Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/EjoDH8T6fScPoHMaBTnMBm1OUjI.roa
File: EjoDH8T6fScPoHMaBTnMBm1OUjI.roa (raw, json)
Hash identifier: 3F9qY/Ulhn/h6L8fv2QtQe1PRv57UmU5FpUaeaBcjDw=
Subject key identifier: 12:3A:03:1F:C4:FA:7D:27:0F:A0:73:1A:05:39:CC:06:6D:4E:52:32
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01946A5424416DE4D26D1893E0F429C0968F
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/EjoDH8T6fScPoHMaBTnMBm1OUjI.roa
Signing time: Wed 15 Jan 2025 14:18:06 +0000
ROA not before: Wed 15 Jan 2025 14:18:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58272
IP address blocks: 37.18.0.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.130.0/24 maxlen: 24
37.230.132.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.135.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.220.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.136.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.143.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
178.170.172.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.82.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
188.72.114.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 10:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6a:54:24:41:6d:e4:d2:6d:18:93:e0:f4:29:c0:96:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 15 14:18:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=123a031fc4fa7d270fa0731a0539cc066d4e5232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:20:f4:63:4e:7d:bf:27:a1:4d:af:e2:08:7c:
91:e2:0f:03:9e:cd:dc:76:23:cf:58:0c:ca:4e:1d:
7a:7e:f1:2c:d1:bc:93:69:6f:1c:15:0e:7e:48:1e:
d7:a9:34:4e:d8:d5:d7:f5:d8:36:61:85:1a:47:5d:
6e:a5:de:99:41:fd:b1:0c:f9:52:ea:1a:b1:b9:a9:
cb:97:40:b3:bb:a0:c9:1a:df:a5:f7:bd:c7:7c:03:
d7:8c:90:d2:07:5c:83:c9:ad:2a:d6:08:71:89:b7:
ac:e4:ff:c2:73:7b:81:71:7d:52:c5:78:a0:fd:48:
64:bb:1e:84:fd:c7:e4:e8:b4:e3:77:89:54:a4:3d:
0b:3d:43:cb:11:26:b7:e9:e9:01:c0:a9:93:d5:85:
29:3d:2e:75:7a:d9:8a:08:fd:98:66:8f:7f:b1:d5:
b9:bc:d2:b9:ac:4f:9e:b8:8c:1d:63:9c:37:9a:ac:
0d:e8:a8:2b:f8:7c:15:f4:bc:23:54:4d:a2:af:9c:
75:52:a0:99:4c:f0:b4:04:1a:51:8d:e3:32:95:9f:
7c:40:86:87:95:8f:16:22:a6:96:39:a4:5f:50:79:
19:06:de:2d:56:48:64:76:c7:97:9a:0e:37:55:63:
38:37:e6:f4:03:55:f9:c2:02:a2:d1:59:bd:b7:18:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3A:03:1F:C4:FA:7D:27:0F:A0:73:1A:05:39:CC:06:6D:4E:52:32
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/EjoDH8T6fScPoHMaBTnMBm1OUjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.130.0/24
37.230.132.0/24
37.230.134.0/23
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.220.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0-141.101.136.255
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
178.170.172.0/24
185.4.148.0/22
188.72.80.0/21
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
56:96:45:48:17:32:1a:fa:e0:80:84:89:7d:33:de:70:64:53:
63:40:5f:ed:0d:bc:f4:cf:75:7c:01:3a:68:ea:1d:40:d0:fc:
b0:bb:02:3b:56:0f:7f:21:e2:d9:2d:7c:1e:a7:ae:3a:85:e4:
51:5c:81:e6:1f:b4:22:20:bd:d4:f3:c3:7a:03:ea:68:41:aa:
54:b2:b0:b9:ea:2f:42:d8:c8:c2:b9:e7:5f:40:ab:9a:7b:69:
64:63:76:b6:52:4b:b2:3f:f2:86:b6:2d:a0:b4:5f:63:0d:45:
6a:41:da:bd:c4:2c:65:a9:a6:fe:72:57:e8:dc:86:ed:5f:4e:
9b:c1:d0:7c:df:a0:28:8f:e2:30:d6:98:d6:c5:fd:e8:97:3b:
ab:ac:a3:70:09:2c:b6:47:7d:03:9a:f8:0f:16:5b:f7:40:5b:
ca:94:9d:85:dc:44:42:a2:17:ff:74:97:0d:b4:da:c8:cf:e0:
14:c1:11:85:df:f4:f0:bc:fa:2d:77:1c:72:7b:73:8b:47:d8:
4f:a4:aa:16:79:d6:5a:3f:70:38:73:be:1e:8b:23:12:60:61:
d8:db:4d:4b:f0:f0:c9:7a:ae:ac:4b:e9:b6:af:62:56:cd:13:
b9:6e:b5:16:52:f0:64:b5:f9:77:f4:0b:13:46:ea:d7:75:44:
28:37:cc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:11:44 2025 by rpki-client