Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/90606e-9316-4ea3-bc74-a35c27d95186/1/pRGXYsGXIW6vM2ILz2wEbUa9PdI.roa
File: pRGXYsGXIW6vM2ILz2wEbUa9PdI.roa (raw, json)
Hash identifier: eJ7V30P97QMkqT7LEo6O18TpVa9rKtDTOhgkPFWMaY4=
Subject key identifier: A5:11:97:62:C1:97:21:6E:AF:33:62:0B:CF:6C:04:6D:46:BD:3D:D2
Certificate issuer: /CN=46935081c77a8745e7b62b93b82da2962379b2e2
Certificate serial: 018570D52B1D2CED7B2413D8BAC93F850946
Authority key identifier: 46:93:50:81:C7:7A:87:45:E7:B6:2B:93:B8:2D:A2:96:23:79:B2:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RpNQgcd6h0XntiuTuC2iliN5suI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/90606e-9316-4ea3-bc74-a35c27d95186/1/pRGXYsGXIW6vM2ILz2wEbUa9PdI.roa
Signing time: Mon 02 Jan 2023 04:54:56 +0000
ROA not before: Mon 02 Jan 2023 04:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33983
IP address blocks: 37.35.64.0/21 maxlen: 21
37.35.64.0/24 maxlen: 24
37.35.70.0/24 maxlen: 24
37.35.69.0/24 maxlen: 24
37.35.68.0/24 maxlen: 24
37.35.67.0/24 maxlen: 24
37.35.71.0/24 maxlen: 24
37.35.66.0/24 maxlen: 24
37.35.65.0/24 maxlen: 24
84.22.32.0/24 maxlen: 24
84.22.36.0/24 maxlen: 24
84.22.35.0/24 maxlen: 24
84.22.34.0/24 maxlen: 24
84.22.32.0/19 maxlen: 19
84.22.33.0/24 maxlen: 24
84.22.38.0/24 maxlen: 24
84.22.37.0/24 maxlen: 24
84.22.44.0/24 maxlen: 24
84.22.39.0/24 maxlen: 24
84.22.43.0/24 maxlen: 24
84.22.42.0/24 maxlen: 24
84.22.41.0/24 maxlen: 24
84.22.40.0/24 maxlen: 24
84.22.46.0/24 maxlen: 24
84.22.45.0/24 maxlen: 24
84.22.50.0/24 maxlen: 24
84.22.49.0/24 maxlen: 24
84.22.48.0/24 maxlen: 24
84.22.47.0/24 maxlen: 24
84.22.51.0/24 maxlen: 24
84.22.53.0/24 maxlen: 24
84.22.58.0/24 maxlen: 24
185.173.206.0/24 maxlen: 24
84.22.54.0/24 maxlen: 24
84.22.57.0/24 maxlen: 24
84.22.52.0/24 maxlen: 24
185.173.205.0/24 maxlen: 24
185.173.204.0/24 maxlen: 24
84.22.56.0/24 maxlen: 24
84.22.55.0/24 maxlen: 24
185.173.204.0/22 maxlen: 22
84.22.60.0/24 maxlen: 24
185.173.207.0/24 maxlen: 24
84.22.59.0/24 maxlen: 24
84.22.63.0/24 maxlen: 24
84.22.62.0/24 maxlen: 24
84.22.61.0/24 maxlen: 24
2a0b:6300::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:2b:1d:2c:ed:7b:24:13:d8:ba:c9:3f:85:09:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46935081c77a8745e7b62b93b82da2962379b2e2
Validity
Not Before: Jan 2 04:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5119762c197216eaf33620bcf6c046d46bd3dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:01:29:37:5e:5a:a9:15:42:69:1c:ba:a5:ce:
