Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S1R7kzzYHqPSOYzw0RymDb2j9sk.roa
File: S1R7kzzYHqPSOYzw0RymDb2j9sk.roa (raw, json)
Hash identifier: LFQrNtCzOq7V7yDVaHAkqc+CsycgKldbNmfLMPzO9wA=
Subject key identifier: 4B:54:7B:93:3C:D8:1E:A3:D2:39:8C:F0:D1:1C:A6:0D:BD:A3:F6:C9
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 018D87E0D647C94B348383480D94EAD1DB41
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S1R7kzzYHqPSOYzw0RymDb2j9sk.roa
Signing time: Thu 08 Feb 2024 08:41:15 +0000
ROA not before: Thu 08 Feb 2024 08:41:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58272
IP address blocks: 37.18.0.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.143.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.252.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.72.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
188.72.114.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 07:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:87:e0:d6:47:c9:4b:34:83:83:48:0d:94:ea:d1:db:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 8 08:41:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b547b933cd81ea3d2398cf0d11ca60dbda3f6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9e:d9:f9:0c:57:99:d5:ce:23:f8:61:7e:3c:
2a:49:2b:58:12:4d:79:39:77:4a:8b:be:29:85:3d:
b7:d5:91:cb:3d:d7:bf:bc:74:7b:ef:17:c4:bd:ce:
80:a7:3a:9f:25:87:1d:d5:6c:11:42:8c:7a:2d:8f:
69:8e:ad:51:4e:d2:88:9a:72:95:54:22:70:4e:76:
27:71:7e:48:b9:02:02:f3:11:ba:ca:d4:00:21:e4:
90:90:df:2b:98:a5:76:1a:18:f3:6c:7b:f0:39:49:
90:a6:ae:f5:f9:cd:c9:6a:47:60:8d:a5:66:9e:32:
13:07:45:cf:aa:bf:b3:ee:0a:12:c0:f4:47:8b:31:
66:29:4e:9b:54:9d:d0:ad:49:17:1b:d5:78:41:51:
bf:7c:61:a1:6a:72:b1:3f:a7:f4:99:b7:43:2d:b8:
a2:70:c5:b2:d7:14:d6:1b:27:7f:30:0b:c8:6d:46:
57:ba:75:88:29:8c:60:3c:d7:0f:15:39:f9:81:59:
dc:a3:f0:a4:d3:ea:ba:8e:27:4f:ed:80:9f:4d:d5:
55:0e:42:ba:83:66:cb:b1:f0:1f:5b:44:c4:c8:1a:
04:e5:d9:34:d4:b3:d1:d0:5e:b8:a8:e2:32:75:5f:
6e:93:e4:75:2d:0b:93:e9:0f:a6:2b:e2:41:8c:58:
45:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:54:7B:93:3C:D8:1E:A3:D2:39:8C:F0:D1:1C:A6:0D:BD:A3:F6:C9
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S1R7kzzYHqPSOYzw0RymDb2j9sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.252.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.72.0/24
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
c8:9f:e7:4d:50:0d:ac:3a:e3:23:6b:96:22:54:80:1b:74:06:
2a:c7:47:eb:ef:a3:fe:ac:30:07:75:fc:8d:a0:13:3e:b8:09:
81:66:c7:3e:83:cd:b6:f3:90:88:9b:cd:f1:b7:1f:f8:a8:f1:
61:a5:f7:1f:f5:73:1c:9e:43:44:8a:30:f1:21:59:ee:95:82:
8e:77:97:fe:89:7f:0d:c8:35:1c:e9:25:36:f8:9d:5e:5e:2e:
6d:7f:16:6d:28:cb:b0:ed:c9:56:5f:26:c1:c2:04:bf:e0:db:
0e:64:4b:f3:21:c0:d5:88:22:20:67:25:cd:50:61:02:fe:40:
1d:aa:3f:bc:21:f3:96:5c:45:0e:b4:45:cb:19:76:15:50:05:
1e:5a:ed:54:ac:b0:67:00:88:dc:61:7d:96:41:ac:19:28:85:
2e:f2:6e:4a:44:bd:82:f7:59:8d:cb:25:e4:83:29:a3:65:69:
7f:2d:99:29:52:a6:3c:80:77:c2:93:3b:1d:40:e6:84:2d:6b:
fe:d3:21:39:87:49:0f:16:a4:74:a3:b3:0c:fa:ef:2f:51:ed:
ca:35:0a:55:23:8f:90:73:c6:21:61:a6:a1:e4:a9:1e:57:f2:
67:91:89:68:cb:b7:22:1b:e9:a9:93:c8:8d:8f:84:f8:3f:d6:
cd:46:96:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org