Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/7QZjIP74VqJ7WVY6XPE86C7Dyfw.roa
File: 7QZjIP74VqJ7WVY6XPE86C7Dyfw.roa (raw, json)
Hash identifier: WSGYQmFTK3Yjnt7w3xhFlQIqBaOwPmbwZlWASjbBq2c=
Subject key identifier: ED:06:63:20:FE:F8:56:A2:7B:59:56:3A:5C:F1:3C:E8:2E:C3:C9:FC
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0190E9581EA66DB1E044E5A48E3FF579917C
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/7QZjIP74VqJ7WVY6XPE86C7Dyfw.roa
Signing time: Thu 25 Jul 2024 10:03:04 +0000
ROA not before: Thu 25 Jul 2024 10:03:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Aug 2024 08:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:58:1e:a6:6d:b1:e0:44:e5:a4:8e:3f:f5:79:91:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 25 10:03:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed066320fef856a27b59563a5cf13ce82ec3c9fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f0:1b:eb:1f:28:16:7e:57:51:4f:c6:74:d2:
e9:25:47:10:16:f3:6e:e8:53:c5:4b:22:0e:b1:ae:
90:0d:ad:ae:10:be:5c:5d:3b:ea:3f:8b:b4:c7:a5:
0c:61:ba:20:50:0e:79:df:af:09:50:cb:e4:ba:d3:
3c:2f:e6:2c:85:2a:16:2f:95:12:65:91:0a:19:70:
2f:31:b2:5c:a2:5e:db:9a:c2:f4:bf:33:d6:8b:70:
27:b7:a9:60:91:b8:fa:68:ce:af:02:15:5e:27:65:
c0:85:31:4b:5e:f0:48:60:c7:14:24:63:96:a0:35:
40:f4:c1:1d:04:4c:b3:c8:10:00:ac:98:a1:c8:83:
ea:53:49:69:b0:6e:c0:9f:3c:55:82:fa:85:4e:42:
0a:1b:c9:34:dc:df:8f:60:8e:e2:04:55:f6:0d:da:
90:30:98:96:f4:2b:17:1d:f4:f7:21:e3:22:ee:fd:
47:af:fa:b1:3a:c6:ae:1c:ce:d9:bc:c4:73:d4:76:
5c:83:1a:c8:f2:2e:c5:7f:d4:29:49:a9:11:c0:6a:
8c:82:01:10:42:e9:43:28:49:02:6e:81:68:b9:1e:
6d:ed:d8:fa:a0:7d:32:bf:5b:20:53:cc:dc:52:2f:
7d:d0:74:87:1c:68:54:59:00:2e:66:18:c1:61:8d:
d8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:06:63:20:FE:F8:56:A2:7B:59:56:3A:5C:F1:3C:E8:2E:C3:C9:FC
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/7QZjIP74VqJ7WVY6XPE86C7Dyfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
d9:63:35:d5:df:99:33:45:d0:40:8b:13:15:7b:53:3f:1f:cf:
f7:3c:6e:fd:a8:5a:cb:9b:14:96:21:9d:3e:ea:54:cb:ec:d9:
9d:bd:5f:ad:22:02:9a:8d:ce:17:9b:7d:3f:ac:5e:b4:32:eb:
33:3d:2e:9c:2c:2d:9d:cc:0d:d5:25:27:10:5e:e8:a1:1d:87:
bf:a4:00:c9:c7:33:72:af:78:fb:64:b6:ed:84:44:12:37:98:
df:74:6d:81:06:bc:a4:b6:83:f7:54:f1:ee:ff:bf:f8:75:d6:
49:40:20:90:61:cc:46:17:83:cb:e1:24:45:96:c1:26:3f:f2:
06:ca:0a:a9:0d:4c:e6:aa:54:a0:1a:ad:4c:fa:56:e6:a3:77:
67:30:0a:9b:bd:d3:9d:9f:93:f1:fb:14:d7:26:35:82:fa:b7:
a9:70:ae:11:87:58:48:f0:0d:94:7e:e9:b9:50:80:af:8d:cd:
c3:15:79:65:37:fb:7e:fe:7a:c5:2e:01:5e:d0:3c:aa:29:b0:
81:84:ad:c6:ff:73:e6:69:b2:6e:97:d7:98:b1:a2:c8:a4:32:
3b:e3:d7:c4:96:93:d3:ab:16:1e:6f:c9:ef:2c:47:ee:06:ca:
a2:7c:0b:bb:fb:fc:aa:aa:b6:b6:63:ab:80:f0:5d:cc:fa:f9:
9f:1e:b0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 10:35:03 2024 by rpki-client on console-fra.rpki-client.org