Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nYUlNsETpIbdnBWktHEUw8JOkck.roa
File: nYUlNsETpIbdnBWktHEUw8JOkck.roa (raw, json)
Hash identifier: e+uVy8pYdPsvijOJ2kXRKWdupYGuEW9xriOqZf9d4EA=
Subject key identifier: 9D:85:25:36:C1:13:A4:86:DD:9C:15:A4:B4:71:14:C3:C2:4E:91:C9
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0190A0F90B4330A945D19DDF1D596D75903E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nYUlNsETpIbdnBWktHEUw8JOkck.roa
Signing time: Thu 11 Jul 2024 08:46:34 +0000
ROA not before: Thu 11 Jul 2024 08:46:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jul 2024 08:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a0:f9:0b:43:30:a9:45:d1:9d:df:1d:59:6d:75:90:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 11 08:46:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d852536c113a486dd9c15a4b47114c3c24e91c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f5:19:df:68:e1:ef:29:21:91:74:07:3d:43:
c8:59:37:62:40:fb:a9:65:98:e3:b3:fd:55:c9:4b:
94:a4:61:c1:b3:27:47:ef:54:7a:3a:1a:51:e2:28:
e8:55:ca:2b:bd:6c:1d:30:9c:da:79:19:35:6b:f1:
5b:44:35:f0:c9:23:6c:bf:0c:b1:8d:56:5e:f6:c4:
5b:73:9d:fd:aa:83:11:b0:39:27:cb:68:80:f7:c6:
27:a3:70:9d:a5:fb:23:51:e4:89:d9:a9:29:a4:db:
ce:c3:61:bd:e7:7f:4b:2b:14:71:fd:eb:41:f9:1c:
ab:b8:af:4d:38:e8:2a:5f:5e:e8:b8:ca:1c:44:17:
c2:b8:dd:e6:c8:4a:21:34:32:81:95:e8:5c:01:b8:
c2:d8:2d:c7:c3:9a:e1:66:84:17:90:99:28:d4:c0:
a9:c5:78:2f:51:5e:be:37:c7:66:f5:f0:59:93:07:
8a:26:e7:63:29:7f:ff:a9:ea:08:0e:1d:7a:58:d3:
41:85:a3:43:c9:c5:28:4d:93:db:21:f9:ef:d0:26:
94:70:69:0b:fc:fa:04:cd:56:ec:33:06:2d:8a:37:
15:11:9c:31:00:6e:c6:2b:b2:33:85:37:01:c9:bb:
dc:01:c2:3b:12:98:ed:db:bf:68:bd:17:69:90:6b:
b9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:85:25:36:C1:13:A4:86:DD:9C:15:A4:B4:71:14:C3:C2:4E:91:C9
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/nYUlNsETpIbdnBWktHEUw8JOkck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
ae:b5:ec:37:fe:56:5c:18:e0:60:18:4f:89:00:d1:f8:5c:21:
05:2a:1b:f3:f7:f9:a8:89:8c:d4:e0:6b:d8:a8:d3:f3:c8:c6:
96:a7:d0:96:d9:12:cf:8f:44:0b:d1:6e:f5:1d:b9:40:be:69:
6c:4b:9e:8e:66:1e:9f:48:31:93:bf:c6:00:48:47:47:42:d8:
9a:26:ac:66:28:ad:0d:f6:b7:50:6b:5b:1f:29:fa:56:39:66:
ab:72:59:d6:41:d9:22:4d:c9:ae:d6:7e:05:38:07:ac:ed:44:
53:b8:63:65:1b:1e:26:4b:56:af:79:e8:4b:97:d9:ee:7f:37:
26:81:dc:fe:5c:51:6b:e0:de:34:80:ef:96:e2:1b:e2:b5:e0:
c0:a8:ea:90:a5:36:1c:fc:6d:53:ef:28:93:79:95:1c:dc:94:
6a:9e:de:03:29:d5:ce:c0:77:7e:c7:5a:1c:3a:10:60:e8:5d:
90:7d:88:20:7d:64:c9:08:c1:08:02:62:31:8b:9d:fe:1d:44:
5d:ec:30:97:d4:64:9a:b5:ef:d7:45:ba:7c:f5:63:2a:24:7a:
ca:fa:56:a0:46:d9:54:a0:4a:dc:7f:9d:c4:6e:a8:1a:aa:2e:
60:3b:73:80:b6:00:2b:69:f0:c1:e0:58:34:5e:67:bf:9a:74:
83:51:63:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 11:10:05 2024 by rpki-client on console-ams.rpki-client.org