Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/4Zfnx7a-W611siF7GcGyPIV7dbA.roa
File: 4Zfnx7a-W611siF7GcGyPIV7dbA.roa (raw, json)
Hash identifier: v7bWwWT6T1GJRkjlUe0uaGBskJEjmek0rlxLwSWGhTg=
Subject key identifier: E1:97:E7:C7:B6:BE:5B:AD:75:B2:21:7B:19:C1:B2:3C:85:7B:75:B0
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 01889AA8293FE259806ED285AAABA3034271
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/4Zfnx7a-W611siF7GcGyPIV7dbA.roa
Signing time: Thu 08 Jun 2023 10:58:11 +0000
ROA not before: Thu 08 Jun 2023 10:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3225
IP address blocks: 91.140.216.0/22 maxlen: 24
91.140.221.0/24 maxlen: 24
91.140.220.0/24 maxlen: 24
91.140.224.0/24 maxlen: 24
91.140.222.0/24 maxlen: 24
91.140.223.0/24 maxlen: 24
91.140.224.0/22 maxlen: 22
91.140.226.0/24 maxlen: 24
91.140.233.0/24 maxlen: 24
91.140.228.0/22 maxlen: 22
91.140.232.0/24 maxlen: 24
91.140.240.0/24 maxlen: 24
91.140.235.0/24 maxlen: 24
91.140.234.0/24 maxlen: 24
91.140.238.0/24 maxlen: 24
91.140.239.0/24 maxlen: 24
91.140.236.0/24 maxlen: 24
91.140.237.0/24 maxlen: 24
91.140.242.0/24 maxlen: 24
91.140.241.0/24 maxlen: 24
91.140.244.0/22 maxlen: 22
91.140.246.0/24 maxlen: 24
91.140.248.0/24 maxlen: 24
91.140.249.0/24 maxlen: 24
91.140.248.0/22 maxlen: 22
91.140.252.0/24 maxlen: 24
91.140.253.0/24 maxlen: 24
91.140.250.0/24 maxlen: 24
91.140.252.0/22 maxlen: 22
91.140.251.0/24 maxlen: 24
91.140.255.0/24 maxlen: 24
91.140.254.0/24 maxlen: 24
91.140.164.0/22 maxlen: 22
185.16.4.0/22 maxlen: 22
91.140.160.0/22 maxlen: 24
91.140.172.0/22 maxlen: 22
94.187.224.0/19 maxlen: 24
91.140.180.0/22 maxlen: 22
94.187.232.0/22 maxlen: 22
91.140.192.0/22 maxlen: 24
91.140.188.0/22 maxlen: 22
94.187.228.0/22 maxlen: 22
94.187.236.0/22 maxlen: 22
91.140.196.0/22 maxlen: 24
94.187.240.0/22 maxlen: 24
91.140.201.0/24 maxlen: 24
91.140.200.0/22 maxlen: 22
91.140.203.0/24 maxlen: 24
94.187.244.0/22 maxlen: 22
91.140.204.0/22 maxlen: 22
91.140.202.0/24 maxlen: 24
91.140.212.0/22 maxlen: 22
94.187.252.0/22 maxlen: 24
91.140.207.0/24 maxlen: 24
94.187.248.0/22 maxlen: 22
91.140.208.0/22 maxlen: 22
91.140.128.0/22 maxlen: 22
91.140.128.0/17 maxlen: 17
91.140.132.0/22 maxlen: 22
91.140.140.0/22 maxlen: 22
91.140.152.0/22 maxlen: 22
91.140.148.0/22 maxlen: 22
194.54.241.0/24 maxlen: 24
194.54.244.0/22 maxlen: 22
194.54.243.0/24 maxlen: 24
194.54.248.0/22 maxlen: 22
194.54.252.0/22 maxlen: 22
194.54.192.0/19 maxlen: 24
194.54.192.0/18 maxlen: 18
194.54.194.0/23 maxlen: 23
194.54.196.0/22 maxlen: 22
194.54.204.0/22 maxlen: 22
194.54.200.0/22 maxlen: 22
194.54.202.0/24 maxlen: 24
194.54.209.0/24 maxlen: 24
194.54.208.0/22 maxlen: 22
194.54.208.0/24 maxlen: 24
