Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/6PmL3HKBr48NlYI4OgEGlfxeWCk.roa
File: 6PmL3HKBr48NlYI4OgEGlfxeWCk.roa (raw, json)
Hash identifier: acKSqCznO2HUIkPtHFtBWTZ/8jI/SrPDrtFbGSI9rEU=
Subject key identifier: E8:F9:8B:DC:72:81:AF:8F:0D:95:82:38:3A:01:06:95:FC:5E:58:29
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018AD23B29EFD91E7D0F5DFFA216C084202B
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/6PmL3HKBr48NlYI4OgEGlfxeWCk.roa
Signing time: Tue 26 Sep 2023 16:03:27 +0000
ROA not before: Tue 26 Sep 2023 16:03:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.72.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 08:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d2:3b:29:ef:d9:1e:7d:0f:5d:ff:a2:16:c0:84:20:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Sep 26 16:03:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8f98bdc7281af8f0d9582383a010695fc5e5829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d2:d9:bd:87:65:5a:dc:65:d3:84:5b:b1:c2:
f3:9b:4a:a2:4b:8b:dc:19:59:9e:3c:33:2b:a3:7d:
c8:d7:47:c8:83:5b:50:c3:3f:d4:6c:4e:56:a7:e0:
29:11:f4:05:14:46:98:43:f8:5a:88:48:e5:f8:1b:
40:7b:48:a9:aa:c4:4b:fe:18:25:6f:3e:22:ee:25:
61:96:e3:1b:df:f2:e3:f2:39:96:43:f9:5e:d5:c6:
69:d0:40:06:6c:b3:fe:87:36:12:be:8e:8e:47:1b:
ef:cb:04:b6:c0:40:cb:90:98:86:41:ae:05:f2:66:
0c:7a:00:6b:c8:69:9b:6a:f7:5c:27:5a:be:ce:47:
1e:6f:f4:54:a2:3f:ac:3e:d7:2c:38:a8:21:8e:5b:
4c:ca:29:01:9e:ca:82:a0:73:8a:bb:1b:f3:d0:14:
cf:d6:fc:48:1d:f0:be:5d:ed:fa:fe:10:7a:ba:d6:
e3:d6:b4:cf:8e:9f:44:a1:27:da:5b:56:60:dd:8b:
a0:91:6c:3c:30:75:2e:d2:18:65:73:6b:58:5d:00:
6b:c8:09:0b:d0:41:7e:61:f5:52:f1:55:b6:22:22:
7c:db:93:71:2e:08:1a:9b:55:7d:ea:ac:0d:53:bf:
ab:1c:4d:56:10:26:4a:43:4b:a3:cc:d4:90:fe:e0:
e7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F9:8B:DC:72:81:AF:8F:0D:95:82:38:3A:01:06:95:FC:5E:58:29
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/6PmL3HKBr48NlYI4OgEGlfxeWCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.72.0/24
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
51:49:8b:a4:ba:af:74:92:ec:55:c8:e7:2f:4c:44:43:37:97:
68:a4:e5:7f:cb:9e:51:65:2f:be:9f:6e:6d:db:ee:c2:6d:95:
3a:9c:b7:e4:cc:89:c1:e8:aa:37:47:96:15:86:2c:76:a0:a1:
03:19:89:95:82:30:51:28:b2:79:19:cb:03:be:3d:7f:4a:0f:
33:8b:2f:e7:43:92:e0:09:76:1a:8d:81:7e:b3:dd:8c:f9:93:
70:ae:3e:d2:1e:c7:7b:61:b8:19:27:5f:37:10:29:23:74:2a:
56:eb:12:00:47:c4:4b:90:02:a9:9f:2a:4e:93:99:cd:68:c6:
75:ce:81:32:17:d6:02:74:e1:55:17:c6:c8:f8:5c:5f:f4:b1:
17:ea:02:1c:c0:dd:50:fc:38:e9:f9:88:8b:df:c1:71:dc:26:
7a:b6:cc:63:eb:1e:ed:d0:eb:f2:d2:e9:93:f3:de:68:8f:91:
e9:2f:0b:03:ee:06:8d:a8:6b:1c:f8:b3:78:77:80:0e:ed:9a:
b1:2d:2d:8c:96:ac:3e:7a:47:8a:f9:d7:eb:35:09:04:22:b2:
19:3b:94:93:37:47:11:93:0e:86:3a:0a:49:ec:f8:d0:aa:c2:
f5:99:66:f5:74:32:39:17:06:c6:62:8d:57:b9:43:1f:3a:cb:
cf:0e:7f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org