Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X7PzPV7SttgebUCrCXB-IUvBHjM.roa
File: X7PzPV7SttgebUCrCXB-IUvBHjM.roa (raw, json)
Hash identifier: bBNEjtuXZVyoW2GeaRFgnA5kY6L8pZmi6UTQ8WyxTHk=
Subject key identifier: 5F:B3:F3:3D:5E:D2:B6:D8:1E:6D:40:AB:09:70:7E:21:4B:C1:1E:33
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C41AA78899961F0B16D272416C34E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X7PzPV7SttgebUCrCXB-IUvBHjM.roa
Signing time: Mon 02 Jan 2023 07:05:00 +0000
ROA not before: Mon 02 Jan 2023 07:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Jan 2023 14:29:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:41:aa:78:89:99:61:f0:b1:6d:27:24:16:c3:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fb3f33d5ed2b6d81e6d40ab09707e214bc11e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:07:95:c8:15:55:34:71:54:fc:6d:77:3c:a1:
36:bf:34:b1:c9:e6:ea:bf:da:73:26:5e:ee:7c:f8:
a2:14:d0:e5:47:3a:27:e5:af:db:71:31:f0:92:b7:
d5:ea:ca:09:3a:30:34:b0:c0:cf:76:23:17:90:67:
08:bd:6f:58:e0:ca:07:60:b1:02:30:ae:5f:a7:37:
6d:c0:99:d3:4c:0a:df:49:d7:44:22:f1:e3:fb:4f:
70:27:6d:a5:05:d2:1e:e3:35:3c:cc:ca:75:bc:03:
a2:b4:84:27:0b:3e:fb:1c:ea:b0:eb:0a:93:02:11:
bc:59:e2:64:5a:d8:f4:39:b2:24:ff:14:e5:17:0d:
e3:e0:10:c2:8c:13:db:4c:81:f1:62:c4:7f:05:00:
1a:9c:bc:db:6e:39:a8:5f:e1:c8:3b:3e:d5:14:94:
fb:85:30:bf:24:fc:f7:bb:43:20:52:87:a6:1c:bf:
f7:ef:29:5f:db:89:4f:49:14:5c:8d:83:59:8f:ff:
33:af:3e:17:fe:b8:bf:28:c0:d7:a1:15:00:04:f1:
89:17:d7:bf:bd:eb:20:26:2f:47:c3:ae:4e:4f:ef:
a3:da:a5:0a:18:b5:7e:72:5d:3a:e8:f3:3b:0e:2c:
2d:c1:6d:02:f9:c4:b4:0b:5b:50:e3:49:d4:f3:a5:
04:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B3:F3:3D:5E:D2:B6:D8:1E:6D:40:AB:09:70:7E:21:4B:C1:1E:33
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X7PzPV7SttgebUCrCXB-IUvBHjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0/24
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
93:bd:68:c2:03:4a:c5:6c:a9:f8:fd:33:15:ff:7d:00:fe:22:
40:ff:49:f3:51:b5:3f:46:9c:5a:b5:2f:6a:b4:20:6a:c7:f7:
9a:91:90:86:3d:17:95:3c:67:7f:0b:28:49:53:ee:83:97:ed:
12:18:97:f7:ea:f0:67:82:1d:8e:d6:0e:46:89:99:88:8b:0c:
45:d7:17:b4:b3:2f:01:07:76:1a:76:3c:93:7e:5d:7e:d3:f8:
a2:32:5a:76:b3:fe:28:61:dd:a8:78:d6:84:49:6c:3c:1f:ac:
33:54:68:4f:8d:33:ee:b8:ef:b6:3f:49:a9:84:b4:a8:f1:b3:
fe:31:f0:19:2e:dd:9d:57:f6:f2:b0:bb:c9:c7:c8:ef:b4:1c:
38:fc:b4:a4:b9:33:3f:ad:a1:c3:35:06:8e:e8:29:be:5f:b9:
62:5f:0d:fa:33:e3:e2:58:24:b5:4f:86:0e:7d:cc:66:67:ec:
3a:43:05:ec:e7:ed:b7:56:57:1b:bc:38:79:d9:c2:41:49:e9:
6c:d6:8e:c7:a4:81:fa:cd:2c:79:06:a4:d1:52:15:23:fd:f2:
2a:0f:3d:64:db:29:bd:e0:47:a5:a0:a6:39:10:89:4d:5c:ff:
b5:8c:20:70:40:62:a2:58:68:f8:75:ed:e6:c8:ba:9f:9e:29:
c2:ec:c9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org