Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/t9SWxOUnST2O-UnWxCXYcSDSqb4.roa
File: t9SWxOUnST2O-UnWxCXYcSDSqb4.roa (raw, json)
Hash identifier: XdVpIw0GGZBFJqPYqCx/qGRUBQNgmJxttWpdcMBVJkw=
Subject key identifier: B7:D4:96:C4:E5:27:49:3D:8E:F9:49:D6:C4:25:D8:71:20:D2:A9:BE
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018F7216281269324A43D2C286B7F1D3DCBB
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/t9SWxOUnST2O-UnWxCXYcSDSqb4.roa
Signing time: Mon 13 May 2024 13:13:25 +0000
ROA not before: Mon 13 May 2024 13:13:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 Jul 2024 08:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:72:16:28:12:69:32:4a:43:d2:c2:86:b7:f1:d3:dc:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: May 13 13:13:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7d496c4e527493d8ef949d6c425d87120d2a9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:f2:dd:b8:26:61:9e:1e:a6:93:59:52:12:
67:e7:76:d2:84:d8:ab:2b:09:58:1f:05:19:9e:36:
c7:2c:3e:17:ac:b0:7a:c7:ce:a7:f9:66:83:64:be:
51:7b:d8:b0:90:27:a7:f6:59:d3:d9:75:92:c1:5f:
68:a3:e0:5f:4c:7d:a1:c7:ab:3a:be:01:e8:6e:41:
25:89:42:81:98:4a:ec:0d:c4:2b:cb:bd:e3:d8:85:
6f:ec:f5:f0:db:43:cf:40:d5:58:fb:e7:53:00:1f:
3f:f6:8a:58:fd:ce:11:3f:1b:86:6c:1a:a8:05:ff:
47:88:5f:04:44:4c:11:e1:3f:99:47:9b:21:7d:08:
04:32:15:dd:f3:17:cf:62:18:88:a0:64:94:5f:4f:
7e:52:94:f4:bd:31:a9:d6:eb:a3:df:b9:ad:2f:73:
38:67:46:c3:d8:73:4c:e6:3f:7e:55:91:d7:1e:ba:
8c:0e:a9:1e:44:b7:6d:22:c4:f0:54:00:0c:76:db:
15:ba:ae:59:29:07:59:ae:19:a6:fc:76:5f:41:53:
7d:0b:b2:14:cc:b2:2f:38:c5:2c:74:e9:f6:70:55:
1d:4b:d1:dd:74:a6:44:a6:a6:63:9c:80:69:03:00:
17:7b:61:31:12:fb:00:6c:af:e8:51:0b:f8:8c:d2:
c0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D4:96:C4:E5:27:49:3D:8E:F9:49:D6:C4:25:D8:71:20:D2:A9:BE
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/t9SWxOUnST2O-UnWxCXYcSDSqb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
b8:8a:ac:36:60:a2:ba:71:52:9f:be:4c:1c:b8:79:42:a2:7e:
d8:d2:b7:ba:f2:c2:c4:06:db:02:f4:ef:5e:c9:e2:45:7c:ee:
fd:a8:16:03:26:1a:03:73:05:2b:44:37:cd:16:a7:8c:00:df:
3f:cd:c7:74:5e:35:0c:a6:d5:e7:2f:20:b6:b8:ab:87:dc:91:
29:ab:59:b7:e6:42:bb:ba:cb:21:11:8e:0d:79:6c:6e:eb:fb:
d4:2f:2f:8a:0f:c2:90:ac:c7:c4:b3:f4:1c:e9:a9:c0:6a:f0:
8e:1b:cc:ad:90:cc:d3:01:2e:61:d4:87:fb:d7:10:21:9d:eb:
74:84:ec:8c:2a:ff:da:aa:a4:cd:97:50:dd:38:6c:69:f7:9c:
63:b3:24:e4:ac:65:3c:0a:d0:e4:d3:e7:76:30:e3:79:7e:50:
23:bc:cb:5b:09:c2:d5:aa:10:d2:70:48:ed:d2:46:7f:92:9e:
b2:f3:5b:67:dc:14:0c:1d:83:a3:92:fc:84:a5:a2:39:91:3a:
36:ec:8e:9a:0f:32:d7:21:20:e5:c2:ec:38:7c:74:45:a3:91:
b3:b9:97:c9:9b:7b:fc:63:1a:62:f2:93:5f:c0:51:21:f0:2f:
cb:2e:1c:8b:a8:70:e9:76:3a:25:f9:cc:8c:d2:a9:03:66:6a:
b4:d0:69:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 10:27:33 2024 by rpki-client on console-fra.rpki-client.org