Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yAUvTmJZDzq1cmXrLVz-6pYIzKE.roa
File: yAUvTmJZDzq1cmXrLVz-6pYIzKE.roa (raw, json)
Hash identifier: ZTq1OvjjYvJ6Jjdo7OE3F0zalgKqUcLr7Rtm/fex3p8=
Subject key identifier: C8:05:2F:4E:62:59:0F:3A:B5:72:65:EB:2D:5C:FE:EA:96:08:CC:A1
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A310FFC9604034B48E66817669C81
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yAUvTmJZDzq1cmXrLVz-6pYIzKE.roa
Signing time: Sun 01 Jan 2023 03:05:02 +0000
ROA not before: Sun 01 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 37.230.187.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
37.18.15.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.232.0/24 maxlen: 24
46.243.233.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.235.0/24 maxlen: 24
46.243.234.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
37.230.131.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:31:0f:fc:96:04:03:4b:48:e6:68:17:66:9c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8052f4e62590f3ab57265eb2d5cfeea9608cca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fb:78:b7:61:50:eb:86:08:22:a4:72:87:cb:
16:04:14:2a:61:e6:1b:11:75:d9:6c:6f:9f:18:56:
40:38:74:84:0a:e3:d4:7f:74:33:c0:c6:1c:3f:af:
d3:9f:84:5e:7c:a1:db:d4:e7:9d:cb:8e:84:79:a7:
92:1e:b5:34:3e:e2:57:97:42:ee:a9:04:ae:2a:72:
c0:ba:b8:89:0f:20:35:80:f1:db:62:02:64:57:f5:
63:67:6e:4d:f8:b1:de:28:83:65:1b:04:ad:b0:16:
da:b2:dc:fa:94:98:12:2e:e2:4b:24:06:fb:69:de:
cd:52:d1:67:32:80:b9:52:ae:0d:98:f8:66:7f:6c:
5d:93:0d:4b:b4:eb:9c:55:90:98:3f:ce:f7:db:ff:
81:2e:2f:56:b9:e3:21:68:9e:17:88:bd:7d:98:06:
c2:bd:eb:86:17:9c:d1:b4:75:e5:4a:f5:66:14:9a:
f9:84:f6:cb:e6:2f:93:86:c8:a8:86:5a:3a:57:83:
b9:f7:f7:b7:dc:e6:7a:4a:87:ef:0a:3d:62:aa:70:
7f:a5:55:8e:d9:95:9f:45:ed:77:ef:86:c3:f9:fd:
63:c0:e9:8f:c4:7d:d7:7e:bc:02:06:af:bd:94:12:
95:5d:2a:cb:23:ab:31:a4:da:7d:1a:b2:4a:fb:8b:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:05:2F:4E:62:59:0F:3A:B5:72:65:EB:2D:5C:FE:EA:96:08:CC:A1
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yAUvTmJZDzq1cmXrLVz-6pYIzKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.15.0/24
37.18.63.0/24
37.18.78.0/24
37.230.131.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.182.0/23
37.230.187.0/24
46.243.138.0/23
46.243.149.0/24
46.243.204.0/24
46.243.214.0/24
46.243.221.0-46.243.223.255
46.243.225.0/24
46.243.232.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.143.0/24
141.101.145.0/24
141.101.147.0-141.101.150.255
141.101.153.0-141.101.156.255
141.101.158.0-141.101.162.255
141.101.164.0-141.101.168.255
141.101.170.0/23
141.101.179.0/24
141.101.191.0/24
141.101.255.0/24
178.170.137.0/24
178.170.139.0-178.170.140.255
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.86.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
17:b2:db:e2:08:1a:4c:e3:7a:9b:65:1a:02:74:a3:fa:ba:da:
f2:6e:67:0d:75:c3:f4:16:09:02:68:0c:85:48:99:5b:8e:0a:
ff:b7:ad:32:58:db:ff:57:82:24:fb:d3:35:3a:0e:ca:9f:c0:
cc:80:97:d6:02:0f:c0:02:f7:9b:be:b4:42:ef:51:7a:51:08:
f5:77:64:cb:ea:85:a9:6e:5d:f9:13:1c:dd:b9:df:05:6d:15:
d3:45:9e:01:80:af:05:01:29:65:0d:b1:49:c8:53:ee:39:f3:
74:6d:34:8f:17:80:59:f4:93:d1:b2:90:27:67:ce:cd:d7:37:
a9:56:eb:5f:08:7f:a0:32:0e:dd:c2:3d:b4:38:1d:f4:fa:67:
44:28:6b:f7:e6:c7:90:97:c9:6e:87:fb:4c:40:b5:da:b0:0c:
e8:95:4f:3e:fd:61:36:8a:7f:c9:e3:89:b0:c0:7b:d3:54:92:
29:72:91:73:83:ad:10:76:b6:89:cb:2a:28:fb:8d:8f:70:b7:
ce:58:d3:92:f4:ae:7c:5a:ec:86:73:34:5c:a0:fb:0f:ea:78:
be:99:59:1f:4c:f8:e5:3f:d5:b5:8c:bc:b4:e6:23:20:50:76:
16:49:a0:c1:6a:d2:67:30:5d:50:7a:f9:a5:4c:51:b3:62:79:
a6:db:f9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org