Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/FsZ4GbMvSswIblpwb75Cuk2fVKU.roa
File: FsZ4GbMvSswIblpwb75Cuk2fVKU.roa (raw, json)
Hash identifier: xVXvAtn6rffESnxiawYHhuPZ/2Ig9BSyimZqV0nJDO8=
Subject key identifier: 16:C6:78:19:B3:2F:4A:CC:08:6E:5A:70:6F:BE:42:BA:4D:9F:54:A5
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01864B68238B6071FAE1ADDF0F4ED57C5B42
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/FsZ4GbMvSswIblpwb75Cuk2fVKU.roa
Signing time: Mon 13 Feb 2023 15:32:41 +0000
ROA not before: Mon 13 Feb 2023 15:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.253.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.188.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 08:36:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4b:68:23:8b:60:71:fa:e1:ad:df:0f:4e:d5:7c:5b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 13 15:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16c67819b32f4acc086e5a706fbe42ba4d9f54a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:15:c6:13:3b:99:45:d6:5a:a1:e3:ac:99:80:
17:ae:6d:81:67:d6:10:06:0c:18:93:a4:62:91:6a:
9d:f5:0f:f7:7a:cf:eb:92:a2:c3:5a:59:9a:5a:7c:
bf:b4:c2:06:4e:09:1a:cc:3b:4d:3c:a8:72:37:47:
56:b7:85:22:42:1d:cd:31:3e:8b:06:de:d7:b4:87:
db:ee:92:b9:7c:fe:ba:f8:84:8f:79:5e:43:80:d4:
6c:db:5c:dd:17:02:33:5f:65:08:d8:8c:a9:c4:4e:
a6:f4:a1:de:ad:e1:c9:ff:9f:58:62:eb:a3:b2:83:
25:4b:9a:bf:bc:d6:e3:d8:bd:0c:5c:b8:66:09:dc:
e5:03:6d:51:26:09:6d:95:10:25:58:c7:f7:1e:19:
55:7b:64:f0:ff:08:ad:3f:44:a6:2d:b0:eb:ff:c7:
dd:67:2b:a6:4a:a0:64:d2:4a:1f:50:18:4e:8c:fe:
15:47:4f:25:64:0f:4f:8b:11:0e:4e:9c:05:86:6b:
e5:3e:81:57:dd:77:bc:80:f8:11:83:d1:53:5f:5b:
fb:4b:c9:70:aa:2f:d1:93:0d:1f:70:59:32:91:38:
c0:ed:35:e2:a4:67:f0:40:5d:3c:1b:3b:27:23:b1:
33:0b:d6:f8:99:d8:8a:78:fa:38:30:41:fc:26:13:
b7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C6:78:19:B3:2F:4A:CC:08:6E:5A:70:6F:BE:42:BA:4D:9F:54:A5
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/FsZ4GbMvSswIblpwb75Cuk2fVKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
46.243.253.0/24
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.188.0/24
141.101.191.0/24
141.101.199.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:a6:6b:82:99:4e:03:4f:8a:b7:5b:13:a7:df:17:0a:ec:e1:
f4:98:28:33:51:48:17:0c:86:5a:4e:4d:14:ae:18:2b:71:69:
a9:7f:20:c1:32:37:4a:3d:fc:34:d1:1f:6d:b9:3f:7f:03:cc:
66:34:fe:e8:3e:dc:9c:b6:e1:44:fc:7e:e7:6c:27:42:9f:5c:
c2:79:19:50:d5:09:55:8f:08:1b:66:c2:36:39:b4:9c:7d:d9:
19:f5:40:fc:f2:74:3d:f9:c7:64:db:16:b5:70:ca:4b:20:1e:
f9:a1:29:95:5b:dc:23:a0:17:76:f5:f1:84:d5:47:11:0d:7b:
42:95:34:d3:b2:80:3b:42:a8:35:8a:3d:84:f3:9f:a4:84:d8:
c7:f0:ac:cb:bf:17:26:d9:fd:d0:b9:f5:f9:85:de:50:7f:ef:
15:8c:2f:8f:67:ae:0b:53:a4:96:ef:65:cf:47:74:47:ef:2c:
fe:52:5f:38:85:a8:ec:96:b2:64:d7:5b:c1:a2:0f:ff:4f:16:
df:73:ea:7d:73:5a:9c:24:2b:6f:75:81:df:80:4a:53:40:c3:
1e:2f:1b:04:f8:06:55:73:bc:30:0c:cf:97:49:13:66:90:46:
c7:95:b6:8c:31:2c:91:b6:44:b1:e3:74:68:90:94:2f:2c:5f:
95:1e:55:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org