Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/KIcYnecu5crTdqP06-pWGaLDAHo.roa
File: KIcYnecu5crTdqP06-pWGaLDAHo.roa (raw, json)
Hash identifier: KC0s85plsfebSj8cj5VtzzPpEcTwVjEIDq8tnyCPTSc=
Subject key identifier: 28:87:18:9D:E7:2E:E5:CA:D3:76:A3:F4:EB:EA:56:19:A2:C3:00:7A
Certificate issuer: /CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Certificate serial: 018C0FF71AFD876DE08691B25221015171C1
Authority key identifier: A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/KIcYnecu5crTdqP06-pWGaLDAHo.roa
Signing time: Mon 27 Nov 2023 08:48:21 +0000
ROA not before: Mon 27 Nov 2023 08:48:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20773
IP address blocks: 92.204.162.0/24 maxlen: 24
92.204.186.0/24 maxlen: 24
92.204.194.0/23 maxlen: 23
85.195.76.0/24 maxlen: 24
85.195.75.0/24 maxlen: 24
85.195.85.0/24 maxlen: 24
85.195.83.0/24 maxlen: 24
85.195.89.0/24 maxlen: 24
85.195.91.0/24 maxlen: 24
85.195.90.0/24 maxlen: 24
85.195.86.0/24 maxlen: 24
85.195.88.0/24 maxlen: 24
185.19.218.0/24 maxlen: 24
185.19.217.0/24 maxlen: 24
185.19.219.0/24 maxlen: 24
185.19.216.0/24 maxlen: 24
37.61.212.0/24 maxlen: 24
37.61.214.0/24 maxlen: 24
37.61.215.0/24 maxlen: 24
37.61.223.0/24 maxlen: 24
37.61.221.0/24 maxlen: 24
146.0.226.0/24 maxlen: 24
146.0.232.0/24 maxlen: 24
146.0.228.0/24 maxlen: 24
146.0.227.0/24 maxlen: 24
146.0.230.0/24 maxlen: 24
146.0.235.0/24 maxlen: 24
146.0.234.0/24 maxlen: 24
146.0.237.0/24 maxlen: 24
146.0.236.0/24 maxlen: 24
146.0.245.0/24 maxlen: 24
146.0.249.0/24 maxlen: 24
146.0.251.0/24 maxlen: 24
146.0.250.0/24 maxlen: 24
146.0.247.0/24 maxlen: 24
146.0.255.0/24 maxlen: 24
85.195.96.0/24 maxlen: 24
85.195.98.0/24 maxlen: 24
85.195.93.0/24 maxlen: 24
85.195.92.0/24 maxlen: 24
85.195.95.0/24 maxlen: 24
85.195.103.0/24 maxlen: 24
85.195.100.0/24 maxlen: 24
85.195.99.0/24 maxlen: 24
85.195.102.0/24 maxlen: 24
85.195.107.0/24 maxlen: 24
85.195.109.0/24 maxlen: 24
85.195.110.0/24 maxlen: 24
85.195.114.0/24 maxlen: 24
85.195.116.0/24 maxlen: 24
85.195.115.0/24 maxlen: 24
85.195.120.0/24 maxlen: 24
85.195.119.0/24 maxlen: 24
85.195.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0f:f7:1a:fd:87:6d:e0:86:91:b2:52:21:01:51:71:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Validity
Not Before: Nov 27 08:48:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2887189de72ee5cad376a3f4ebea5619a2c3007a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:44:61:7e:cf:4f:b9:08:80:03:f3:35:32:
