Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gUadyAsX0ytOWQWgKtDIccTIGIM.roa
File: gUadyAsX0ytOWQWgKtDIccTIGIM.roa (raw, json)
Hash identifier: 2DL+AlTJgcz2Ol+b+gXrX24fRKRbrzVdMhmdsihIDF4=
Subject key identifier: 81:46:9D:C8:0B:17:D3:2B:4E:59:05:A0:2A:D0:C8:71:C4:C8:18:83
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0185B9FB726346866E4FE61F3D515AA846E6
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gUadyAsX0ytOWQWgKtDIccTIGIM.roa
Signing time: Mon 16 Jan 2023 09:49:01 +0000
ROA not before: Mon 16 Jan 2023 09:49:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 13:46:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:fb:72:63:46:86:6e:4f:e6:1f:3d:51:5a:a8:46:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 16 09:49:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81469dc80b17d32b4e5905a02ad0c871c4c81883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:71:53:83:78:a6:f6:87:11:b8:58:2a:06:
1d:f6:36:2c:be:4c:d0:e1:5f:f0:e2:b6:41:68:5f:
5e:2c:f9:f3:33:cf:5c:60:88:dd:3c:5f:f0:65:ca:
3c:b3:5e:e9:48:31:de:43:03:25:1b:3d:85:c5:ec:
00:4c:18:fd:c6:da:e3:a8:42:d6:61:49:66:cb:52:
77:3b:99:56:23:e1:9a:3a:32:1a:9d:69:8b:44:37:
17:34:e1:71:72:2d:95:ee:17:b5:1c:ad:4e:f6:0a:
de:00:58:c3:00:90:43:c9:18:c8:5b:8d:30:fc:86:
cf:7d:04:01:60:1c:bb:c2:60:ae:7c:ef:cb:bc:c8:
48:84:b5:af:d7:e1:d2:b5:b4:9f:d2:ed:98:2a:69:
f0:02:2d:d1:1c:a4:4f:a5:ca:c2:57:d6:d5:23:e3:
80:3c:9a:0f:23:ab:15:bb:03:2b:fb:68:6f:22:3e:
70:ad:57:13:b4:f4:90:d8:15:a2:64:de:1c:04:e5:
f7:a7:25:ae:de:3b:27:70:d9:9c:8d:a0:e2:93:5e:
89:13:44:0b:28:8d:0c:21:f8:a6:33:77:6c:13:83:
86:ce:cc:d9:55:15:4b:1f:48:2b:7d:f8:34:53:1b:
69:c5:b5:a2:a4:b5:ae:b2:a5:09:cd:0a:c3:33:b7:
87:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:46:9D:C8:0B:17:D3:2B:4E:59:05:A0:2A:D0:C8:71:C4:C8:18:83
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/gUadyAsX0ytOWQWgKtDIccTIGIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.214.0/24
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.179.0/24
141.101.191.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:b0:23:70:7f:35:43:4b:48:4d:47:f6:e9:41:2e:79:d1:3c:
89:e5:b3:0f:ca:ec:8d:02:05:85:27:f7:cb:ee:7f:b9:ff:86:
9a:fb:7e:33:1a:1c:1a:94:d4:60:e8:a3:37:53:a8:fe:2b:f2:
e2:20:03:e6:ec:ee:75:ff:ff:10:bb:21:8c:e3:31:72:06:45:
c0:53:9b:a6:62:51:b1:5b:6d:e6:60:fa:b1:74:9d:2c:fe:bc:
db:40:d2:f2:e5:7d:ee:d4:73:2d:a2:08:92:7b:0a:9a:62:63:
59:79:18:68:6f:8a:57:2a:ea:8a:ea:98:8a:99:bd:5f:d5:98:
0f:4e:fd:75:ac:4b:60:e8:46:1e:b3:46:13:ac:19:4f:79:9f:
c3:47:df:84:c6:8a:a4:7c:f4:bb:70:36:66:d4:b6:53:e4:c5:
08:df:7e:94:ad:df:c6:cd:f8:ae:fe:b1:ec:5e:69:2e:f0:5a:
b1:61:9d:9c:55:73:05:9f:53:d2:b6:e2:0c:4d:53:7a:b2:eb:
ae:e6:77:c9:1c:ec:4f:0c:ab:86:2f:57:f5:a9:27:14:58:84:
7b:5c:69:de:47:dd:59:32:b6:52:d1:a2:55:bc:65:46:fd:98:
5b:48:54:70:f2:ff:b0:f5:2a:15:4b:9b:52:93:4d:c1:f9:b5:
af:38:d0:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org