Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/ne2J86Obi-M05XG5udbCZ_COW60.roa
File: ne2J86Obi-M05XG5udbCZ_COW60.roa (raw, json)
Hash identifier: IvV6WRGdihER3I4eLTENYZ6aWSqKOdJAyg30ChtJnVk=
Subject key identifier: 9D:ED:89:F3:A3:9B:8B:E3:34:E5:71:B9:B9:D6:C2:67:F0:8E:5B:AD
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018EA3E20F105531A3C410B7D5D8DFFA4B58
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/ne2J86Obi-M05XG5udbCZ_COW60.roa
Signing time: Wed 03 Apr 2024 12:14:44 +0000
ROA not before: Wed 03 Apr 2024 12:14:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44285
IP address blocks: 37.32.32.0/21 maxlen: 21
37.32.32.0/22 maxlen: 22
37.32.32.0/24 maxlen: 24
37.32.33.0/24 maxlen: 24
37.32.34.0/24 maxlen: 24
37.32.35.0/24 maxlen: 24
37.32.36.0/22 maxlen: 22
37.32.36.0/24 maxlen: 24
37.32.37.0/24 maxlen: 24
37.32.38.0/24 maxlen: 24
37.32.39.0/24 maxlen: 24
37.75.243.0/24 maxlen: 24
37.75.244.0/22 maxlen: 22
37.75.244.0/24 maxlen: 24
37.75.245.0/24 maxlen: 24
37.75.246.0/24 maxlen: 24
37.75.247.0/24 maxlen: 24
45.9.252.0/22 maxlen: 24
45.9.252.0/24 maxlen: 24
45.9.253.0/24 maxlen: 24
45.9.254.0/24 maxlen: 24
45.87.4.0/22 maxlen: 22
45.140.224.0/22 maxlen: 22
46.28.72.0/21 maxlen: 24
46.28.72.0/24 maxlen: 24
46.28.73.0/24 maxlen: 24
46.28.74.0/24 maxlen: 24
78.110.120.0/22 maxlen: 24
84.47.224.0/21 maxlen: 21
84.47.224.0/22 maxlen: 22
84.47.224.0/24 maxlen: 24
84.47.225.0/24 maxlen: 24
84.47.226.0/24 maxlen: 24
84.47.227.0/24 maxlen: 24
84.47.228.0/22 maxlen: 22
84.47.228.0/24 maxlen: 24
84.47.229.0/24 maxlen: 24
84.47.230.0/24 maxlen: 24
84.47.231.0/24 maxlen: 24
85.198.24.0/22 maxlen: 24
86.57.96.0/20 maxlen: 20
86.57.112.0/23 maxlen: 23
86.57.114.0/23 maxlen: 23
86.57.116.0/22 maxlen: 22
86.57.120.0/23 maxlen: 23
86.57.122.0/23 maxlen: 23
88.135.37.0/24 maxlen: 24
88.135.38.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.168.0/24 maxlen: 24
91.236.169.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
185.51.200.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.121.128.0/22 maxlen: 24
185.121.128.0/24 maxlen: 24
185.121.129.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
185.128.137.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.182.248.0/22 maxlen: 22
185.182.248.0/23 maxlen: 23
185.182.250.0/23 maxlen: 23
185.182.250.0/24 maxlen: 24
185.182.251.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
195.110.38.0/23 maxlen: 23
195.110.38.0/24 maxlen: 24
195.110.39.0/24 maxlen: 24
217.172.120.0/21 maxlen: 24
217.172.124.0/23 maxlen: 23
217.172.126.0/23 maxlen: 23
217.172.127.0/24 maxlen: 24
2a02:828::/29 maxlen: 29
2a02:828::/32 maxlen: 32
2a02:828::/48 maxlen: 48
2a02:828::/64 maxlen: 64
2a02:828:1::/48 maxlen: 48
2a02:829::/32 maxlen: 32
2a02:82a::/32 maxlen: 32
