Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DkpzzTABcr2anWJavRe_-PFvdPM.roa
File: DkpzzTABcr2anWJavRe_-PFvdPM.roa (raw, json)
Hash identifier: n1m1X4zghaF4Ew/6y3+AKDtJgdts9f2P9MKEYN4NJdI=
Subject key identifier: 0E:4A:73:CD:30:01:72:BD:9A:9D:62:5A:BD:17:BF:F8:F1:6F:74:F3
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01899CBF42F7CB1323A4B906D0B6308BB812
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DkpzzTABcr2anWJavRe_-PFvdPM.roa
Signing time: Fri 28 Jul 2023 13:45:27 +0000
ROA not before: Fri 28 Jul 2023 13:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 10 Aug 2023 16:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:bf:42:f7:cb:13:23:a4:b9:06:d0:b6:30:8b:b8:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 28 13:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e4a73cd300172bd9a9d625abd17bff8f16f74f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4b:32:df:8b:15:b3:aa:25:d8:ad:3c:a3:d8:
cc:c4:d0:1a:8e:1a:12:c1:20:42:a1:1a:5f:ca:43:
8f:7e:85:29:9f:7e:7b:17:14:78:47:34:c6:3a:5a:
c2:58:7b:2f:e9:78:13:ef:3b:02:ff:92:cf:cf:83:
ef:48:80:21:f0:19:aa:c1:9c:37:65:c9:b7:cf:ec:
21:9d:86:fc:9e:98:b9:aa:49:ec:dc:c1:8d:f5:d7:
21:a3:38:76:7b:34:4b:76:0e:f0:b7:9b:75:35:52:
6c:21:83:aa:03:5b:d5:ed:f6:60:5b:37:a2:89:b4:
a5:e7:cf:6f:f2:66:8e:85:f7:b4:99:a8:b0:c2:51:
75:14:92:bc:86:1a:3a:49:03:b4:be:bf:dd:20:9c:
e5:30:9f:cb:93:70:4f:73:58:ad:8e:22:70:fb:af:
6e:e8:26:4a:db:5d:0c:89:e5:73:32:fd:60:61:0b:
9f:13:31:56:75:5b:09:5b:66:10:31:f5:49:75:fd:
29:62:1b:38:8f:0d:9c:f6:14:a4:8c:3a:3a:ee:f7:
9d:74:7e:fe:ed:53:ec:14:32:2d:d6:d5:a6:9b:5e:
5f:09:bc:9b:14:a8:e6:1f:5d:1b:bd:3b:3d:56:a9:
8e:70:74:b4:40:6a:45:a7:a4:00:c1:ba:c1:84:1b:
9c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:4A:73:CD:30:01:72:BD:9A:9D:62:5A:BD:17:BF:F8:F1:6F:74:F3
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/DkpzzTABcr2anWJavRe_-PFvdPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
b5:a0:73:15:9f:de:a1:f3:9a:9f:4e:90:95:b5:78:90:15:84:
8a:91:a9:6f:7f:80:b8:dc:6d:43:39:66:37:86:68:c8:9e:7f:
eb:4c:44:05:7c:31:aa:09:e6:50:28:92:34:33:69:05:61:62:
ff:53:1a:35:1f:3d:83:5b:ea:03:b5:f8:5c:b3:1e:81:45:fc:
f6:8d:3f:57:38:1b:5a:a5:27:6c:38:dc:80:df:04:35:8d:e1:
5c:c6:e7:d8:e5:4a:69:73:ab:cb:09:81:ce:95:f8:59:34:ca:
33:df:ea:ac:80:19:99:c9:59:32:78:ee:5d:c6:1b:2f:3f:9a:
f7:3a:37:16:40:69:8d:32:ba:bf:f4:40:78:ce:99:06:e7:1c:
f4:85:b6:ae:f4:d6:24:a2:4f:31:b6:f2:1c:6b:e2:26:9b:28:
79:8a:82:80:f3:f8:75:96:ad:10:00:a3:11:6d:8b:d3:f0:a0:
43:b8:ea:5e:d8:f8:5e:ee:31:c0:c4:c0:8e:2b:1d:7a:44:75:
00:41:25:b2:b4:b8:7e:ee:c9:2c:1e:2b:9b:42:6b:18:cb:5a:
cf:c9:12:25:d0:06:86:0b:7e:77:f3:8a:08:db:03:33:24:c7:
ea:86:8e:16:45:26:b8:f0:db:5f:98:83:60:a9:35:a3:6f:9b:
c0:45:5f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org