Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/w_JhYHNXnrio7d6dxdQ8Rvfle6g.roa
File: w_JhYHNXnrio7d6dxdQ8Rvfle6g.roa (raw, json)
Hash identifier: 9q+9GfgPT5X/BE/T4exUqz4IKaN0eDwO5P27eA0SH6Y=
Subject key identifier: C3:F2:61:60:73:57:9E:B8:A8:ED:DE:9D:C5:D4:3C:46:F7:E5:7B:A8
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01899CA2DE4618EF5925A7537800B903EA7D
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/w_JhYHNXnrio7d6dxdQ8Rvfle6g.roa
Signing time: Fri 28 Jul 2023 13:14:26 +0000
ROA not before: Fri 28 Jul 2023 13:14:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 28 Jul 2023 13:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:a2:de:46:18:ef:59:25:a7:53:78:00:b9:03:ea:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 28 13:14:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3f2616073579eb8a8edde9dc5d43c46f7e57ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5c:ce:f4:30:10:78:c3:46:c8:e1:62:b6:9f:
0f:ac:c3:3f:1a:46:d5:ba:4d:bc:aa:bb:1f:b3:a9:
1e:2c:06:da:e7:b6:39:09:bc:75:4d:38:c6:ab:9d:
0e:16:76:3c:d5:55:45:0e:e7:f0:aa:24:d3:b1:f2:
ea:ec:a1:3d:3f:6a:47:18:ee:bd:77:de:b2:5e:8e:
f5:b1:32:6a:ce:ff:c8:f2:90:b8:9a:ee:1c:44:3a:
9c:c6:2f:06:4d:65:97:5c:44:88:57:6a:da:20:b0:
da:4b:a1:c9:92:03:2f:b8:f9:44:c9:3b:00:a4:be:
1e:b3:76:f0:b2:73:0c:5a:7d:62:b5:1a:ab:d5:51:
0c:99:37:d7:8e:cf:46:aa:75:83:97:c4:25:78:e4:
22:ff:ee:de:1f:b9:cf:6f:73:f5:9f:41:d7:b7:6c:
59:91:68:b6:1d:2e:39:28:58:53:6a:97:cd:5f:04:
97:ec:73:35:de:c3:02:0c:ad:83:f4:66:a0:21:c6:
ae:f2:1c:c2:d1:52:1e:b7:a5:f9:52:d9:90:d6:ba:
88:98:7e:a6:38:b8:30:01:5a:81:db:8b:45:d6:1d:
42:de:89:54:47:af:1f:8a:b0:1d:88:52:cb:48:b4:
57:c8:96:7b:de:3f:9d:b8:e3:14:ce:7b:1e:b4:3b:
13:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F2:61:60:73:57:9E:B8:A8:ED:DE:9D:C5:D4:3C:46:F7:E5:7B:A8
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/w_JhYHNXnrio7d6dxdQ8Rvfle6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
ab:ae:08:41:0c:50:e0:9a:47:1f:db:cd:5b:48:af:78:b7:22:
ea:25:cf:30:9a:3a:2b:0e:1d:5d:ec:3f:42:7e:1f:45:c2:de:
be:f0:35:c0:b0:81:3f:a2:ce:54:1f:ec:8a:4c:31:40:e5:4c:
22:07:6a:06:cb:dc:e2:c7:25:a8:1c:43:55:c7:0c:0f:40:32:
ff:8a:d9:e7:a1:73:87:5f:2b:95:2e:ea:ec:81:e0:d5:1e:2e:
09:9e:6b:ab:6f:21:e0:66:64:79:85:30:8b:85:36:83:51:cd:
57:fd:d4:18:86:2e:f4:72:df:45:61:18:cb:41:e5:e2:60:ec:
4e:82:59:2f:2c:86:58:58:07:fa:4a:1b:67:43:6f:f3:6a:83:
f2:42:ce:46:a1:70:4a:d9:aa:e0:47:c6:54:db:be:02:18:b6:
65:5a:d8:80:e1:4b:96:ca:26:02:30:75:7a:d3:16:b7:24:4c:
76:1c:1c:a1:8d:34:73:41:31:d9:ca:37:b5:30:85:83:20:55:
0f:ae:b2:c1:53:f1:bb:cf:48:d3:94:87:55:45:07:11:e0:02:
21:86:5c:c2:55:ce:cf:4c:66:ab:36:2f:eb:01:5f:7a:ce:84:
5e:dd:d6:4b:bb:3a:20:0e:45:db:63:e0:34:ca:c5:f9:5d:ac:
09:dc:bd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org