Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Q7uSrTmAI2Q2jOUj1FknsUnrlaU.roa
File: Q7uSrTmAI2Q2jOUj1FknsUnrlaU.roa (raw, json)
Hash identifier: KN5Y46uRD8LAoUud/Ao5JfHaAsSdgzdN4R6X17X0F6U=
Subject key identifier: 43:BB:92:AD:39:80:23:64:36:8C:E5:23:D4:59:27:B1:49:EB:95:A5
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018741F250125F8965DAF1D611534238EAB4
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Q7uSrTmAI2Q2jOUj1FknsUnrlaU.roa
Signing time: Sun 02 Apr 2023 12:30:11 +0000
ROA not before: Sun 02 Apr 2023 12:30:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.253.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:41:f2:50:12:5f:89:65:da:f1:d6:11:53:42:38:ea:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Apr 2 12:30:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43bb92ad39802364368ce523d45927b149eb95a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d4:58:de:c2:d5:93:d0:c6:4c:af:13:2c:3f:
1f:3d:dd:19:12:63:db:12:98:ed:f4:1f:19:cf:68:
fd:22:a5:87:21:8d:39:3f:43:e2:75:91:87:fb:44:
1c:81:15:c3:ce:b7:8c:5c:d8:af:51:c5:17:6c:3e:
37:7c:18:0d:9d:64:f0:5b:97:8f:e1:f3:ce:4c:1e:
0b:c4:ef:cf:ab:bc:33:c8:ee:3f:66:ee:8b:0a:84:
e0:13:c7:e6:fa:8f:99:5d:e0:2f:11:c1:b6:b0:9b:
3c:1f:45:8a:ba:9f:dc:b2:fa:b3:f4:69:f2:6b:61:
b2:2c:13:71:ff:6a:00:c1:53:68:48:26:e6:0e:89:
8f:0c:3c:10:44:c8:d9:85:6d:99:c7:98:1f:96:6b:
16:48:28:96:9a:35:4b:75:dc:d4:42:1e:ab:45:9c:
b0:a0:58:3a:7a:3b:2b:d9:f7:a5:2b:d2:7e:e1:ad:
f6:c9:94:ac:80:f9:27:72:e8:71:7b:0f:e7:54:85:
6a:9c:f7:9d:35:23:be:66:ad:7f:d8:de:de:4b:88:
3b:10:28:c8:96:b8:9f:74:17:c5:0c:c1:75:09:ce:
f5:15:1d:d2:46:91:bf:cb:23:ee:bb:6e:ba:43:48:
98:43:a5:df:dd:a1:63:fc:e4:7e:8d:86:f8:7f:52:
be:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BB:92:AD:39:80:23:64:36:8C:E5:23:D4:59:27:B1:49:EB:95:A5
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Q7uSrTmAI2Q2jOUj1FknsUnrlaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
46.243.253.0/24
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:28:90:e7:3b:a3:54:c9:3b:25:23:d2:60:f3:fe:77:65:bb:
ce:b7:91:b0:3b:37:dd:f1:1a:cf:a3:43:f1:4e:09:fe:bb:06:
51:e6:ec:b3:8d:fd:68:27:07:b0:e2:56:f6:bf:77:67:8b:37:
36:ef:01:6f:b0:e0:a7:b6:6e:53:95:d8:d1:cf:f8:51:a6:24:
10:d3:6d:03:e0:ff:71:11:7e:b9:12:ff:52:a2:40:59:4f:e0:
83:ce:56:03:88:86:88:67:18:ae:05:6b:fc:b5:f5:35:a5:03:
6c:bf:04:cc:98:cb:9d:ed:ca:fa:3c:0b:36:58:aa:46:3a:ad:
cd:a9:95:80:86:e4:50:4d:56:d9:1f:88:b2:ca:c7:53:c6:ea:
93:d4:bd:6c:03:dd:61:00:e1:66:e7:e5:33:1c:ed:67:da:59:
d8:0c:45:15:0c:4e:73:bc:95:f6:dc:04:e9:08:22:bd:ce:c9:
f7:a0:3c:91:ec:19:fb:c3:04:1e:59:73:a3:c8:c2:f7:12:f5:
e6:ae:bf:06:2a:d0:25:3e:f0:ab:88:91:02:e5:8e:6e:59:45:
6a:4f:da:e6:3a:e6:2d:62:9f:0a:ce:54:e9:d8:a6:2c:d8:3d:
28:b0:d5:40:a7:c0:79:0f:1b:3a:f9:4e:f5:00:a3:17:4a:64:
2d:46:db:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org