Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/jGHUQn33uaRrcHMVrRfgWYGOEHQ.roa
File: jGHUQn33uaRrcHMVrRfgWYGOEHQ.roa (raw, json)
Hash identifier: cEp2L1bG14ytr/sdIya9wqa7mT1EU2XTN2tZvCMioFY=
Subject key identifier: 8C:61:D4:42:7D:F7:B9:A4:6B:70:73:15:AD:17:E0:59:81:8E:10:74
Certificate issuer: /CN=e74ee1868f96dd37a6b81cb1f6d28d6c2f7e746f
Certificate serial: 018572B40B1A1243FEF1C380F1470B956815
Authority key identifier: E7:4E:E1:86:8F:96:DD:37:A6:B8:1C:B1:F6:D2:8D:6C:2F:7E:74:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/507hho-W3TemuByx9tKNbC9-dG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/jGHUQn33uaRrcHMVrRfgWYGOEHQ.roa
Signing time: Mon 02 Jan 2023 13:38:00 +0000
ROA not before: Mon 02 Jan 2023 13:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31463
IP address blocks: 185.167.231.0/24 maxlen: 24
185.167.230.0/24 maxlen: 24
185.167.229.0/24 maxlen: 24
185.167.228.0/22 maxlen: 24
185.167.228.0/24 maxlen: 24
109.74.21.0/24 maxlen: 24
109.74.20.0/22 maxlen: 22
109.74.22.0/24 maxlen: 24
185.160.165.0/24 maxlen: 24
185.160.164.0/24 maxlen: 24
185.160.164.0/22 maxlen: 22
185.160.167.0/24 maxlen: 24
45.140.139.0/24 maxlen: 24
45.140.137.0/24 maxlen: 24
45.140.136.0/24 maxlen: 24
45.140.136.0/22 maxlen: 22
45.140.138.0/24 maxlen: 24
94.228.36.0/24 maxlen: 24
94.228.35.0/24 maxlen: 24
94.228.38.0/24 maxlen: 24
94.228.37.0/24 maxlen: 24
94.228.32.0/20 maxlen: 24
94.228.32.0/24 maxlen: 24
94.228.34.0/24 maxlen: 24
94.228.33.0/24 maxlen: 24
94.228.39.0/24 maxlen: 24
94.228.41.0/24 maxlen: 24
94.228.40.0/24 maxlen: 24
94.228.43.0/24 maxlen: 24
94.228.42.0/24 maxlen: 24
94.228.44.0/24 maxlen: 24
94.228.46.0/24 maxlen: 24
94.228.45.0/24 maxlen: 24
94.228.47.0/24 maxlen: 24
185.4.130.0/24 maxlen: 24
185.4.129.0/24 maxlen: 24
185.4.131.0/24 maxlen: 24
185.4.128.0/22 maxlen: 24
185.4.128.0/24 maxlen: 24
79.99.64.0/21 maxlen: 24
79.99.64.0/24 maxlen: 24
79.99.69.0/24 maxlen: 24
79.99.71.0/24 maxlen: 24
79.99.70.0/24 maxlen: 24
79.99.66.0/24 maxlen: 24
79.99.65.0/24 maxlen: 24
79.99.68.0/24 maxlen: 24
79.99.67.0/24 maxlen: 24
178.17.35.0/24 maxlen: 24
178.17.37.0/24 maxlen: 24
178.17.36.0/24 maxlen: 24
178.17.32.0/24 maxlen: 24
178.17.34.0/24 maxlen: 24
178.17.33.0/24 maxlen: 24
178.17.32.0/20 maxlen: 24
178.17.38.0/24 maxlen: 24
178.17.42.0/24 maxlen: 24
178.17.44.0/24 maxlen: 24
178.17.43.0/24 maxlen: 24
178.17.39.0/24 maxlen: 24
178.17.41.0/24 maxlen: 24
178.17.40.0/24 maxlen: 24
178.17.46.0/24 maxlen: 24
178.17.45.0/24 maxlen: 24
178.17.47.0/24 maxlen: 24
46.245.249.0/24 maxlen: 24
46.245.248.0/24 maxlen: 24
46.245.248.0/21 maxlen: 24
46.245.251.0/24 maxlen: 24
46.245.250.0/24 maxlen: 24
46.245.253.0/24 maxlen: 24
46.245.252.0/24 maxlen: 24
46.245.255.0/24 maxlen: 24
46.245.254.0/24 maxlen: 24
178.251.34.0/24 maxlen: 24
178.251.32.0/21 maxlen: 21
185.34.209.0/24 maxlen: 24
185.34.208.0/22 maxlen: 22
37.209.213.0/24 maxlen: 24
37.209.212.0/24 maxlen: 24
37.209.209.0/24 maxlen: 24
37.209.208.0/24 maxlen: 24
37.209.208.0/20 maxlen: 24
37.209.211.0/24 maxlen: 24
37.209.210.0/24 maxlen: 24
37.209.219.0/24 maxlen: 24
37.209.216.0/24 maxlen: 24
