Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/X876oPJiJ1mkW1cMUYosm6kOhzc.roa
File: X876oPJiJ1mkW1cMUYosm6kOhzc.roa (raw, json)
Hash identifier: k/tzpuS8fNM/TfhSDfIMxgY2oA0jM5Jr+7Wv6EgnL34=
Subject key identifier: 5F:CE:FA:A0:F2:62:27:59:A4:5B:57:0C:51:8A:2C:9B:A9:0E:87:37
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01865AAC28E238475E23652C00D6D6FED0D5
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/X876oPJiJ1mkW1cMUYosm6kOhzc.roa
Signing time: Thu 16 Feb 2023 14:41:17 +0000
ROA not before: Thu 16 Feb 2023 14:41:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.253.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 07:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5a:ac:28:e2:38:47:5e:23:65:2c:00:d6:d6:fe:d0:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 16 14:41:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fcefaa0f2622759a45b570c518a2c9ba90e8737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b6:9e:22:25:4d:fa:bb:e2:9b:f0:2b:bd:1b:
d6:6b:0c:02:57:b8:e3:5b:e5:b4:9c:4e:84:fa:19:
5b:23:72:94:6c:59:aa:06:3d:bf:92:87:b6:7d:c9:
a8:49:04:8b:83:30:dc:59:79:b1:be:d5:53:86:51:
72:42:62:bb:7a:20:3e:99:92:9f:f6:7d:d4:33:90:
08:fc:1f:5a:ed:11:f1:64:24:bf:5b:c9:f0:75:77:
df:42:f3:93:f0:92:95:8f:3e:3b:06:71:71:c6:98:
52:d0:e9:0c:8b:8d:06:35:96:b1:f5:f9:2c:ac:9b:
3f:33:d7:05:9c:b1:a4:da:32:2d:dc:13:bf:d8:63:
d7:4f:52:46:ae:13:1c:53:79:68:26:c4:b5:35:24:
38:b8:35:aa:5c:9e:82:e2:90:fb:4a:81:e2:d5:bd:
46:20:f0:0d:27:e1:73:ba:b5:07:bb:2d:b6:d8:fd:
2a:f9:4e:50:2c:cb:14:37:ea:2c:32:28:af:45:66:
f1:51:75:08:45:96:69:54:5e:7a:59:ba:38:3b:7d:
81:1c:22:4f:51:db:70:c3:0d:8d:de:2d:cc:f2:80:
65:d6:f9:ef:d2:0b:67:1d:09:58:8d:bd:a6:fd:04:
83:8b:ff:a1:b4:5c:d6:92:ed:0f:aa:fb:ed:07:2b:
c1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:CE:FA:A0:F2:62:27:59:A4:5B:57:0C:51:8A:2C:9B:A9:0E:87:37
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/X876oPJiJ1mkW1cMUYosm6kOhzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
46.243.253.0/24
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
85:fb:c2:9c:36:ad:d0:17:15:57:ba:df:ec:77:47:36:f7:11:
c8:35:28:d2:2e:48:31:7b:61:e1:3a:d0:21:ec:45:b8:86:22:
24:66:de:a5:d7:85:27:ce:59:5e:a4:c7:de:7f:8d:8c:eb:7e:
fd:bd:28:3b:c1:16:67:66:f5:d8:56:11:09:84:93:bd:b0:d5:
f2:03:ba:c8:c2:d1:67:bc:bb:eb:98:9a:cd:a5:96:12:c8:f4:
e3:4c:2e:42:54:88:c0:45:a7:b1:92:c0:e1:4d:d2:49:8b:f4:
18:fe:7c:8d:78:92:2b:5a:10:1f:13:d9:e8:69:c0:f5:e7:32:
a9:4d:34:37:f0:94:e4:b5:71:37:29:27:f4:5c:0c:79:ca:0c:
10:d6:a5:86:ef:09:50:1f:02:ec:bd:9b:7b:fc:ca:dd:ae:47:
bb:22:9e:92:bd:30:d8:40:55:ca:93:98:97:99:92:0c:0a:07:
d1:08:d5:d5:ff:d9:10:85:ec:9b:ed:bb:a3:f1:80:df:85:77:
8c:ce:01:95:84:1c:b3:9b:28:d9:33:08:36:e6:71:34:b4:fa:
14:2d:1b:b6:94:6d:c7:ab:e1:f4:a6:26:98:68:39:a6:05:85:
e2:54:16:90:bf:94:5b:35:58:bd:70:30:88:02:57:3f:72:99:
af:aa:48:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org