Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kbV0nodgPCuQCnUhGjJqiBXwyv4.roa
File: kbV0nodgPCuQCnUhGjJqiBXwyv4.roa (raw, json)
Hash identifier: h/AVx7oFnMkOeO3HyaMWjuUbVDZjRyQicMmuHKedtZQ=
Subject key identifier: 91:B5:74:9E:87:60:3C:2B:90:0A:75:21:1A:32:6A:88:15:F0:CA:FE
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01862B0B0E7039D476B985570C7E1F6AFD44
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kbV0nodgPCuQCnUhGjJqiBXwyv4.roa
Signing time: Tue 07 Feb 2023 08:43:10 +0000
ROA not before: Tue 07 Feb 2023 08:43:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.253.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Feb 2023 15:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:0b:0e:70:39:d4:76:b9:85:57:0c:7e:1f:6a:fd:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 7 08:43:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91b5749e87603c2b900a75211a326a8815f0cafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:95:94:cf:7f:ec:16:91:98:83:f0:b1:5d:52:
2d:e1:ad:83:ae:59:fe:4d:9d:c8:eb:0c:bc:5b:8d:
24:49:4d:e9:ed:38:90:70:49:2c:1f:85:0e:98:42:
3d:fd:f0:9a:53:fa:27:da:2f:b4:4a:18:e7:cb:0b:
af:41:95:5f:67:9f:bf:b1:c1:8c:00:54:a9:d8:b6:
03:ca:0c:13:6e:41:e5:3c:74:2d:98:00:13:62:6d:
d2:2b:9f:04:80:5f:46:0f:fa:aa:b2:c0:db:f3:02:
e5:7b:02:69:85:f2:02:17:2e:21:d3:19:e7:0f:3d:
c5:0a:67:1e:73:ba:0c:50:1a:9d:a1:94:4b:ec:5b:
9b:68:96:04:89:bf:4c:a8:a7:81:24:fe:ef:51:7c:
6e:8e:ec:d9:6a:fa:f8:4c:57:25:2d:1f:5c:53:2f:
18:67:00:59:a6:ea:c2:73:6a:b1:e2:59:3e:18:c5:
54:5b:69:83:57:87:0b:79:ba:bb:b2:9f:1a:e8:d0:
6f:a9:2d:c9:dd:cb:1e:10:0f:b9:f0:50:5e:47:68:
c2:f2:89:4b:25:2a:bd:f4:76:50:92:65:72:29:45:
42:06:67:ad:32:a0:c3:1e:8e:28:b4:3c:89:25:a6:
49:09:b8:34:dd:56:02:09:a8:39:c7:c3:49:b2:b7:
1f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B5:74:9E:87:60:3C:2B:90:0A:75:21:1A:32:6A:88:15:F0:CA:FE
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kbV0nodgPCuQCnUhGjJqiBXwyv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
46.243.253.0/24
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:d0:07:e8:82:38:43:2c:f7:77:e6:59:d4:81:94:05:e9:73:
c0:17:60:67:2b:f0:ca:fd:86:98:9b:76:75:cc:4e:fb:ff:13:
9f:c5:08:0d:31:16:58:2a:27:41:7e:2f:2a:3f:56:d7:02:cc:
69:61:a2:ec:78:79:19:43:ac:f4:b5:29:d2:00:86:32:67:07:
a8:9e:a9:e6:73:02:8c:ca:c6:93:97:47:9b:95:c6:72:89:a8:
b4:33:25:fc:cd:b7:94:4e:72:91:21:4c:d2:ba:7b:09:7b:7c:
ab:44:e4:aa:44:f3:dc:2b:a3:78:61:8e:51:73:ff:c8:7d:cf:
1c:75:0f:c2:44:7d:eb:dc:14:95:aa:c6:ce:7f:47:41:d6:61:
d7:82:87:df:bc:b6:ab:52:93:0f:2c:20:cd:d7:4e:d4:ec:43:
9d:c9:70:1f:87:4c:80:4a:62:b0:36:e4:ff:6f:48:e1:8c:9b:
82:eb:b0:de:e1:a5:66:72:41:49:3b:4d:ab:29:91:67:41:98:
09:a9:19:c0:ad:89:99:f3:44:88:7f:7e:52:cb:9c:c3:8a:cd:
af:86:a9:4b:63:8a:28:6c:10:ab:1c:1c:65:66:b3:d0:5c:c5:
43:30:f7:dc:cb:23:e6:f1:7c:44:4e:3d:7a:15:35:e3:86:82:
05:39:0e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org