37.209.215.0/24 maxlen: 24
37.209.218.0/24 maxlen: 24
37.209.217.0/24 maxlen: 24
37.209.214.0/24 maxlen: 24
37.209.223.0/24 maxlen: 24
37.209.222.0/24 maxlen: 24
37.209.220.0/24 maxlen: 24
37.209.221.0/24 maxlen: 24
2a00:1c18::/32 maxlen: 48
2a00:1c18::/29 maxlen: 48
2a0d:4140::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:0b:1a:12:43:fe:f1:c3:80:f1:47:0b:95:68:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74ee1868f96dd37a6b81cb1f6d28d6c2f7e746f
Validity
Not Before: Jan 2 13:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c61d4427df7b9a46b707315ad17e059818e1074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:3f:f7:aa:9f:82:1f:20:7d:d5:ac:1c:e9:
0a:f9:77:1d:97:6e:b2:11:5f:30:e8:ff:62:f3:d2:
9d:0c:aa:cf:a3:ac:5c:f2:13:49:0a:aa:69:ab:43:
f4:d6:23:2e:85:67:8b:f4:db:a5:26:ca:10:74:19:
74:63:56:8a:97:91:3c:af:b3:32:7b:ad:13:cf:f9:
06:af:b2:c5:95:1a:e0:c4:fb:14:3f:1d:0f:2e:d9:
d1:c1:ea:3a:07:67:59:87:32:4e:1f:e9:23:00:35:
2a:7a:8b:d0:f2:b4:2a:c9:9c:1a:2c:82:50:ac:1e:
74:6b:c4:02:1f:ea:a6:0d:f3:23:54:d8:18:5e:72:
61:5a:32:cf:7a:d9:b2:86:67:35:07:fe:cb:59:42:
be:ae:1d:26:25:0d:56:3e:b8:07:9d:15:3c:a4:72:
24:2f:1d:75:6d:cc:f1:0f:7d:74:0f:5a:0e:58:19:
d7:98:85:b6:7e:1e:7d:7c:4e:07:dc:42:b7:bb:f0:
fb:f9:7d:f0:79:12:4c:b7:df:1e:7f:2f:e4:98:b8:
75:b0:b2:03:93:0e:b5:02:ac:5c:38:1e:db:6d:e0:
dc:63:f9:12:af:fb:53:66:f8:f7:28:25:7f:c5:4b:
b0:1e:24:f8:e2:13:7f:2e:1f:22:86:d3:d6:1e:3f:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:61:D4:42:7D:F7:B9:A4:6B:70:73:15:AD:17:E0:59:81:8E:10:74
X509v3 Authority Key Identifier:
keyid:E7:4E:E1:86:8F:96:DD:37:A6:B8:1C:B1:F6:D2:8D:6C:2F:7E:74:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/507hho-W3TemuByx9tKNbC9-dG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/jGHUQn33uaRrcHMVrRfgWYGOEHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/365c3f-415e-4cd5-9a4b-66d3a89152ac/1/507hho-W3TemuByx9tKNbC9-dG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.208.0/20
45.140.136.0/22
46.245.248.0/21
79.99.64.0/21
94.228.32.0/20
109.74.20.0/22
178.17.32.0/20
178.251.32.0/21
185.4.128.0/22
185.34.208.0/22
185.160.164.0/22
185.167.228.0/22
IPv6:
2a00:1c18::/29
2a0d:4140::/32
Signature Algorithm: sha256WithRSAEncryption
80:46:88:ae:6c:99:43:73:c2:f4:64:e6:e2:56:2e:b6:96:4f:
bd:7f:f9:49:61:2e:cd:cb:de:fd:ab:0f:ae:7d:b5:49:57:a8:
d3:5d:4f:84:22:52:8b:28:68:77:e1:68:99:45:1a:21:ec:21:
2b:62:1a:76:70:bc:0a:3e:ff:4d:72:ac:ae:ed:be:6f:f0:3b:
0e:89:05:cd:b1:f7:32:f2:ea:37:c4:d0:81:67:a8:b7:d1:4e:
d3:b4:64:ad:db:dd:09:92:73:5a:ba:e7:52:49:d7:f1:02:6b:
14:43:07:b7:cd:62:d1:74:ec:51:80:83:85:a2:20:3b:f6:e2:
36:22:ad:ae:1f:2d:e0:5d:1f:85:2a:67:b7:4b:7e:ad:63:9e:
f6:eb:bc:2d:02:ec:da:ce:cd:59:b0:fc:cd:fd:bd:8e:ec:4e:
c0:ed:a4:02:e3:b1:c8:51:56:48:fc:e4:db:2d:6a:e3:41:92:
df:45:ef:85:21:b4:f4:e0:84:2a:01:aa:d9:d1:3f:7f:02:fe:
df:31:c8:22:79:8d:d9:8c:66:12:29:b4:f1:f8:b7:8c:6b:f0:
02:59:a9:4f:2f:0e:67:29:bc:5b:b3:99:25:a7:b8:03:1b:de:
c1:aa:18:9d:d7:d6:a9:4b:93:2b:68:6c:12:81:de:e6:f4:ce:
e4:a6:73:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:19 2024 by rpki-client on console-ams.rpki-client.org