Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/3ooQNoKc_LDaX18vw_XusI8_lGI.roa
File: 3ooQNoKc_LDaX18vw_XusI8_lGI.roa (raw, json)
Hash identifier: OKpcBTxyi/9yScUJePGsQ3q+XGiIQuayTvxSHpjf6oM=
Subject key identifier: DE:8A:10:36:82:9C:FC:B0:DA:5F:5F:2F:C3:F5:EE:B0:8F:3F:94:62
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 01856C6F2753867849A71A561D9FCAF693DC
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/3ooQNoKc_LDaX18vw_XusI8_lGI.roa
Signing time: Sun 01 Jan 2023 08:25:01 +0000
ROA not before: Sun 01 Jan 2023 08:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3225
IP address blocks: 91.140.221.0/24 maxlen: 24
91.140.220.0/24 maxlen: 24
91.140.224.0/24 maxlen: 24
91.140.222.0/24 maxlen: 24
91.140.223.0/24 maxlen: 24
91.140.224.0/22 maxlen: 22
91.140.226.0/24 maxlen: 24
91.140.233.0/24 maxlen: 24
91.140.228.0/22 maxlen: 22
91.140.232.0/24 maxlen: 24
91.140.240.0/24 maxlen: 24
91.140.235.0/24 maxlen: 24
91.140.234.0/24 maxlen: 24
91.140.238.0/24 maxlen: 24
91.140.239.0/24 maxlen: 24
91.140.236.0/24 maxlen: 24
91.140.237.0/24 maxlen: 24
91.140.242.0/24 maxlen: 24
91.140.241.0/24 maxlen: 24
91.140.244.0/22 maxlen: 22
91.140.246.0/24 maxlen: 24
91.140.248.0/24 maxlen: 24
91.140.249.0/24 maxlen: 24
91.140.248.0/22 maxlen: 22
91.140.252.0/24 maxlen: 24
91.140.253.0/24 maxlen: 24
91.140.250.0/24 maxlen: 24
91.140.252.0/22 maxlen: 22
91.140.251.0/24 maxlen: 24
91.140.255.0/24 maxlen: 24
91.140.254.0/24 maxlen: 24
91.140.164.0/22 maxlen: 22
185.16.4.0/22 maxlen: 22
91.140.160.0/22 maxlen: 22
91.140.172.0/22 maxlen: 22
94.187.224.0/19 maxlen: 24
91.140.180.0/22 maxlen: 22
91.140.192.0/22 maxlen: 22
94.187.232.0/22 maxlen: 22
91.140.188.0/22 maxlen: 22
94.187.228.0/22 maxlen: 22
94.187.236.0/22 maxlen: 22
91.140.196.0/22 maxlen: 22
94.187.240.0/22 maxlen: 22
91.140.201.0/24 maxlen: 24
91.140.200.0/22 maxlen: 22
91.140.203.0/24 maxlen: 24
94.187.244.0/22 maxlen: 22
91.140.204.0/22 maxlen: 22
91.140.202.0/24 maxlen: 24
91.140.212.0/22 maxlen: 22
94.187.252.0/22 maxlen: 22
91.140.207.0/24 maxlen: 24
94.187.248.0/22 maxlen: 22
91.140.208.0/22 maxlen: 22
91.140.128.0/22 maxlen: 22
91.140.128.0/17 maxlen: 17
91.140.132.0/22 maxlen: 22
91.140.140.0/22 maxlen: 22
91.140.152.0/22 maxlen: 22
91.140.148.0/22 maxlen: 22
194.54.241.0/24 maxlen: 24
194.54.244.0/22 maxlen: 22
194.54.243.0/24 maxlen: 24
194.54.248.0/22 maxlen: 22
194.54.252.0/22 maxlen: 22
194.54.192.0/19 maxlen: 24
194.54.192.0/18 maxlen: 18
194.54.194.0/23 maxlen: 23
194.54.196.0/22 maxlen: 22
194.54.204.0/22 maxlen: 22
194.54.200.0/22 maxlen: 22
194.54.202.0/24 maxlen: 24
194.54.209.0/24 maxlen: 24
194.54.208.0/22 maxlen: 22
194.54.208.0/24 maxlen: 24
194.54.212.0/22 maxlen: 22
