Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DgJWL2w8hOJJg6ikZ0sTE9-EcSM.roa
File: DgJWL2w8hOJJg6ikZ0sTE9-EcSM.roa (raw, json)
Hash identifier: 63AZBsHb6GfFU0c3bQpPQa7otj5ttAXYHzc5Rbyk0p8=
Subject key identifier: 0E:02:56:2F:6C:3C:84:E2:49:83:A8:A4:67:4B:13:13:DF:84:71:23
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018654CA0DA9E8A5F379C11E1A68014ECCBC
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DgJWL2w8hOJJg6ikZ0sTE9-EcSM.roa
Signing time: Wed 15 Feb 2023 11:16:13 +0000
ROA not before: Wed 15 Feb 2023 11:16:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Feb 2023 11:47:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:ca:0d:a9:e8:a5:f3:79:c1:1e:1a:68:01:4e:cc:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Feb 15 11:16:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e02562f6c3c84e24983a8a4674b1313df847123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:82:00:da:d4:eb:c3:14:98:e1:2f:a8:64:7f:
8f:4a:89:e9:c7:95:66:15:6d:87:39:fe:95:38:1e:
8f:fa:8a:d9:7e:67:e6:24:89:8d:7c:c7:72:4a:60:
a3:84:e1:40:2b:9e:3f:90:39:58:e9:f8:7a:f2:7a:
b1:f2:a5:cf:40:a7:90:51:fd:e5:b4:d6:bd:ed:f0:
85:85:23:5e:1e:52:79:24:33:a8:04:8b:d9:df:66:
6d:42:d1:12:4e:18:e0:38:9f:0c:fd:9a:a2:07:ae:
57:79:1b:fa:8b:6c:91:e5:a2:7f:65:3d:15:1f:e7:
be:17:66:af:c2:8d:75:5b:33:b5:25:a6:49:60:36:
0c:53:58:9c:7b:e8:dc:19:18:68:a1:80:f5:53:c4:
32:62:86:92:3e:23:55:51:93:c8:23:3a:42:68:48:
54:24:25:9f:38:6c:ae:33:f8:da:cb:8a:94:8d:1c:
f5:92:e2:b1:9e:10:a4:13:f0:5c:8e:f1:d7:63:b5:
9a:89:06:94:bc:57:11:eb:e2:ae:10:cb:69:8f:f1:
21:47:8d:dd:e6:2b:f1:5c:13:54:21:d7:12:2a:d9:
07:14:3e:ce:b7:b8:5f:b3:ae:86:8a:9a:59:cb:e9:
15:ee:9f:f2:d0:d1:42:32:80:a7:e3:f3:b2:2f:1a:
81:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:02:56:2F:6C:3C:84:E2:49:83:A8:A4:67:4B:13:13:DF:84:71:23
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DgJWL2w8hOJJg6ikZ0sTE9-EcSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
06:b0:4f:39:04:5c:4d:92:4f:83:fb:ba:8b:d2:2d:eb:bf:45:
b2:26:e1:e3:24:46:01:9e:c7:8c:c9:8a:bb:8b:a8:a0:39:b3:
2b:90:4f:3f:de:b4:e3:db:b7:4f:38:75:2b:44:4b:b8:26:b5:
9e:53:97:19:a1:8f:0e:c6:21:20:d8:c2:d2:bf:ed:73:ee:36:
40:7c:cd:90:04:57:49:ba:c7:82:39:60:f4:a7:20:1f:d0:73:
3c:11:ac:6c:ed:0e:49:15:6d:0f:31:f2:00:07:b0:58:9b:da:
ef:16:2e:7b:3c:02:29:b9:e4:4a:06:51:22:14:72:e5:ea:06:
2e:0b:94:cf:aa:46:01:53:50:30:90:15:f9:b7:4d:9f:b0:fb:
c6:39:83:f3:8b:40:ca:5f:c7:cd:49:f3:3c:5f:bf:fd:97:75:
13:b9:79:76:d5:63:6a:70:8d:2f:f3:8f:6a:81:50:6b:d3:10:
d5:98:d7:1d:62:98:ba:81:3c:e8:90:5c:12:d2:11:12:67:df:
05:98:9d:a4:40:21:e3:1c:05:e1:e7:f6:4e:39:fe:81:5b:0c:
3d:13:96:55:f7:cc:1f:23:56:9b:60:9c:eb:d0:52:ed:1a:89:
68:41:55:5a:c4:5c:2a:84:37:dd:67:7d:e0:b0:95:c7:3e:f0:
0c:52:14:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org