Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rca8uq07Znp9fzAa0_YYcbS1uEg.roa
File: rca8uq07Znp9fzAa0_YYcbS1uEg.roa (raw, json)
Hash identifier: 6sLFnbNWT9hQpnMg0aO6nEzl5wxrseJuqVz6HEnXTeU=
Subject key identifier: AD:C6:BC:BA:AD:3B:66:7A:7D:7F:30:1A:D3:F6:18:71:B4:B5:B8:48
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018CCEC9CB6AA49DE0009FC00171CF67F92E
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rca8uq07Znp9fzAa0_YYcbS1uEg.roa
Signing time: Wed 03 Jan 2024 10:06:20 +0000
ROA not before: Wed 03 Jan 2024 10:06:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.204.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
45.132.61.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jan 2024 11:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ce:c9:cb:6a:a4:9d:e0:00:9f:c0:01:71:cf:67:f9:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 3 10:06:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adc6bcbaad3b667a7d7f301ad3f61871b4b5b848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:2b:8f:ab:56:72:ed:07:ad:1b:86:08:69:
fa:61:1f:97:3f:9f:bc:08:b6:ba:f1:fd:91:37:2b:
3b:5a:1b:3e:1b:37:5f:33:4c:4e:89:10:60:05:e7:
8f:2a:3e:33:ac:85:4a:70:3c:6c:ce:b5:ca:31:20:
0f:91:db:92:f4:d0:03:b4:c5:b0:3c:1c:90:36:c3:
af:87:a9:53:fa:e8:04:b2:5e:83:bb:09:20:ce:67:
d5:8a:de:4c:3f:f2:05:3c:b5:31:db:06:31:ed:71:
39:61:07:f8:1e:ff:00:c6:73:8c:25:89:5c:f2:22:
5d:5a:75:71:92:ad:71:c5:be:46:dc:bb:16:0d:d3:
d3:f5:e6:4c:f1:c5:c2:09:07:59:b1:3d:a8:00:8b:
9d:9c:3e:c3:d0:3b:84:9e:99:e5:8e:86:a1:ad:bf:
9b:65:ac:99:19:77:13:57:1b:57:c8:99:24:3a:6f:
57:29:3a:8f:9e:d6:32:d1:72:2e:0d:d6:e7:3a:c7:
96:fd:9a:66:16:85:17:df:a1:d5:dc:b1:bb:ab:2c:
73:c9:ea:dd:28:07:f4:d0:0b:42:b2:e8:5e:68:5a:
5a:82:2f:a3:fd:05:1d:04:92:61:05:f0:f7:34:8f:
cd:53:9e:ab:73:99:5b:06:39:60:23:6a:bb:d4:d1:
40:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C6:BC:BA:AD:3B:66:7A:7D:7F:30:1A:D3:F6:18:71:B4:B5:B8:48
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/rca8uq07Znp9fzAa0_YYcbS1uEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
Signature Algorithm: sha256WithRSAEncryption
74:6e:a0:3c:14:63:b5:9d:d7:8c:87:0a:b6:9a:14:fb:11:da:
14:16:17:70:06:d2:ba:9a:ef:2d:12:d0:fe:25:36:2e:88:8c:
b8:51:3b:82:2e:86:5b:e9:2d:6c:da:48:e1:5f:61:19:b5:22:
b1:0b:0d:69:9b:88:f6:f2:61:73:8a:24:a4:25:a9:79:59:56:
71:7d:ae:51:09:1b:40:55:55:95:ad:42:ec:6b:9a:98:2a:52:
97:59:f6:b0:27:72:9f:5f:cb:b8:c2:7a:73:c0:fd:63:07:94:
91:c1:9c:48:62:6d:b9:65:88:c3:4f:97:95:51:60:b3:bb:43:
43:c9:16:70:6a:ba:68:ed:87:f8:71:45:7c:1d:ba:eb:bc:fa:
20:db:ac:9a:e6:39:6d:50:be:e5:b6:72:c2:f2:74:5d:17:fd:
f9:d4:02:60:a9:8a:56:a8:d4:71:ab:6b:67:72:15:7d:c7:b0:
22:de:fd:f5:47:ca:e1:ef:77:c3:0c:a1:69:77:df:ca:27:52:
07:4a:74:55:83:ee:a7:93:d6:cc:75:ef:24:ea:fb:10:8e:d8:
b8:82:e8:9e:78:ab:91:57:aa:02:1a:50:fb:07:af:3c:9c:8b:
c9:8b:6b:0e:87:35:c0:85:14:de:7b:98:05:b4:46:21:44:77:
89:6b:26:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 16:51:21 2024 by rpki-client on console-ams.rpki-client.org