Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/4AYpAMPAhQzyLW9sYLwMo5kkKks.roa
File: 4AYpAMPAhQzyLW9sYLwMo5kkKks.roa (raw, json)
Hash identifier: +yvgErD7wl1KHjCoP2iwNhxywaSSnTcql3wgA5RQMAI=
Subject key identifier: E0:06:29:00:C3:C0:85:0C:F2:2D:6F:6C:60:BC:0C:A3:99:24:2A:4B
Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Certificate serial: 018D3568B888DB7C86792512877E560FB810
Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/4AYpAMPAhQzyLW9sYLwMo5kkKks.roa
Signing time: Tue 23 Jan 2024 08:21:11 +0000
ROA not before: Tue 23 Jan 2024 08:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39686
IP address blocks: 37.251.176.0/20 maxlen: 24
37.251.200.0/21 maxlen: 24
37.251.240.0/21 maxlen: 24
45.11.164.0/22 maxlen: 24
46.231.104.0/21 maxlen: 24
62.122.40.0/21 maxlen: 24
89.20.160.0/19 maxlen: 24
93.95.248.0/21 maxlen: 24
94.24.64.0/21 maxlen: 24
109.94.144.0/20 maxlen: 24
141.136.16.0/20 maxlen: 24
144.178.64.0/19 maxlen: 24
144.178.96.0/21 maxlen: 24
144.178.108.0/22 maxlen: 24
144.178.112.0/22 maxlen: 24
144.178.120.0/21 maxlen: 24
144.178.192.0/19 maxlen: 24
144.178.224.0/20 maxlen: 24
144.178.240.0/21 maxlen: 24
144.178.248.0/22 maxlen: 24
151.236.144.0/20 maxlen: 24
161.51.64.0/19 maxlen: 24
185.184.204.0/22 maxlen: 24
2a01:9bc0::/29 maxlen: 48
2a02:fe8::/32 maxlen: 48
2a02:fe9::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jan 2024 07:45:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:68:b8:88:db:7c:86:79:25:12:87:7e:56:0f:b8:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Validity
Not Before: Jan 23 08:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0062900c3c0850cf22d6f6c60bc0ca399242a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:19:12:77:9a:b9:c4:d5:13:2f:c3:8d:b6:fd:
70:fa:d1:31:ac:b9:71:f5:74:89:af:ce:d4:6c:1a:
21:ca:cb:10:98:d6:fc:c7:de:ce:1c:6b:da:5f:86:
52:10:ba:fa:2e:4f:ba:3f:90:58:76:d2:87:ea:4c:
66:47:dc:96:53:63:38:21:db:4d:69:c6:b8:44:de:
af:95:97:fa:15:ef:00:71:75:55:67:c1:65:53:88:
bb:00:b4:25:2c:d4:28:60:8e:9a:bd:f6:76:41:a0:
5e:bf:25:43:51:97:6b:64:12:87:9a:1d:99:a4:10:
2f:76:0d:1e:3f:c8:fc:86:fd:79:17:5a:50:23:62:
1e:70:49:64:0c:64:67:0e:20:42:d2:08:0d:08:e9:
b4:96:3b:7b:c4:1e:72:e7:17:ce:22:68:cf:57:3d:
06:d4:9b:2a:34:fe:e5:a8:a4:36:c6:34:00:66:77:
af:8a:e1:a8:2b:2f:e6:a5:e7:c8:c2:e9:db:d9:ae:
33:0b:34:a3:90:bf:a5:93:98:9e:64:24:51:63:78:
4c:4b:86:0a:66:c9:16:4d:21:c6:a7:ad:05:2d:e4:
a8:03:e7:fc:be:7f:1c:3a:a5:fc:a8:63:28:9d:e3:
c2:9c:c5:6f:5b:8d:95:e4:78:38:f5:2d:54:b7:c3:
9c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:06:29:00:C3:C0:85:0C:F2:2D:6F:6C:60:BC:0C:A3:99:24:2A:4B
X509v3 Authority Key Identifier:
keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/4AYpAMPAhQzyLW9sYLwMo5kkKks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.251.176.0/20
37.251.200.0/21
37.251.240.0/21
45.11.164.0/22
46.231.104.0/21
62.122.40.0/21
89.20.160.0/19
93.95.248.0/21
94.24.64.0/21
109.94.144.0/20
141.136.16.0/20
144.178.64.0-144.178.103.255
144.178.108.0-144.178.115.255
144.178.120.0/21
144.178.192.0-144.178.251.255
151.236.144.0/20
161.51.64.0/19
185.184.204.0/22
IPv6:
2a01:9bc0::/29
2a02:fe8::/31
Signature Algorithm: sha256WithRSAEncryption
66:ec:53:80:79:a8:bc:7f:2b:1c:07:ba:34:a3:8a:0e:00:a6:
d3:5d:8b:e9:e0:88:28:62:0b:4b:be:6c:ab:ac:b4:a3:eb:97:
ac:53:79:1c:1f:f7:2f:58:69:1a:df:da:14:7d:1f:33:b6:23:
a2:64:f6:6a:19:4e:41:f2:f0:c2:f6:68:10:10:04:62:45:23:
78:88:ec:f3:f7:76:eb:49:dd:34:ea:29:b7:c1:e6:94:0c:d9:
bd:ca:44:2b:78:b3:de:80:44:d7:60:aa:e6:b3:5a:12:9a:e8:
21:4f:e8:f8:72:f7:15:ef:22:17:9e:cb:df:e1:71:10:fc:66:
37:02:3b:50:b5:4c:ef:6d:9a:4f:b7:d2:f8:c7:62:1f:6a:f3:
d2:7d:9d:23:01:90:55:4b:78:e6:5f:50:cb:76:5b:06:74:01:
3a:38:2a:91:51:7e:60:cc:14:c7:92:d6:25:52:93:41:02:0f:
45:33:3c:73:b4:d9:10:d3:c8:9c:75:bb:3d:82:c5:45:6a:af:
63:73:e7:d5:f1:b3:d4:b5:83:cc:33:99:fe:39:c4:c8:68:4c:
e8:b0:0e:ef:c9:14:bc:6b:b9:3e:cf:77:7c:ae:8a:06:df:77:
a4:1f:fa:11:1d:0a:99:f2:67:cb:4d:bc:8f:0f:e2:32:15:67:
d6:d2:ec:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:20 2024 by rpki-client on console-fra.rpki-client.org