194.54.216.0/22 maxlen: 22
194.54.224.0/19 maxlen: 19
194.54.220.0/24 maxlen: 24
194.54.220.0/22 maxlen: 22
194.54.224.0/22 maxlen: 22
194.54.232.0/22 maxlen: 22
194.54.228.0/22 maxlen: 22
194.54.234.0/24 maxlen: 24
194.54.236.0/22 maxlen: 22
194.54.240.0/22 maxlen: 24
2a01:7780::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 16 Jan 2023 07:15:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:27:53:86:78:49:a7:1a:56:1d:9f:ca:f6:93:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Jan 1 08:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de8a1036829cfcb0da5f5f2fc3f5eeb08f3f9462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:73:75:0d:17:7e:bb:d4:2a:73:53:7d:ef:4f:
68:58:db:04:33:a1:07:02:6b:86:f4:13:23:67:96:
76:53:0a:ad:92:53:b5:91:a5:b9:3c:e8:00:d5:15:
1c:32:c0:2e:f6:19:6c:64:8b:17:bb:ff:4a:89:e6:
2f:59:0a:81:bb:49:97:aa:a7:b5:62:b2:9a:d6:ea:
e8:52:3c:78:75:3f:42:60:6c:0e:d7:f4:6a:a4:ff:
37:22:88:3c:99:1e:04:d8:1f:79:55:03:7b:4f:69:
0e:f7:7e:68:f8:86:ba:c3:39:d6:27:11:b4:77:af:
96:a6:c3:10:46:b4:a5:03:cc:72:0c:eb:43:d5:b5:
11:d9:3a:c7:f1:37:29:e3:00:b6:89:44:27:5f:8f:
34:46:5e:6c:4c:19:4c:98:d2:6e:2e:ed:51:d8:fd:
5a:59:6f:36:5e:8c:a3:0c:6f:9d:c9:11:76:5e:83:
30:2d:f5:28:7a:85:c0:d6:10:a5:69:37:2c:62:bb:
29:ad:c8:1b:14:7b:5b:46:af:c0:4e:37:84:49:92:
08:83:05:8d:0c:f4:73:d6:8c:80:74:2e:76:ab:6d:
6e:f6:05:ae:01:86:52:f9:98:74:34:63:4a:5d:47:
ba:26:d9:c9:da:89:88:82:6a:de:81:12:43:7e:e8:
34:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8A:10:36:82:9C:FC:B0:DA:5F:5F:2F:C3:F5:EE:B0:8F:3F:94:62
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/3ooQNoKc_LDaX18vw_XusI8_lGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.140.128.0/17
94.187.224.0/19
185.16.4.0/22
194.54.192.0/18
IPv6:
2a01:7780::/32
Signature Algorithm: sha256WithRSAEncryption
68:0b:55:2b:67:29:23:28:29:d8:9f:33:81:43:d3:44:1a:13:
4d:4e:77:a5:75:34:5a:15:8b:8a:09:e3:70:b8:08:b5:58:59:
86:fa:52:ff:6e:f6:8f:22:fa:63:2d:82:05:ee:37:c0:3c:6f:
73:8c:ac:f0:50:8c:af:19:79:59:ff:ab:49:6f:db:71:07:20:
0f:54:f6:98:cb:1c:f4:7a:49:63:b7:76:ce:ea:f3:e1:47:fc:
55:6b:99:79:65:eb:09:ed:7c:48:b0:8f:56:71:97:c9:d6:da:
62:ca:ae:de:c7:b3:57:98:58:2b:72:78:11:7b:8d:ac:92:67:
d8:c7:c9:dc:8c:dc:23:9d:4e:3a:bc:24:54:d1:e2:8e:2f:62:
6a:fe:7f:52:be:7c:da:80:90:52:16:1c:ba:17:78:02:e0:ea:
1f:82:cb:83:9a:41:4e:f3:49:6f:c1:5a:f7:ea:5a:da:25:25:
4d:6c:26:56:b4:16:ce:c7:c6:a5:2f:fa:f2:d7:6e:8a:76:97:
03:9f:7d:b0:71:ea:8a:f2:84:7a:b6:ec:47:86:ea:ac:7d:19:
91:34:7f:f6:39:f1:6b:b5:a0:9d:a4:fa:2a:7b:18:d9:10:a0:
58:33:2c:c4:4b:7b:5c:41:fd:1c:35:e2:28:df:3f:76:da:06:
13:c4:b4:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:58 2024 by rpki-client on console-ams.rpki-client.org