Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/zshGK5vEBv2BeZ8jmjJzMFjWpRw.roa
File: zshGK5vEBv2BeZ8jmjJzMFjWpRw.roa (raw, json)
Hash identifier: B1Y6APBtXtiJaUeYvmuB/0bRqg+kCwN5h2oGZWXEqOo=
Subject key identifier: CE:C8:46:2B:9B:C4:06:FD:81:79:9F:23:9A:32:73:30:58:D6:A5:1C
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 018B8B5A59B99122BDFB5BCE13BA9BD39B26
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/zshGK5vEBv2BeZ8jmjJzMFjWpRw.roa
Signing time: Wed 01 Nov 2023 14:47:16 +0000
ROA not before: Wed 01 Nov 2023 14:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202196
IP address blocks: 37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
5.57.20.0/23 maxlen: 23
37.10.1.0/24 maxlen: 24
37.10.24.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
91.195.236.0/24 maxlen: 24
2a01:5043:2007::/48 maxlen: 48
2a01:5043:7::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:4::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:4eff::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:ea20::/48 maxlen: 48
2a01:5041:200c::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5042:2007::/48 maxlen: 48
2a01:5042:7::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5042:2003::/48 maxlen: 48
2a01:5042:3::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5041::/32 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:2::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5043:2003::/48 maxlen: 48
2a01:5043:3::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:5a:59:b9:91:22:bd:fb:5b:ce:13:ba:9b:d3:9b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Nov 1 14:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cec8462b9bc406fd81799f239a32733058d6a51c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:22:7b:ec:93:a1:73:8f:6a:5a:e5:8d:aa:10:
6b:fc:b5:c0:c2:f0:ee:aa:7e:c1:7b:60:9c:be:09:
c9:f8:b3:a4:71:af:ce:6b:94:d7:ab:33:c1:8c:ad:
be:8e:ad:eb:d2:99:03:55:01:68:ed:f9:3d:bb:97:
fb:75:f4:4a:4d:47:5c:2e:8b:fb:b9:9c:55:fc:6a:
78:fc:fe:51:ba:91:2d:d0:9b:a2:45:9f:a9:c7:28:
8a:91:43:28:7f:37:47:ad:99:0c:74:7c:a4:73:7b:
cc:27:11:6f:2d:5f:93:b7:27:78:17:d8:8e:3e:37:
b4:03:28:bc:6d:3e:04:ec:a0:c7:07:a3:05:23:8f:
e9:5f:45:4c:23:31:f4:ee:ab:1c:ef:94:32:16:7a:
a7:c8:ef:c3:96:2b:70:8f:8a:c0:5a:f2:81:0a:67:
a4:13:09:ea:95:b9:bf:0f:1a:b5:17:d4:33:5c:76:
e5:5c:d2:32:cb:6c:f9:ff:93:96:a7:fc:ec:8f:b0:
15:45:b9:6e:72:48:98:51:15:46:b1:8f:7b:e1:51:
01:8a:a7:5c:e0:db:f1:10:f3:46:68:c9:08:6b:fe:
b3:62:8e:a5:5d:18:64:f6:a6:88:76:78:9b:df:a4:
71:8f:1d:6e:e6:14:be:ef:3c:03:cc:41:5a:50:e6:
54:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C8:46:2B:9B:C4:06:FD:81:79:9F:23:9A:32:73:30:58:D6:A5:1C
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/zshGK5vEBv2BeZ8jmjJzMFjWpRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.24.0/21
37.10.40.0-37.10.46.255
91.195.236.0/24
IPv6:
2a01:5041::/32
2a01:5042:1::/48
2a01:5042:3::/48
2a01:5042:7::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2001::/48
2a01:5042:2003::/48
2a01:5042:2007::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:3::/48
2a01:5043:7::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2003::/48
2a01:5043:2007::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
b3:8f:0a:71:e7:e3:ae:89:26:66:cd:3d:25:fb:51:7f:32:49:
81:04:83:e4:9b:5f:1d:f9:11:1a:57:55:89:2d:9f:0b:3d:3e:
8c:3c:cb:8e:ce:40:51:f2:77:be:9b:1a:96:16:3b:c7:7c:e7:
13:d9:52:13:22:88:a5:9d:54:55:e5:06:69:7a:39:05:1b:57:
56:cc:65:ce:0c:b9:40:39:f3:40:cd:d1:27:00:3e:4a:6b:79:
91:e6:ad:e2:5d:42:5b:13:a5:8b:ad:d3:0a:3d:68:86:2e:6c:
54:eb:e6:3d:c2:50:0e:49:db:11:0c:d0:af:22:f2:79:ea:6b:
f1:47:3b:91:d6:3d:8c:75:7c:60:8c:a7:5f:26:ac:43:db:b3:
0a:d3:5a:ad:6f:59:1e:78:ad:e6:1b:76:96:29:b1:c7:85:ad:
f8:7f:34:1f:c5:0b:6d:98:2c:39:44:b9:a2:21:99:2c:d7:c7:
a4:4f:5b:81:7b:3d:5d:3a:22:a8:fd:34:9a:d6:52:c3:c9:79:
9e:b1:10:97:70:f4:6d:04:aa:cb:77:a2:dc:b4:82:39:fe:bb:
a3:a0:ee:3b:20:26:03:8b:d2:cf:91:f5:fe:e9:a7:0a:63:de:
98:83:4a:9e:95:90:49:4a:de:6d:85:27:01:3e:4c:6a:41:65:
81:65:60:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:30 2024 by rpki-client on console-ams.rpki-client.org