Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/e3FBybrW5vzcLSNLk4aQql_oreU.roa
File: e3FBybrW5vzcLSNLk4aQql_oreU.roa (raw, json)
Hash identifier: WnpAXDjwWd/5bH4aazacCrVHEbyQgxPtDpenGDSmprU=
Subject key identifier: 7B:71:41:C9:BA:D6:E6:FC:DC:2D:23:4B:93:86:90:AA:5F:E8:AD:E5
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018A743829F4D572CC1BBF33B8ADB74AFC75
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/e3FBybrW5vzcLSNLk4aQql_oreU.roa
Signing time: Fri 08 Sep 2023 09:55:52 +0000
ROA not before: Fri 08 Sep 2023 09:55:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
94.16.98.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
185.81.206.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Sep 2023 12:15:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:38:29:f4:d5:72:cc:1b:bf:33:b8:ad:b7:4a:fc:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 8 09:55:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b7141c9bad6e6fcdc2d234b938690aa5fe8ade5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c9:c3:99:0c:f2:22:1f:99:7e:1e:56:83:0b:
8d:d1:ae:7a:be:80:42:10:99:53:40:74:e4:d9:00:
df:64:f1:5c:33:c8:50:08:6e:82:03:e7:ff:1c:f1:
c1:9b:c6:4d:61:20:9d:27:cf:a3:b5:4e:3f:fe:c8:
c0:11:22:4a:cf:41:8c:1f:67:2e:44:f6:82:6d:2b:
14:1c:1b:72:ff:eb:c5:dc:b8:21:22:df:fe:47:f9:
e8:db:57:7f:7d:3f:fa:13:f5:87:4e:6b:4b:24:a6:
62:c1:19:71:25:e2:e1:f6:8e:52:71:94:af:f5:eb:
d8:0c:0f:fe:93:6c:b5:66:87:20:c8:47:43:a5:25:
6d:96:d6:93:25:2a:8d:f4:bf:04:56:08:b8:55:2f:
19:b7:01:94:da:dc:22:57:d2:f1:11:c4:24:fc:ec:
3c:85:c6:8b:c8:50:33:9f:72:7c:dc:80:c6:60:9e:
ad:38:e6:a9:6a:9e:2d:90:9c:fa:32:6f:0f:4c:1f:
07:e0:1a:e9:54:8e:d7:5d:24:55:60:72:c7:ca:b3:
37:ba:19:38:94:21:55:0d:32:0a:34:1f:a3:6d:ff:
3d:bb:ae:40:b4:14:f7:cf:7f:5c:73:a9:66:c6:d5:
40:f7:0e:ce:e8:e0:65:fd:40:03:1e:12:79:b8:c2:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:71:41:C9:BA:D6:E6:FC:DC:2D:23:4B:93:86:90:AA:5F:E8:AD:E5
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/e3FBybrW5vzcLSNLk4aQql_oreU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
30:17:66:ea:55:cb:0a:de:11:62:da:ac:d2:52:dd:eb:d0:6b:
94:d1:57:b2:68:a0:80:79:8b:cd:46:f4:99:4c:99:e8:00:15:
ff:e5:e3:b3:5a:fe:ca:88:4b:14:35:5c:7f:20:f2:75:df:1e:
1f:36:d5:0f:06:6e:05:8c:2b:fa:1a:66:f1:b5:53:40:b7:15:
49:ae:fe:dc:e9:e6:28:02:a5:d7:7b:c1:a2:ce:01:f3:87:d3:
2c:a6:46:50:8b:e6:d8:31:9e:c7:f4:ee:f4:a3:ee:79:46:db:
15:69:16:73:4f:97:c4:84:f5:27:3a:d3:bb:2f:72:a4:54:c7:
91:32:75:ee:08:0f:7e:73:c1:b6:bb:30:3e:86:d2:fc:a3:f9:
36:80:0b:01:8e:bc:b6:38:93:cc:df:fe:de:f4:24:ba:6e:e5:
32:07:dc:06:1b:63:db:7b:5b:37:bd:33:9b:31:88:3d:28:f0:
b4:4a:8d:f6:e0:49:cf:51:47:58:08:9c:b6:de:a9:00:91:e7:
b7:87:5a:96:1a:25:06:05:85:16:07:28:9a:01:9a:19:9d:33:
5b:56:1d:72:70:22:fc:80:1f:7c:2f:29:13:ed:5a:43:82:24:
6f:ec:3f:e2:c9:f3:d1:0f:76:f7:44:cf:60:97:14:ca:d3:35:
62:8c:c7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org