Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PGE1pavgARz2klo2uIRqxfEIgas.roa
File: PGE1pavgARz2klo2uIRqxfEIgas.roa (raw, json)
Hash identifier: gfWqm2Gs1gQDG2UfJY9mUfbWMKkVJnQaDcMAhxX3/Qg=
Subject key identifier: 3C:61:35:A5:AB:E0:01:1C:F6:92:5A:36:B8:84:6A:C5:F1:08:81:AB
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018BEBB925C0CC56215FE7F26588FA97A12B
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PGE1pavgARz2klo2uIRqxfEIgas.roa
Signing time: Mon 20 Nov 2023 07:54:21 +0000
ROA not before: Mon 20 Nov 2023 07:54:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 Nov 2023 10:46:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:eb:b9:25:c0:cc:56:21:5f:e7:f2:65:88:fa:97:a1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Nov 20 07:54:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c6135a5abe0011cf6925a36b8846ac5f10881ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e1:fe:6b:e4:09:43:ae:4f:d5:5a:60:87:e8:
5b:46:33:a5:55:19:a0:cf:b6:6b:a0:2e:bc:eb:19:
b2:4f:69:1f:39:92:33:45:48:6d:b7:fb:75:45:a5:
5f:38:ea:7d:cb:d0:a9:4c:c2:67:e9:71:f3:82:5f:
05:02:aa:58:81:44:56:22:37:0e:b7:7a:3f:d5:90:
aa:da:b6:6b:bb:1c:b0:e0:4a:e9:eb:ff:f1:21:eb:
e8:82:66:87:85:93:ca:b3:53:11:ce:64:fb:7b:9a:
de:fe:21:d5:99:6b:8e:62:e7:8f:50:a5:a2:7f:0d:
1d:4b:34:5d:14:d7:5d:e4:d5:aa:b2:2d:b9:e8:7f:
b2:e6:36:c1:48:3f:5d:2d:20:9a:0e:6c:42:4c:a3:
e0:11:02:4d:75:b5:b7:86:db:88:ff:3f:17:5c:1c:
9b:9e:64:14:a0:e6:fa:b9:0e:74:6f:c2:1c:10:4c:
d0:e6:d6:2b:ab:0b:0a:a9:ef:50:2b:23:b8:5b:b7:
13:36:1b:8f:dc:0d:aa:de:37:ac:8b:8d:58:80:3f:
2b:52:9c:9b:5d:32:4a:2a:1a:0f:02:6f:6f:2f:1f:
c9:b5:ab:a3:bb:92:8f:a6:c3:b0:9c:db:1b:34:34:
6a:50:fc:ad:cf:9c:e6:72:9d:45:6b:1a:45:51:36:
25:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:61:35:A5:AB:E0:01:1C:F6:92:5A:36:B8:84:6A:C5:F1:08:81:AB
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PGE1pavgARz2klo2uIRqxfEIgas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ad:46:f5:a6:55:77:2d:ea:c1:74:65:e8:c9:ec:d0:a3:90:
9c:b4:0b:66:a5:7a:8a:67:bc:b9:95:6b:73:95:8b:dc:92:87:
9d:b0:6d:5d:f1:63:dc:5d:78:cf:31:a0:6e:79:79:66:61:1a:
03:f7:ed:32:c4:c8:47:03:31:0b:12:53:8a:81:c6:42:19:1d:
9c:6c:1f:fc:9f:84:a9:59:50:8b:24:33:48:98:b2:34:47:47:
39:fd:2c:24:80:15:b1:05:30:4f:3f:f2:df:31:4d:34:eb:0f:
20:aa:13:20:42:e4:10:90:c0:87:92:cb:e5:a9:f1:9d:bb:a2:
bb:8c:19:dc:93:43:42:d8:1b:ff:b2:1b:68:b8:45:6e:7b:4e:
8b:76:90:5d:ff:b2:23:b6:99:3b:e8:85:78:2a:ac:e3:4d:04:
1d:62:a6:af:e8:e2:0c:9d:87:62:4b:eb:a3:ee:03:7d:8d:31:
11:0d:05:9f:a1:53:a9:51:a1:9b:49:df:f2:33:f7:fc:d7:3e:
7f:1b:c7:36:6b:6b:ca:e5:e1:32:bd:af:45:7f:da:51:91:03:
99:9c:55:92:72:12:29:d6:2c:d7:55:e4:b9:5f:6c:66:ac:bc:
a3:ff:d0:cb:1d:b1:a3:84:f5:7a:ff:b8:5d:65:0d:9d:0e:e7:
a3:eb:42:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org