:a3:ef:a8:4b:9d:d9:3d:24:7e:94:5e:b5:2f:6f:
cc:27:56:1f:d9:b5:49:e6:b9:0b:c1:d0:61:8c:ac:
46:49:0d:18:cc:ca:a5:be:26:f7:30:f8:a1:82:76:
2e:0e:9c:8c:c5:95:d3:13:2a:dd:99:0f:73:db:5d:
d5:57:0a:88:5f:1f:17:02:a1:e8:d2:63:b4:41:6e:
b6:95:68:3d:ae:a9:24:6d:58:d8:52:88:be:84:b5:
05:29:0c:96:ef:e4:fd:d7:be:1e:1c:d1:cb:12:99:
cf:96:a1:3a:1b:71:09:65:72:7f:70:6e:60:df:4e:
0b:b4:ad:6a:71:b6:95:ad:2e:f3:9c:e7:db:96:bf:
ea:bc:54:e3:1b:60:47:39:d7:b6:91:7a:03:01:dc:
fc:93:20:ee:3b:9c:24:a7:8d:4c:7f:8f:6d:40:e7:
6b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F1:23:C2:92:A2:F0:73:2F:4F:8F:89:19:10:C5:88:72:AB:08:CE
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/evEjwpKi8HMvT4-JGRDFiHKrCM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/15
2.182.0.0/16
2.185.0.0/16
2.188.0.0/15
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.63.0/24
217.218.0.0/15
IPv6:
2001:4188:2::/48
Signature Algorithm: sha256WithRSAEncryption
81:c1:bf:1a:0b:fa:ca:56:5e:f2:e3:56:75:2f:38:9c:92:e5:
98:b4:35:f0:ee:46:b8:0f:5f:22:27:55:62:27:43:85:a4:66:
ec:9b:2a:0c:62:32:72:6b:ca:9c:85:3f:71:42:1f:91:ca:67:
e0:61:75:af:79:44:c8:fa:b9:1a:fb:6d:62:08:49:70:5a:95:
6b:d4:1d:32:1b:7e:cd:97:4c:a3:74:71:8c:83:c3:9b:e6:64:
ee:dd:c5:ce:95:b9:5a:b8:3c:d8:a2:d3:2c:13:bf:39:8a:d4:
3b:e3:34:6e:dc:66:cd:99:77:32:6f:08:bf:4a:4c:bd:3d:ac:
c0:04:99:2e:7a:95:31:60:94:bb:77:40:f7:67:1a:5a:7e:66:
5a:bf:3d:5d:80:26:05:82:48:95:bf:68:8c:90:c6:20:f8:b0:
3c:3f:ed:c8:66:c4:b7:14:cc:43:61:28:a3:be:73:39:45:6a:
0c:c9:06:86:31:0d:24:3b:8b:62:91:36:cf:7a:3b:34:16:12:
5e:6a:a3:e1:d4:e5:35:73:30:de:e8:31:12:ff:c7:98:c8:f8:
1d:34:14:95:6a:7a:d2:4c:11:a2:cf:e6:f8:9b:dd:46:b7:7d:
38:74:76:78:f3:2f:73:0d:2a:7c:d3:80:12:4a:c1:fb:78:aa:
14:17:f6:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org