194.54.212.0/22 maxlen: 22
194.54.216.0/22 maxlen: 22
194.54.224.0/19 maxlen: 19
194.54.220.0/24 maxlen: 24
194.54.220.0/22 maxlen: 22
194.54.224.0/22 maxlen: 22
194.54.232.0/22 maxlen: 22
194.54.228.0/22 maxlen: 22
194.54.234.0/24 maxlen: 24
194.54.236.0/22 maxlen: 22
194.54.240.0/22 maxlen: 24
2a01:7780::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Sep 2023 07:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:a8:29:3f:e2:59:80:6e:d2:85:aa:ab:a3:03:42:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Jun 8 10:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e197e7c7b6be5bad75b2217b19c1b23c857b75b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:81:4e:99:74:42:ff:da:17:88:44:b6:89:
06:bc:5f:6e:78:a1:b3:eb:9e:c9:68:fb:ee:88:a9:
49:ba:1a:0b:6d:8a:12:7b:1c:a6:cf:ed:5c:f6:7c:
bb:c8:60:b3:0e:81:1e:26:00:5d:60:9a:dd:94:91:
2b:98:e7:f3:c9:d0:4f:c8:5b:d3:02:1f:be:e2:5c:
2f:df:70:5c:90:df:1c:03:95:3c:2d:70:08:3b:10:
72:eb:ee:4d:8b:20:77:1c:af:6b:24:c6:f4:3d:33:
b4:bd:32:4b:0f:34:d4:23:8c:b4:28:f4:fe:1a:3e:
aa:c6:1a:44:ad:aa:99:4f:0e:12:74:5a:92:17:76:
62:8d:cb:ca:f5:9e:de:73:02:e5:05:73:7c:4f:e5:
4f:3e:8e:ac:86:54:4f:33:5d:bd:4a:5b:c9:d5:4f:
b9:66:60:58:0a:ca:24:74:07:a5:a5:b9:1b:69:dc:
0c:94:80:6e:61:7b:c4:71:e0:7f:69:bf:0f:04:80:
af:c2:fc:fb:52:64:4c:c8:3f:69:18:5c:b8:6c:ee:
80:f5:27:b4:5f:5d:64:82:b4:7f:4f:c3:1f:b0:a9:
d4:58:ac:03:58:23:64:9a:8e:f9:bf:2c:8c:d0:d6:
09:4f:40:74:de:f1:e6:ac:25:60:f8:ac:6c:e9:a7:
5c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:97:E7:C7:B6:BE:5B:AD:75:B2:21:7B:19:C1:B2:3C:85:7B:75:B0
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/4Zfnx7a-W611siF7GcGyPIV7dbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.140.128.0/17
94.187.224.0/19
185.16.4.0/22
194.54.192.0/18
IPv6:
2a01:7780::/32
Signature Algorithm: sha256WithRSAEncryption
a7:c2:3c:8f:91:e4:f6:7d:28:39:3a:d0:e3:af:93:4f:45:58:
99:46:ab:5f:c9:08:8a:dd:c0:74:84:aa:77:cd:6b:96:00:40:
cf:ab:60:03:36:33:a5:62:96:63:65:43:da:5d:87:74:a9:12:
8b:69:76:6c:c5:f3:50:f2:4f:a6:a4:f4:e2:85:29:b1:05:5f:
2e:31:db:61:64:72:27:20:ad:d7:42:96:09:be:9d:7d:ab:23:
56:b1:c4:14:39:66:94:7c:b5:a2:1a:8a:c3:b0:93:b5:bd:be:
24:10:bc:e9:df:c0:1e:94:21:2e:97:a1:ac:86:1c:31:8d:4f:
31:1e:42:b0:84:a8:4d:87:a8:ec:b7:e6:12:e6:33:02:4b:a3:
68:8b:4c:7c:5b:78:c1:ed:66:ed:f1:e3:5f:b0:9b:0a:96:69:
8c:32:fa:1a:de:1d:63:2e:02:93:47:18:52:35:f5:d8:d7:36:
0c:ee:74:8c:04:58:6f:59:26:55:5a:2b:ac:b3:c9:c1:8c:b4:
03:d1:71:9f:f3:58:67:ad:c2:ba:40:b7:21:b6:c9:da:29:e4:
c5:ae:b5:25:12:db:3e:56:52:9b:9f:1e:63:63:48:3a:9d:17:
8e:c1:0c:f6:89:21:c8:97:d5:31:70:02:51:84:20:2d:a4:8f:
5e:8a:d5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:56 2024 by rpki-client on console-fra.rpki-client.org