Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/0jPQz-C9cz-YZFtEpe9wxuFOsTk.roa
File: 0jPQz-C9cz-YZFtEpe9wxuFOsTk.roa (raw, json)
Hash identifier: tGyf0XZs6C7C3FlOQQLBrcuG6NfNJu214DzQokA6a0c=
Subject key identifier: D2:33:D0:CF:E0:BD:73:3F:98:64:5B:44:A5:EF:70:C6:E1:4E:B1:39
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018CF334EB8E97BCBAEF84618AA51C727B8D
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/0jPQz-C9cz-YZFtEpe9wxuFOsTk.roa
Signing time: Wed 10 Jan 2024 11:49:40 +0000
ROA not before: Wed 10 Jan 2024 11:49:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.204.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
45.132.61.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jan 2024 17:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:34:eb:8e:97:bc:ba:ef:84:61:8a:a5:1c:72:7b:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 10 11:49:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d233d0cfe0bd733f98645b44a5ef70c6e14eb139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d6:98:e5:13:1b:9b:d3:ed:16:d2:29:46:cf:
7e:8a:47:ec:63:0c:10:56:09:82:78:c5:4d:e0:bf:
be:4c:47:0a:9e:da:bb:8c:22:35:50:f6:95:66:d5:
df:5b:3b:15:4f:f0:75:1f:55:e3:ab:58:62:5b:89:
f6:77:ea:93:4f:28:f6:27:09:cb:d2:ff:ae:e9:ea:
6d:b5:6b:e9:81:69:5e:f9:3b:a5:66:30:22:b2:94:
e0:97:90:c4:a7:9c:1f:0a:4d:18:f6:97:38:14:09:
e0:8a:ea:fe:9d:59:f3:a9:30:41:2e:b7:f0:82:4e:
35:26:57:a8:46:85:01:17:e5:c3:d2:86:12:ec:08:
79:d1:fe:6c:e0:97:3b:95:da:17:fa:56:dc:95:d1:
2b:04:84:f0:bb:30:23:d9:f0:95:ea:c6:53:48:49:
f4:a5:ab:20:35:8b:ed:6d:3c:2f:b4:4b:d7:3f:09:
fc:89:67:12:d0:27:33:c0:b3:b9:c4:ff:09:21:0a:
e3:6f:c9:bb:ad:3c:f5:df:c4:8a:db:4e:87:f7:de:
32:da:bd:94:59:14:ae:dc:8e:13:ed:84:b4:b3:61:
52:44:1e:b3:2a:87:ae:3b:84:c5:2c:d9:30:12:52:
1c:d4:af:9b:d7:91:46:05:8d:cb:0b:0e:61:07:6d:
30:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:33:D0:CF:E0:BD:73:3F:98:64:5B:44:A5:EF:70:C6:E1:4E:B1:39
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/0jPQz-C9cz-YZFtEpe9wxuFOsTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
Signature Algorithm: sha256WithRSAEncryption
9e:d4:05:e7:e1:a3:63:51:84:bb:66:de:02:5d:85:ce:a5:46:
bf:e2:27:c6:33:f2:12:3e:78:ec:43:c7:af:de:b5:51:61:17:
31:98:7e:6d:2a:f0:43:aa:5a:17:eb:a8:cb:23:a4:5a:cf:8a:
37:50:bd:8a:6f:76:65:cf:20:c5:e1:4f:f2:17:cd:9d:7b:af:
91:04:f7:69:d6:5d:cb:b2:e2:d3:b4:5c:3c:1c:85:87:93:d8:
fe:c7:8c:97:da:ed:59:b6:dd:2b:5d:9d:98:04:ef:b4:ef:c1:
4e:78:90:38:f6:7a:cb:ad:8d:47:17:bb:c5:83:ee:17:57:fb:
98:4f:47:55:9d:e4:7d:a9:e6:13:e2:9c:ec:d7:f1:37:cf:20:
d2:f5:8e:c6:8f:5b:e0:7e:93:d1:2f:10:0a:fa:49:2e:91:6b:
42:73:be:b0:6f:24:8c:8d:5c:b9:70:af:20:02:ce:f1:ff:d0:
00:58:04:17:62:1c:0f:17:7e:20:cc:b6:fa:08:31:b7:27:66:
da:b9:a1:39:c0:da:a6:d0:69:b2:da:06:50:4e:6c:11:a7:d4:
aa:87:4f:9f:29:dc:a2:a8:e3:ff:1f:29:16:44:7e:8b:88:a0:
01:4f:ac:c7:fe:7d:97:b9:51:63:7d:ea:b0:e9:8b:66:bd:8a:
e5:fe:2b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org