Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Esi06zqn3o-teBN6fR-2TT069_M.roa
File: Esi06zqn3o-teBN6fR-2TT069_M.roa (raw, json)
Hash identifier: 0mEn8q2aupdR32A7S9nizqTnFX1ey7axkdom7nJ4fjo=
Subject key identifier: 12:C8:B4:EB:3A:A7:DE:8F:AD:78:13:7A:7D:1F:B6:4D:3D:3A:F7:F3
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01885253D167C167D8E2C402606A591A3A33
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Esi06zqn3o-teBN6fR-2TT069_M.roa
Signing time: Thu 25 May 2023 09:53:24 +0000
ROA not before: Thu 25 May 2023 09:53:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Jul 2023 12:22:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:53:d1:67:c1:67:d8:e2:c4:02:60:6a:59:1a:3a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: May 25 09:53:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12c8b4eb3aa7de8fad78137a7d1fb64d3d3af7f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:83:53:22:e6:f1:2f:51:18:89:d8:55:f3:85:
b2:ad:18:8a:24:1b:dc:20:c9:aa:81:b0:27:1e:dc:
55:73:25:ba:79:05:f8:a8:ea:bc:ab:f7:ce:4b:a2:
b6:59:58:d1:40:06:c8:49:ba:9d:47:16:1a:03:54:
cf:c4:3d:e3:29:4b:68:06:dc:76:0f:79:ff:47:d7:
de:c1:cd:6a:e8:15:bb:0d:ee:8d:73:4f:9a:1a:2a:
89:1c:ef:91:27:60:d1:9e:b5:b7:e4:43:28:0f:d2:
74:28:39:34:b7:8e:c9:c6:fb:5e:81:c7:e9:e2:0c:
b2:7f:62:64:24:51:85:19:c7:be:79:79:56:56:98:
05:5c:93:10:ff:ea:68:7b:3f:3e:9d:96:4d:a0:e5:
94:13:da:f5:6d:1d:18:1b:f2:06:3e:59:d6:b1:e0:
c7:f3:21:6d:49:2f:c8:3f:bb:0d:98:3f:4f:95:52:
71:e5:d5:65:27:80:fa:48:e3:34:dd:f4:8d:58:74:
59:32:2a:c8:55:c4:6d:de:5d:12:59:2f:63:92:9f:
4a:d4:9e:5b:80:2d:6c:68:83:d1:48:2d:6a:4f:0c:
d7:80:72:24:91:e3:a6:62:5f:5f:19:4c:d3:0a:30:
19:d2:ba:e6:85:4c:ff:ba:57:99:b2:ad:15:ce:e5:
a7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C8:B4:EB:3A:A7:DE:8F:AD:78:13:7A:7D:1F:B6:4D:3D:3A:F7:F3
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Esi06zqn3o-teBN6fR-2TT069_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
a3:aa:5a:5b:5e:93:bf:be:72:2b:50:1b:aa:ba:13:f6:12:c8:
66:06:ff:16:37:18:8d:2d:0d:80:ee:02:83:b5:16:98:2f:03:
3f:18:56:14:64:62:4e:2c:b8:98:03:eb:82:02:ad:5d:af:d6:
b7:3e:e5:fd:5e:bc:78:8e:7d:44:fe:3e:ee:c7:2d:ee:df:a5:
60:46:12:d9:bb:fc:ba:b4:1b:54:c9:7b:17:b5:8d:35:f4:cb:
c0:e7:4a:84:b1:34:50:54:28:c9:b9:2d:39:6a:ed:d8:a2:a6:
a5:44:db:ff:3a:37:b6:e8:5e:da:82:f9:4b:4a:c0:71:fd:db:
49:99:ce:fe:ef:e0:e8:58:4d:51:a1:72:b5:18:72:df:d3:c8:
e1:a5:1c:12:a8:99:e4:3a:0d:b4:5a:eb:e9:06:14:46:24:31:
83:b1:ff:a7:67:ce:e8:11:29:65:ad:cd:e5:36:9e:8a:70:a4:
df:bc:9c:cd:69:b7:db:d4:c5:d4:f7:aa:78:dc:25:cc:9b:6d:
04:0f:9a:9a:c4:81:90:11:76:c4:06:c8:4d:d6:99:da:53:4f:
08:6c:f2:1f:e1:c4:a3:19:6b:93:35:79:5c:fa:fd:5b:5a:43:
57:86:da:4c:4c:fd:a4:69:f8:00:03:43:ad:42:81:c1:39:48:
b0:4f:2f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org