Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cnTbESRt78nCTTMVWAwDZ8JRpG0.roa
File: cnTbESRt78nCTTMVWAwDZ8JRpG0.roa (raw, json)
Hash identifier: 7vXZ0wizVlYiZ5PKQfQWhSLfx4chtTRdjMGPN4UpQ+Q=
Subject key identifier: 72:74:DB:11:24:6D:EF:C9:C2:4D:33:15:58:0C:03:67:C2:51:A4:6D
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018ADBC9399C6855B21CB8CAC8546841ED44
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cnTbESRt78nCTTMVWAwDZ8JRpG0.roa
Signing time: Thu 28 Sep 2023 12:35:12 +0000
ROA not before: Thu 28 Sep 2023 12:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31208
IP address blocks: 178.178.82.0/24 maxlen: 24
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.131.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.169.212.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.141.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
2a03:d000:3000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:c9:39:9c:68:55:b2:1c:b8:ca:c8:54:68:41:ed:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Sep 28 12:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7274db11246defc9c24d3315580c0367c251a46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:59:04:d9:55:fe:c4:d7:da:ad:51:6d:89:c4:
28:ca:05:0b:e3:ce:ae:8c:92:01:4a:3b:0c:e3:f8:
6d:16:5f:01:0d:83:e8:fb:cb:96:85:c4:48:0e:04:
14:13:35:b3:51:d8:26:65:cf:fc:85:ce:08:3f:79:
ae:d9:17:10:ca:ec:9e:49:db:99:76:fa:29:d4:22:
1e:ce:ad:31:09:b3:58:3c:9a:e9:97:de:b1:c0:d6:
9a:e1:27:82:a9:10:57:43:f1:b5:0c:f1:c5:56:43:
3c:a1:fd:ed:2a:63:0a:d3:54:9f:21:d1:05:5b:86:
a0:db:62:9e:0e:04:35:82:dd:bb:70:d1:b9:80:1f:
8f:b6:30:e0:64:80:93:6f:8c:db:8f:d2:fc:9e:7a:
c7:96:e9:aa:1f:e9:f2:06:b4:9c:57:b3:04:94:8c:
08:c4:81:bb:ab:44:1e:1c:4a:ed:ef:45:b8:20:cd:
59:32:ad:cb:87:f1:49:83:85:c8:78:24:79:81:0e:
ac:b4:91:fa:68:c8:41:ec:03:ea:e5:eb:7d:83:4d:
84:e1:ee:a6:08:cd:f0:08:07:59:a6:69:53:97:48:
60:69:5e:2a:5f:ce:16:1e:4c:77:12:15:32:75:00:
86:39:2e:6e:66:34:13:64:82:97:96:26:81:70:59:
cf:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:DB:11:24:6D:EF:C9:C2:4D:33:15:58:0C:03:67:C2:51:A4:6D
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cnTbESRt78nCTTMVWAwDZ8JRpG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/24
37.28.186.0/24
37.29.72.0/24
37.29.74.0/23
46.229.136.0/21
83.149.40.0/24
83.149.42.0/23
83.169.208.0/24
83.169.211.0-83.169.214.255
178.176.56.0/21
178.178.82.0/24
178.178.128.0-178.178.137.255
178.178.142.0/23
188.170.48.0-188.170.50.255
188.170.52.0/23
188.170.56.0/23
188.170.59.0-188.170.63.255
IPv6:
2a03:d000:3000::/36
Signature Algorithm: sha256WithRSAEncryption
7e:09:aa:c9:1b:de:ee:0a:41:f7:1c:a5:91:60:43:73:1d:49:
71:4b:67:7e:6c:8b:75:c5:96:3f:43:ed:29:73:ce:1d:ba:b8:
23:c3:c2:e1:af:f5:19:72:84:6f:e7:fb:56:39:f0:c1:9e:8b:
e2:3a:aa:b1:af:cb:f6:9f:11:bc:a4:28:e2:e3:6b:90:4c:83:
48:54:af:7f:1e:b4:4c:a2:86:88:4c:50:d4:db:28:35:65:bf:
ab:c1:ad:e5:4d:55:b9:13:7b:ca:69:62:af:63:a0:8e:98:5f:
3a:5c:46:14:f6:33:31:2e:69:d2:d6:27:4a:f0:b1:f1:e2:04:
6f:cb:0e:b1:52:7d:6d:ed:8e:7f:c5:c4:20:12:de:20:4b:c2:
cd:a8:19:cd:3a:da:71:ef:ca:e4:ed:83:da:fc:87:79:58:c4:
cb:79:7e:ab:af:8c:79:ee:3a:bd:d5:f1:95:e6:e0:2e:9a:d6:
25:b5:1e:cc:e4:59:48:d5:bc:80:f6:bd:ff:13:dc:19:3e:55:
7e:32:0f:e8:e7:c7:63:57:c5:02:fd:62:5f:d2:f9:78:93:b1:
3c:dd:41:79:70:04:a4:c3:0d:c2:29:dd:06:26:6b:6c:55:e8:
29:19:75:41:da:56:75:c4:c3:81:22:39:c1:96:1e:0b:ca:fb:
24:d1:25:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org