Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Tp5XB4iqtFnYRYf72mP7-F63UYI.roa
File: Tp5XB4iqtFnYRYf72mP7-F63UYI.roa (raw, json)
Hash identifier: cfUGeCsT4hSJif6hzvHZ27yENk65ifJXoFXY5qHuhEE=
Subject key identifier: 4E:9E:57:07:88:AA:B4:59:D8:45:87:FB:DA:63:FB:F8:5E:B7:51:82
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018660CD60B564BFC98350F3D1FD12D98E39
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Tp5XB4iqtFnYRYf72mP7-F63UYI.roa
Signing time: Fri 17 Feb 2023 19:15:17 +0000
ROA not before: Fri 17 Feb 2023 19:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 91.225.15.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jul 2023 18:03:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:60:cd:60:b5:64:bf:c9:83:50:f3:d1:fd:12:d9:8e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Feb 17 19:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e9e570788aab459d84587fbda63fbf85eb75182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:0c:86:9a:20:4d:d4:a6:86:32:4e:3e:a0:
ff:39:3e:d0:ef:80:cf:59:7f:79:ac:ed:c5:cb:b3:
93:39:eb:be:83:ed:29:3d:c5:b3:ba:36:1a:d0:32:
1c:d6:7a:0a:42:88:67:bb:ec:42:a4:1a:69:e4:a9:
61:45:2f:ed:6a:08:f8:18:38:f8:58:85:4f:80:0d:
59:84:fa:de:c0:5e:02:47:0b:b3:e7:69:79:0b:1c:
19:f7:3f:22:fb:32:ed:10:14:ce:b4:50:f0:ba:54:
b8:dd:5e:fa:72:aa:8c:2c:0b:11:e2:c7:ef:e4:ac:
52:f1:0a:b4:28:85:b8:b8:76:02:74:65:5b:27:ad:
e6:6a:c1:ea:59:fd:1a:b1:4c:3a:93:60:fd:4b:a8:
cf:81:76:d2:92:ed:5e:a5:7a:06:a4:30:f5:03:96:
21:c7:f0:8b:b2:85:fb:1a:1a:93:67:36:d8:80:34:
ed:aa:ac:c9:b6:21:21:03:55:8e:33:de:da:1e:a6:
d7:df:a7:09:9c:cb:96:66:da:02:1a:61:88:f0:b6:
84:4d:33:d2:98:2f:0c:b9:7b:55:1d:e6:b4:e9:a6:
9f:53:5f:26:12:ca:bc:38:4a:c7:58:91:ac:91:87:
52:24:63:78:1d:be:ab:f6:eb:99:39:e0:d4:ce:33:
7c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9E:57:07:88:AA:B4:59:D8:45:87:FB:DA:63:FB:F8:5E:B7:51:82
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Tp5XB4iqtFnYRYf72mP7-F63UYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
146.66.220.0/22
178.157.94.0/24
178.157.124.0/24
178.157.126.0/24
188.74.152.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e9:1e:65:51:ae:e9:08:03:29:a2:7b:68:97:2b:d9:41:ac:
ef:ec:13:47:59:e8:ea:25:41:cb:4a:1d:1b:9f:54:c4:57:ab:
cf:d9:80:fc:7b:b9:9e:f2:31:5c:4b:46:be:6d:76:37:70:70:
53:3a:b2:7b:4d:33:b6:1a:46:51:78:13:6d:f4:fb:15:07:11:
1d:76:34:2f:f2:a8:d4:1a:78:da:9b:0b:91:d3:62:15:4b:4f:
f5:f8:c6:ea:3c:43:c8:7b:51:d7:cd:8f:a8:34:a3:e8:c6:d2:
0f:53:a4:11:1b:c9:2d:b8:cd:c8:b1:3d:ee:d7:cc:dc:41:c2:
2e:0a:62:e7:5a:5e:3a:90:cb:fa:d2:e7:e2:cf:dd:83:56:34:
ce:4e:ae:1a:2f:cb:92:7c:20:e1:e1:c3:41:62:12:8c:72:ce:
6a:76:e6:66:3f:21:a4:95:ef:fa:3e:8c:21:4c:32:ae:1e:62:
24:a8:e2:3e:4e:e8:4f:d6:48:f3:99:20:e8:d2:c8:2d:9d:8f:
69:89:d0:88:0e:0e:14:35:5d:91:28:1c:3d:8e:c2:fb:0f:c2:
aa:65:3d:fd:4c:66:17:60:73:5b:22:e1:a2:a2:15:06:47:fb:
d2:ec:76:b2:72:c4:c3:28:9d:42:6b:dd:7d:a7:6f:60:83:e7:
4f:6d:3a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org