Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/OrH3W8X0RF4mZ5yEPqMO3Dgw0nA.roa
File: OrH3W8X0RF4mZ5yEPqMO3Dgw0nA.roa (raw, json)
Hash identifier: 1vLBCAaqTUtPA4u/CbwvAe1q7kHgbHC4Nmza3Pn3nos=
Subject key identifier: 3A:B1:F7:5B:C5:F4:44:5E:26:67:9C:84:3E:A3:0E:DC:38:30:D2:70
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0186E4894084D16837E2CEDDC8D5D3EA6F1D
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/OrH3W8X0RF4mZ5yEPqMO3Dgw0nA.roa
Signing time: Wed 15 Mar 2023 09:10:45 +0000
ROA not before: Wed 15 Mar 2023 09:10:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Apr 2023 10:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:89:40:84:d1:68:37:e2:ce:dd:c8:d5:d3:ea:6f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Mar 15 09:10:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ab1f75bc5f4445e26679c843ea30edc3830d270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9b:85:81:a0:c8:dc:78:ef:b3:1e:7c:3f:1d:
62:b7:1c:90:ce:23:d8:8e:b2:e4:8d:a6:db:58:0e:
da:6c:5a:4b:7b:ce:c2:f9:57:9a:73:be:e3:49:5b:
e1:67:5a:47:ea:38:30:f1:8a:ca:28:22:71:a8:80:
f9:d1:65:00:80:6b:b2:42:b2:c5:51:b7:3b:1d:b9:
c6:65:cd:be:12:05:04:68:ab:4d:ce:56:bc:b9:8c:
18:b3:2d:26:8c:1d:b5:1d:c2:6e:f3:3b:8b:70:19:
3b:1a:8a:71:94:49:5e:f4:dc:e1:6e:8f:56:a5:ca:
bc:fb:f8:f2:09:a9:cd:cf:3b:5f:b8:56:30:29:4d:
29:6e:c2:73:7c:2a:08:fd:35:5d:53:7e:42:8c:24:
7d:72:ee:d3:f0:43:e1:0f:72:94:11:e2:b6:14:ad:
9b:f3:d1:51:69:dd:54:c8:e5:d6:8e:99:ca:f1:01:
26:eb:41:08:a2:f0:1b:de:08:f1:28:22:53:52:74:
90:4f:c9:e5:35:c7:1f:23:d0:36:29:32:7b:d3:e4:
cb:ce:12:1f:e0:8c:75:10:6f:c2:03:f8:10:88:42:
65:81:39:7d:6c:b4:47:92:18:f3:5c:b8:d8:d3:4c:
98:26:b2:71:f2:e9:47:d8:99:b0:fc:06:4d:80:44:
96:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B1:F7:5B:C5:F4:44:5E:26:67:9C:84:3E:A3:0E:DC:38:30:D2:70
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/OrH3W8X0RF4mZ5yEPqMO3Dgw0nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
99:32:1e:7e:87:7c:b1:75:d4:ce:1c:85:51:48:6e:24:7a:31:
12:d9:f2:46:ef:96:71:2c:53:e0:0e:be:80:b0:a6:64:a1:d5:
bf:28:e3:f9:2b:74:2b:a7:a1:82:03:d9:d0:7b:c4:fe:d2:f8:
e6:2e:a8:86:7f:5b:aa:f6:ca:9a:b9:43:8c:c2:d3:01:43:71:
eb:75:72:58:77:b4:e0:e9:0b:68:6a:1e:11:fa:63:95:81:74:
7d:75:96:8c:41:fb:7e:b7:5d:09:64:e7:51:fa:f7:c6:37:b4:
e0:df:7d:d3:d2:96:1e:be:b8:76:59:d9:61:f9:b7:e8:2c:6e:
e2:d7:33:ec:48:40:2d:f3:ee:f2:8b:04:0e:4a:0d:fc:92:89:
58:35:5f:47:3e:45:fd:f8:25:f8:49:d3:4b:6b:b4:f3:27:78:
8d:fe:1b:6e:b1:d5:61:8d:6e:b4:05:24:94:f6:f1:48:be:cb:
32:83:02:69:40:5d:da:d8:ac:4f:18:b8:08:71:9c:95:3c:09:
f5:98:cc:ac:15:16:0a:0c:7a:e2:f5:6d:c3:d5:05:03:c5:36:
fd:62:22:82:31:63:86:91:24:8e:18:fa:0f:1d:1d:be:9d:63:
ff:90:e2:97:47:4e:22:be:a5:fb:d3:06:ef:11:2a:35:cd:7d:
35:9e:e9:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org