2a02:82b::/32 maxlen: 32
2a02:82c::/32 maxlen: 32
2a02:82d::/32 maxlen: 32
2a02:82e::/32 maxlen: 32
2a02:82f::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 May 2024 00:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:e2:0f:10:55:31:a3:c4:10:b7:d5:d8:df:fa:4b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Apr 3 12:14:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ded89f3a39b8be334e571b9b9d6c267f08e5bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:36:41:1c:ff:5c:09:11:93:c0:18:4f:08:b0:
6f:02:1a:cd:28:78:6b:0c:10:37:41:17:ac:22:ba:
79:7a:61:b8:0b:46:62:46:c9:e9:6c:3a:24:98:af:
20:ab:07:af:65:a2:d9:41:6a:10:e2:ec:b7:51:83:
45:58:b5:f3:16:d9:22:b1:2e:95:68:e7:f8:ad:83:
e5:45:29:a2:15:f9:57:13:1b:bd:0e:27:07:4e:d1:
27:e5:b2:92:e9:9a:3a:ba:cc:6e:a8:b8:00:53:32:
2d:5e:80:5a:31:2f:62:5e:68:32:80:f5:a5:e7:bf:
d9:7f:5f:53:ac:81:ab:e0:a5:11:02:77:28:d2:43:
f1:88:41:c4:b5:9c:8e:cf:ab:59:43:ca:52:ab:9a:
1e:56:70:01:04:cf:5b:69:ae:6e:59:9a:97:a1:1c:
3b:10:33:35:cc:60:b0:5b:75:3b:06:2e:89:d6:c6:
bd:b4:12:ed:87:a1:48:6c:f0:4a:53:db:14:5b:0c:
e2:ff:40:30:54:78:c5:5b:65:d1:9f:35:f1:03:8e:
b0:00:d1:94:84:d5:5e:bb:8f:05:d9:d6:16:95:1b:
b8:a4:62:ae:70:72:2f:7b:68:be:35:3f:1c:9b:7a:
83:f2:e2:79:1b:bd:08:fc:df:77:5d:c1:29:29:68:
e4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:ED:89:F3:A3:9B:8B:E3:34:E5:71:B9:B9:D6:C2:67:F0:8E:5B:AD
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/ne2J86Obi-M05XG5udbCZ_COW60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.32.0/21
37.75.243.0-37.75.247.255
45.9.252.0/22
45.87.4.0/22
45.140.224.0/22
46.28.72.0/21
78.110.120.0/22
84.47.224.0/21
85.198.24.0/22
86.57.96.0-86.57.123.255
88.135.37.0-88.135.39.255
91.236.168.0/23
185.18.212.0/22
185.51.200.0/22
185.121.128.0/22
185.128.136.0/22
185.141.132.0/22
185.182.248.0/22
188.209.152.0/23
195.110.38.0/23
217.172.120.0/21
IPv6:
2a02:828::/29
Signature Algorithm: sha256WithRSAEncryption
86:b5:15:5a:cb:69:ef:df:44:8a:78:5c:67:a8:3f:af:e1:5e:
17:9f:92:a9:f0:6d:6b:ca:ca:d9:57:db:9b:c1:44:1f:9c:8c:
0a:c7:15:0a:98:15:16:e2:5b:f3:f4:6b:94:53:d5:4e:1d:51:
97:70:fd:42:34:47:d8:4d:12:7b:ed:27:1f:f2:5b:b2:69:4b:
9b:c6:9b:3b:8c:52:ec:23:24:ab:7d:04:6e:9e:93:8a:51:28:
ca:f0:5d:30:5a:d3:59:c1:cc:8f:27:79:10:9d:1c:85:bc:1b:
fd:9b:d1:f5:99:f9:85:31:f1:5a:bc:95:d9:2a:ba:e5:32:5a:
3a:fc:e4:d3:c7:9d:e7:c0:84:36:52:34:ba:04:e9:53:53:cd:
25:05:fd:dc:b4:98:c7:43:a5:02:17:00:82:77:f0:a9:dd:76:
1f:1f:cd:65:de:23:4f:72:44:1f:c9:0a:d2:65:aa:7d:56:51:
ac:db:5f:e4:01:6d:93:2b:b4:41:fa:fe:ea:a5:83:e1:ba:d5:
7b:98:79:1f:5a:f7:41:f2:01:da:8c:cd:a8:43:56:96:aa:fc:
d1:de:f7:94:66:ea:d6:bf:de:34:f1:87:c0:d9:be:5d:57:d0:
aa:f6:1e:20:2c:7a:4a:06:d1:f8:e3:43:cf:2f:13:0d:ed:3e:
3d:09:dc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org