11:82:ea:4b:a6:ff:db:8f:f4:b4:9a:8f:15:9f:d7:
97:49:13:a1:87:d1:c8:33:92:af:f7:0f:b2:f5:16:
cf:a1:53:f9:67:c8:2e:bf:80:3d:ce:2c:fc:dd:73:
6f:67:c7:99:78:00:0b:49:f0:96:e4:de:e3:47:82:
4f:23:33:40:72:29:49:f8:70:5c:15:c1:8b:ec:9f:
c2:e5:b3:b8:d2:16:08:6d:76:e0:fb:22:e9:61:08:
23:ed:2b:65:51:2c:9a:f3:3a:85:38:e5:9a:57:ae:
62:85:de:15:e1:b0:a3:93:b7:87:ad:28:7d:dd:bb:
ac:f2:eb:b9:a9:6b:a4:f5:b0:b5:d0:69:a3:d0:33:
94:4b:5d:38:88:ac:e5:db:40:84:5b:1c:4a:9f:d4:
a0:05:ca:dd:26:1f:ef:f6:7b:5c:b9:fa:c1:83:2d:
37:26:84:1a:bf:43:c8:1e:84:2c:71:95:53:d5:2c:
19:35:f3:9b:4f:7c:ca:8c:5c:4f:f6:5b:6f:51:bc:
82:8f:2d:85:64:e5:5b:48:18:32:de:73:8c:1e:7f:
c7:57:71:a5:ce:6f:df:53:d1:17:85:ca:cc:77:82:
ee:be:9b:37:1d:e1:d4:ff:ae:dc:f7:71:37:4b:81:
cf:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:11:97:62:C1:97:21:6E:AF:33:62:0B:CF:6C:04:6D:46:BD:3D:D2
X509v3 Authority Key Identifier:
keyid:46:93:50:81:C7:7A:87:45:E7:B6:2B:93:B8:2D:A2:96:23:79:B2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RpNQgcd6h0XntiuTuC2iliN5suI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/90606e-9316-4ea3-bc74-a35c27d95186/1/pRGXYsGXIW6vM2ILz2wEbUa9PdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/90606e-9316-4ea3-bc74-a35c27d95186/1/RpNQgcd6h0XntiuTuC2iliN5suI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.64.0/21
84.22.32.0/19
185.173.204.0/22
IPv6:
2a0b:6300::/29
Signature Algorithm: sha256WithRSAEncryption
62:88:1e:fa:d2:d7:65:1e:7e:76:7f:86:a7:ba:a4:53:84:16:
68:77:a6:58:65:da:2e:10:83:f0:6f:08:49:98:f4:a1:5e:9b:
6d:5c:78:22:3e:17:22:dc:13:8d:b9:02:2f:85:16:6c:9a:10:
12:85:c0:dc:04:90:f9:08:50:27:bc:e9:7e:0a:3c:e6:a6:35:
da:ad:86:15:3d:ca:74:f4:81:a3:40:e2:9e:62:86:23:2c:ca:
13:91:79:1b:99:3b:27:6b:c2:a9:94:a2:2c:42:57:4e:0b:26:
f5:29:b0:c7:7f:bb:20:33:5b:5c:54:86:45:81:95:2d:ee:15:
2d:10:1f:06:20:2c:20:81:23:1e:a1:ee:d7:20:fa:2a:7c:fd:
39:03:2e:b0:9c:c2:19:e3:73:ae:e6:88:51:3b:dc:1c:78:db:
1a:9f:39:2e:64:3c:53:c5:13:23:fc:56:20:06:4c:9e:b2:0b:
8b:47:4b:77:62:50:bb:d5:14:a4:29:68:e4:a6:c7:7b:86:b2:
28:82:b4:60:4a:b2:e8:95:1a:37:24:28:d9:53:43:c2:a5:90:
72:c6:96:8a:ad:19:50:4b:04:90:95:a5:b2:80:b3:06:08:f4:
fb:fa:f4:9e:99:88:60:60:04:51:c3:ab:d7:1a:c5:bd:e1:b0:
0c:87:36:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:23 2024 by rpki-client on console-fra.rpki-client.org