95:f0:db:09:90:1e:70:e4:96:b8:f3:18:0d:a6:30:
4a:2b:ca:45:c4:1c:d1:58:ab:08:8a:0d:90:dc:4d:
3b:4d:db:95:8f:4d:98:08:d2:c4:94:13:5e:19:ad:
6c:d8:99:e1:b1:2d:a1:3c:57:aa:72:9d:d2:52:7d:
98:ac:af:ff:af:bf:1b:00:fb:e8:aa:23:b4:47:77:
cd:a6:bf:86:ab:a2:d1:af:b2:15:57:01:1a:a9:b4:
f5:49:af:8e:b0:eb:c0:7c:bb:9d:f0:e8:a6:39:76:
0b:ae:01:cb:34:7b:14:df:e8:d0:e7:fc:2f:8c:91:
6b:a5:c4:ca:ee:65:ef:5e:1b:a4:03:d5:f2:9b:8a:
9c:5b:ff:76:33:b4:2f:c6:73:26:59:0f:b9:a2:a6:
e4:9d:42:2c:81:8b:8b:78:32:cc:8b:ae:47:08:d4:
d7:00:41:0c:a0:a1:77:ad:ac:bb:90:d8:c5:f8:7d:
11:a4:d7:d5:b6:cb:7d:a3:c9:a2:a3:fc:41:e6:6c:
b1:94:c4:53:7b:21:17:80:55:79:2b:8d:4b:7c:6e:
01:70:cb:5c:29:aa:6f:53:bb:e7:f5:e7:66:23:7f:
e9:bd:67:a7:a3:1e:c2:59:d1:ca:7a:89:7a:88:c3:
87:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:87:18:9D:E7:2E:E5:CA:D3:76:A3:F4:EB:EA:56:19:A2:C3:00:7A
X509v3 Authority Key Identifier:
keyid:A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/KIcYnecu5crTdqP06-pWGaLDAHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.212.0/24
37.61.214.0/23
37.61.221.0/24
37.61.223.0/24
85.195.75.0-85.195.76.255
85.195.83.0/24
85.195.85.0-85.195.86.255
85.195.88.0-85.195.93.255
85.195.95.0-85.195.96.255
85.195.98.0-85.195.100.255
85.195.102.0/23
85.195.107.0/24
85.195.109.0-85.195.110.255
85.195.114.0-85.195.116.255
85.195.119.0-85.195.120.255
85.195.127.0/24
92.204.162.0/24
92.204.186.0/24
92.204.194.0/23
146.0.226.0-146.0.228.255
146.0.230.0/24
146.0.232.0/24
146.0.234.0-146.0.237.255
146.0.245.0/24
146.0.247.0/24
146.0.249.0-146.0.251.255
146.0.255.0/24
185.19.216.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:f4:36:dc:27:79:3f:8b:45:31:1e:7a:3b:f8:67:89:86:4c:
57:b0:c5:c3:a7:cd:9d:6e:8b:2d:ba:82:33:0c:e5:c4:9e:76:
b4:be:54:68:a8:f1:9c:0a:db:b8:98:49:cc:41:07:ca:91:1f:
44:e0:c1:9b:50:aa:a5:77:63:84:e0:65:86:da:d4:7d:79:ef:
1b:ca:5a:39:58:89:d8:97:9d:c6:23:5b:77:ea:74:78:e3:97:
69:98:03:ce:9e:07:b9:c9:10:d8:a7:de:ec:af:9c:76:ae:b2:
ce:ca:1a:88:35:cd:cd:90:f3:44:cc:36:41:04:39:d8:1c:cc:
68:51:15:f0:bd:9c:21:1a:df:64:15:46:91:3a:92:b9:cc:69:
8f:1d:c0:7e:27:01:90:c4:ac:c6:52:77:ff:19:df:0d:a9:dc:
d0:6b:db:b4:36:3d:b1:14:75:41:d3:aa:52:3c:b8:80:a2:09:
85:01:55:b0:88:18:ea:69:6f:12:5d:d6:95:6c:f1:17:69:ee:
1b:da:eb:d4:aa:da:9d:69:28:d5:df:e9:f0:4a:f5:c2:77:56:
3a:d8:2b:88:18:64:01:ed:23:ac:d2:65:3d:63:a4:04:44:b3:
9d:b5:e6:3d:e5:3a:d7:93:45:06:a6:55:4d:fc:86:5f:9c:98:
9a:66:e5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:16 2024 by rpki-client on console-ams.rpki-client.org