Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DdfJpSvTV71E_WPug4_QPyzFA2g.roa
File: DdfJpSvTV71E_WPug4_QPyzFA2g.roa (raw, json)
Hash identifier: IwD5zJEh3lMndtIC/BMOZUURhFYMeukc4LxgLl8toEk=
Subject key identifier: 0D:D7:C9:A5:2B:D3:57:BD:44:FD:63:EE:83:8F:D0:3F:2C:C5:03:68
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018CF463F69948F7B1B214D785F8A552FD40
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DdfJpSvTV71E_WPug4_QPyzFA2g.roa
Signing time: Wed 10 Jan 2024 17:20:40 +0000
ROA not before: Wed 10 Jan 2024 17:20:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.204.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
45.132.61.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 Jan 2024 06:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f4:63:f6:99:48:f7:b1:b2:14:d7:85:f8:a5:52:fd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 10 17:20:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0dd7c9a52bd357bd44fd63ee838fd03f2cc50368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:83:43:80:a9:17:20:95:81:48:55:3f:8f:91:
c5:7d:14:b7:a9:e0:53:9b:82:d8:53:82:a2:ca:db:
f0:cd:1b:fd:97:09:e5:37:12:6e:f5:a6:00:df:85:
25:1f:fb:b3:27:e4:67:90:67:f0:0f:ff:92:09:a5:
a1:25:f7:ed:de:32:67:ca:e6:de:59:76:c8:2b:f8:
93:83:83:97:69:f5:e3:07:ec:cd:7e:6e:53:b1:85:
cb:e3:3a:a8:e5:86:31:51:9a:f3:c5:e4:21:17:3b:
0c:80:2e:df:ef:e6:0d:eb:60:45:66:63:d4:43:2b:
38:96:d7:5b:af:07:a2:d6:ca:d9:b0:83:5e:f4:d7:
d3:dc:6e:12:37:ca:22:37:c0:ff:b6:69:bb:21:c0:
d4:2d:12:d3:15:f7:2d:6a:0f:7e:9e:be:b6:73:26:
0a:1f:23:f0:5f:1e:78:81:3a:d8:68:11:d0:71:db:
b0:8e:2b:47:1b:00:de:d6:f1:92:c5:99:97:33:66:
70:61:a7:78:56:6d:fc:6b:4c:54:74:d9:fc:dc:12:
5c:30:9f:9b:fe:93:fe:37:ac:2e:45:30:6b:da:3f:
ac:55:a7:e6:ef:0b:d6:35:16:ea:ba:23:9b:7f:ba:
17:e6:89:09:12:e1:b6:4f:5b:7d:46:c8:23:32:8f:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D7:C9:A5:2B:D3:57:BD:44:FD:63:EE:83:8F:D0:3F:2C:C5:03:68
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DdfJpSvTV71E_WPug4_QPyzFA2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
Signature Algorithm: sha256WithRSAEncryption
b0:5e:d0:2d:09:4b:2c:41:12:fb:6d:c3:9f:e9:e4:ea:95:c1:
85:34:ae:6a:1c:12:e1:81:33:22:75:1a:c5:80:db:8b:4c:f6:
7d:28:f2:db:29:9f:ab:d7:26:c9:9b:e6:b3:5b:64:63:75:a7:
ed:8a:00:28:96:c7:16:a9:97:69:a0:00:3b:b8:0e:71:e1:2f:
ea:c5:dc:f7:8e:bd:c1:5f:ab:4f:ce:47:c4:1a:73:6b:d4:d8:
d3:95:5e:a5:71:94:6f:56:1e:3f:a4:a6:14:d3:4c:0e:91:e0:
f8:79:b2:0c:21:78:7c:81:ce:2b:da:0a:ca:19:73:1b:4f:92:
1b:4d:e4:9e:e2:bb:03:50:6c:ef:e7:e3:d7:39:c8:4f:1b:42:
b7:36:d6:a5:91:18:98:a7:56:c3:07:37:88:97:8f:3e:a8:55:
1c:61:05:31:ab:2b:76:2e:8c:0e:d2:cc:b9:fe:fb:34:9d:ad:
ce:9f:33:b4:ce:24:b9:0c:14:8b:a5:44:fd:44:8e:21:a6:b6:
48:0f:06:69:23:58:75:67:70:5e:59:78:12:55:1e:0b:4d:86:
ab:fa:a8:55:a0:82:22:7d:b3:72:d3:8a:e3:a6:44:d8:83:93:
fa:50:40:a3:55:ef:28:1d:45:02:a6:9a:63:ce:fe:02:25:b9:
e4:eb:4e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org