Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X_X0jJnpSid3rrvmsVEoUsxQljQ.roa
File: X_X0jJnpSid3rrvmsVEoUsxQljQ.roa (raw, json)
Hash identifier: 9dOBYEQ8RU0zcbogmvNASwWWiSQW+rWLSfEP3+5AbrM=
Subject key identifier: 5F:F5:F4:8C:99:E9:4A:27:77:AE:BB:E6:B1:51:28:52:CC:50:96:34
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018AFFBD809310D8910107FD7FD46437732E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X_X0jJnpSid3rrvmsVEoUsxQljQ.roa
Signing time: Thu 05 Oct 2023 12:08:43 +0000
ROA not before: Thu 05 Oct 2023 12:08:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 Nov 2023 09:42:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:bd:80:93:10:d8:91:01:07:fd:7f:d4:64:37:73:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Oct 5 12:08:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ff5f48c99e94a2777aebbe6b1512852cc509634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a6:82:ab:57:1c:a1:50:26:4e:e3:07:fd:36:
26:1b:93:40:3b:27:ad:af:e7:5a:8d:d4:a1:fe:90:
09:af:bf:b5:7f:4a:cd:4c:5b:d4:65:4b:3c:78:bc:
e9:8e:e1:c5:48:18:bd:b5:70:d5:30:7f:7d:a0:a6:
ef:b4:a5:99:92:88:65:28:ff:d4:a6:0b:ef:17:e9:
fe:bd:b2:37:8f:8b:f3:8d:68:ed:e7:b7:78:54:2e:
b8:5f:16:2c:b3:7e:5c:03:fd:f6:e1:76:99:5f:d6:
e1:44:0a:7f:a1:d5:d9:b1:c0:ce:e9:d9:40:e1:20:
cc:7f:3d:89:df:6e:9f:c8:16:55:51:91:88:fb:ce:
27:77:f7:78:b1:f8:79:88:b6:3a:d1:60:2e:c7:23:
55:07:64:ec:3a:00:d8:c8:4e:ff:3b:51:c0:5c:7d:
b2:96:7c:8f:a4:c3:f8:59:4e:e7:d1:6f:eb:f0:7e:
26:f8:b6:b4:50:a8:99:5e:c1:4e:0c:e2:b5:47:72:
95:9e:7e:68:75:ea:6b:d8:f1:ad:bd:33:a6:9c:37:
79:93:9d:e5:6f:14:8d:c5:b3:dc:75:62:11:d3:67:
6c:f6:b9:35:9b:84:af:c8:d2:8e:5d:f8:f5:4b:f5:
f7:39:f9:80:40:4f:d2:c0:82:a4:a0:69:06:f0:ce:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F5:F4:8C:99:E9:4A:27:77:AE:BB:E6:B1:51:28:52:CC:50:96:34
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/X_X0jJnpSid3rrvmsVEoUsxQljQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
39:26:a5:d1:a1:7b:87:89:88:cc:c9:8e:8c:c4:19:0b:b4:b2:
7e:f7:a3:ba:49:6f:b0:20:52:db:25:26:01:9a:7a:ba:1f:b8:
cb:a6:bd:87:df:c7:9f:f7:d0:8a:09:0e:0b:73:55:c9:a9:a0:
d6:48:aa:a7:a0:91:82:de:eb:a4:ae:ee:a1:06:e4:18:b2:14:
0f:3f:91:10:87:6f:91:8a:da:8f:f6:4d:a9:5e:d8:1c:55:9b:
0c:e1:b7:d7:ae:e4:71:4a:bc:e8:17:2d:44:6b:d1:3b:74:de:
f2:ca:ef:8c:4f:40:41:2d:a9:bb:c3:34:b8:66:1b:fc:ef:1a:
09:a0:73:8f:90:86:80:bb:28:df:b0:9c:b3:ab:db:96:75:53:
04:29:00:57:28:1a:a0:0d:1d:58:6d:7a:0b:79:35:fe:9d:22:
eb:c7:03:89:89:cb:0f:39:c9:16:9b:f4:ee:c1:e4:c9:0f:28:
e4:c6:b8:50:26:83:be:d1:ca:be:63:f6:03:84:0c:cf:5b:e0:
9b:1c:b2:ae:ac:b9:79:fa:b7:b8:33:37:c5:7a:ab:2e:2d:37:
86:2a:f7:d7:39:c0:e1:66:94:3b:c7:db:41:02:e1:ce:52:b4:
4f:b2:08:09:74:5b:dc:e1:4d:b2:fc:8d:e8:e0:fd:0d:69:c6:
8c:19:32:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org