Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hJuTSStN8qCUt6y3en2QCcwpMKA.roa
File: hJuTSStN8qCUt6y3en2QCcwpMKA.roa (raw, json)
Hash identifier: lWX4C+gDjKtg/I7pFDA18sfMHhiXt90lRcR9VIAb1PM=
Subject key identifier: 84:9B:93:49:2B:4D:F2:A0:94:B7:AC:B7:7A:7D:90:09:CC:29:30:A0
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0188D87E6D6FDC9ED7829347C5087C729939
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hJuTSStN8qCUt6y3en2QCcwpMKA.roa
Signing time: Tue 20 Jun 2023 11:09:03 +0000
ROA not before: Tue 20 Jun 2023 11:09:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 11:16:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:7e:6d:6f:dc:9e:d7:82:93:47:c5:08:7c:72:99:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 20 11:09:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=849b93492b4df2a094b7acb77a7d9009cc2930a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:41:f6:ef:ef:42:01:19:90:5f:e8:d4:49:05:
65:50:0b:57:6e:4a:2a:8f:89:5b:b0:f3:1d:ef:a3:
6c:27:a9:7a:e3:45:2a:be:7e:56:f0:96:41:cc:73:
9d:05:e5:34:30:1d:00:18:92:04:64:d0:b6:5b:7f:
02:41:8a:c8:76:75:92:f3:f3:a3:10:42:85:d8:67:
5c:73:af:55:90:af:d4:12:79:68:2b:01:97:be:4e:
46:31:1c:04:d3:73:fa:cf:be:b8:95:42:66:64:a3:
13:d4:7c:0e:9a:29:9c:2f:40:2f:f3:1f:e7:73:3d:
0a:ac:72:c8:0d:60:5d:85:e9:62:ec:56:88:8e:f3:
de:5a:36:e8:6e:67:1c:16:82:09:75:c7:3d:18:d8:
cf:8d:37:f1:9a:9e:61:10:0c:1f:85:b9:75:3b:8c:
52:98:13:e5:fb:be:bb:26:80:f0:b6:01:d3:13:81:
2f:37:63:06:c3:c2:6d:37:7c:66:29:9f:6c:c7:2d:
fb:17:e3:b4:d4:c5:e3:24:81:4b:89:32:e5:0e:b8:
e3:66:28:a6:f9:1c:87:f3:43:aa:27:f2:11:d8:ce:
ff:59:4c:56:f2:17:c7:b9:b2:c3:ca:63:7f:3e:a5:
1b:d3:95:30:68:ab:64:b0:12:ac:7f:6f:9c:b7:8f:
ff:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9B:93:49:2B:4D:F2:A0:94:B7:AC:B7:7A:7D:90:09:CC:29:30:A0
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hJuTSStN8qCUt6y3en2QCcwpMKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:0c:34:b8:e5:32:da:c2:22:98:5c:6d:3a:b7:73:f1:15:22:
ce:d3:0a:39:5e:6c:b1:83:76:1b:ca:16:06:45:b3:e8:e1:3e:
de:55:af:43:b1:78:3c:66:01:a8:2c:fc:58:32:2e:cf:d6:04:
90:c2:01:23:63:f8:4e:24:85:32:50:da:2b:69:b2:d1:70:d9:
08:98:fb:ff:d2:30:b5:96:ca:fd:1f:3a:0c:e5:0f:e6:62:2d:
43:1d:51:6d:ff:80:0a:e1:c5:0f:df:6c:4f:4d:03:36:ad:86:
84:ee:d6:fc:d4:a9:43:8d:0f:fa:bc:6b:af:89:2d:94:c2:b2:
c9:b2:9e:dd:11:6a:5f:b4:4a:71:c9:40:61:9d:ee:90:5d:48:
92:3e:b8:87:3c:d5:bc:4f:5a:72:1a:03:23:35:92:af:2d:df:
50:61:4e:1d:c7:08:1a:9c:3c:8e:53:82:18:4a:c3:41:95:61:
20:52:79:86:53:d1:ba:82:60:e1:82:16:4b:bf:a1:c6:62:7a:
3e:3c:32:38:26:a9:fa:c4:35:5a:be:5a:bd:a1:0f:ca:19:7e:
9c:92:06:e5:c8:3d:73:93:90:18:0c:d0:f6:b3:ad:10:ae:bc:
3a:24:d2:48:4a:96:2d:8b:10:fd:5a:10:ec:1f:d4:d5:fa:9f:
c1:9d:46:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org