Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/7dSyIFKNbMvWOojtyzaL37_kcow.roa
File: 7dSyIFKNbMvWOojtyzaL37_kcow.roa (raw, json)
Hash identifier: 4XbT+6L85vB2hW5Qc2joLROOHJvW6x806WJJPHfkY5Q=
Subject key identifier: ED:D4:B2:20:52:8D:6C:CB:D6:3A:88:ED:CB:36:8B:DF:BF:E4:72:8C
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018ABC4425A47780A6D968A5A9AC82203FB1
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/7dSyIFKNbMvWOojtyzaL37_kcow.roa
Signing time: Fri 22 Sep 2023 09:41:37 +0000
ROA not before: Fri 22 Sep 2023 09:41:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.72.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
37.230.232.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 16:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:44:25:a4:77:80:a6:d9:68:a5:a9:ac:82:20:3f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Sep 22 09:41:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edd4b220528d6ccbd63a88edcb368bdfbfe4728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:69:60:47:d9:a5:f9:e6:7a:0c:18:3d:28:
f6:a2:24:47:bc:ef:e9:44:bf:99:d2:03:ce:c3:91:
8a:a5:86:5d:98:7a:76:97:08:a0:7a:59:b6:7d:2a:
3d:2d:5d:a7:1a:11:2e:7c:38:22:0a:c6:8f:d7:89:
49:24:3a:6c:42:c5:23:c5:f7:a3:fc:e3:31:c2:2b:
37:7c:d0:17:40:a4:c8:5c:4b:3a:91:28:0c:ef:19:
3d:be:3c:61:62:71:1b:6a:e3:c1:d3:22:82:b8:0e:
c2:40:11:91:0d:ae:c2:78:b2:51:7b:e8:87:33:c6:
0f:bf:82:e3:7d:b1:92:cd:15:87:8f:eb:23:6e:1f:
38:6f:c0:00:1b:f0:20:fb:fd:e1:aa:92:b0:a5:0f:
3a:e1:93:aa:3a:06:9f:77:49:3e:91:77:06:0a:5a:
d6:65:68:42:2c:2a:59:7e:50:64:7d:a2:3c:37:55:
84:a4:6f:0a:3b:e0:aa:65:80:da:2b:c3:c1:e3:46:
f7:f7:6b:f2:67:7e:e3:17:82:51:32:d1:10:6a:ba:
5e:37:22:90:b7:69:43:10:5c:44:b0:cf:61:0b:1a:
5d:6b:d9:5c:ee:28:33:af:16:d2:74:3e:19:8f:0b:
b1:0a:eb:f3:96:f8:14:a9:7b:1c:ca:6f:3e:40:bb:
32:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D4:B2:20:52:8D:6C:CB:D6:3A:88:ED:CB:36:8B:DF:BF:E4:72:8C
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/7dSyIFKNbMvWOojtyzaL37_kcow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.232.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.72.0/24
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:ac:04:e3:c6:54:fd:49:e0:8f:29:1e:9c:a4:c2:56:5e:5e:
ca:7c:b9:b5:51:92:b5:52:c6:a0:4c:43:e0:07:08:ac:90:f3:
f9:70:8a:14:50:de:6e:f8:d0:28:e6:97:0d:e6:c5:49:bd:fa:
f0:56:a5:9c:61:00:72:5e:ef:ab:ea:89:52:d1:8e:87:e1:c8:
cb:84:56:15:81:a8:7a:f5:c5:b2:be:b6:5b:e1:ba:78:f2:dd:
ba:42:74:6d:b4:7e:c9:7e:1b:07:89:ef:21:29:d7:ea:40:ef:
e0:ee:50:98:8d:01:dd:6d:be:cc:bb:1e:38:b2:11:5a:18:1d:
43:2b:e5:06:f2:66:19:d6:e0:2f:c0:57:63:5a:5b:a1:6f:61:
48:a9:9d:80:68:ad:50:bd:eb:d2:cb:d0:be:e6:1f:d3:39:39:
7b:6f:e3:cc:ac:3c:6a:b2:83:18:19:ed:f6:06:c3:cc:af:4a:
ad:1b:cb:18:8c:52:2f:a4:ad:2c:50:4d:eb:c5:bd:46:64:61:
0c:98:56:5b:38:0d:c1:aa:ed:d2:f1:5a:a7:d6:70:de:5f:7f:
99:54:62:eb:e4:0f:de:80:9c:5b:fe:47:59:16:f2:52:0d:92:
4a:fa:d2:1f:29:4c:c1:44:a8:bf:9f:d1:ed:c4:b3:34:af:3f:
6c:9d:67:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org