Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/tfGr8zdmdIrWWCYvivfCxNvxoxA.roa
File: tfGr8zdmdIrWWCYvivfCxNvxoxA.roa (raw, json)
Hash identifier: r6YcArgkX4a2F5j6E9RDtnGQeTjEtoLgg46IW243iZs=
Subject key identifier: B5:F1:AB:F3:37:66:74:8A:D6:58:26:2F:8A:F7:C2:C4:DB:F1:A3:10
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 0186DEDCBE3954C9AB31D24767F1E3857739
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/tfGr8zdmdIrWWCYvivfCxNvxoxA.roa
Signing time: Tue 14 Mar 2023 06:44:13 +0000
ROA not before: Tue 14 Mar 2023 06:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 45.140.224.0/22 maxlen: 22
45.87.4.0/22 maxlen: 22
185.18.213.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
37.32.32.0/24 maxlen: 24
37.32.33.0/24 maxlen: 24
37.32.32.0/21 maxlen: 21
37.32.32.0/22 maxlen: 22
37.32.36.0/22 maxlen: 22
37.32.37.0/24 maxlen: 24
37.32.38.0/24 maxlen: 24
37.32.36.0/24 maxlen: 24
37.32.35.0/24 maxlen: 24
37.32.34.0/24 maxlen: 24
37.32.39.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
86.57.120.0/23 maxlen: 23
86.57.122.0/23 maxlen: 23
86.57.96.0/20 maxlen: 20
86.57.112.0/23 maxlen: 23
86.57.114.0/23 maxlen: 23
86.57.116.0/22 maxlen: 22
217.172.124.0/23 maxlen: 23
217.172.120.0/21 maxlen: 24
217.172.127.0/24 maxlen: 24
217.172.126.0/23 maxlen: 23
78.110.120.0/22 maxlen: 24
85.198.24.0/22 maxlen: 24
45.9.253.0/24 maxlen: 24
45.9.252.0/24 maxlen: 24
45.9.254.0/24 maxlen: 24
37.75.246.0/24 maxlen: 24
37.75.245.0/24 maxlen: 24
37.75.244.0/24 maxlen: 24
37.75.244.0/22 maxlen: 22
37.75.243.0/24 maxlen: 24
37.75.247.0/24 maxlen: 24
195.110.38.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
195.110.39.0/24 maxlen: 24
185.182.250.0/24 maxlen: 24
185.182.250.0/23 maxlen: 23
185.182.248.0/22 maxlen: 22
185.182.248.0/23 maxlen: 23
185.182.251.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
91.236.168.0/24 maxlen: 24
46.28.74.0/24 maxlen: 24
46.28.73.0/24 maxlen: 24
46.28.72.0/24 maxlen: 24
46.28.72.0/21 maxlen: 24
185.121.128.0/22 maxlen: 24
185.121.128.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.129.0/24 maxlen: 24
88.135.38.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.134.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
84.47.226.0/24 maxlen: 24
84.47.224.0/22 maxlen: 22
84.47.225.0/24 maxlen: 24
84.47.224.0/21 maxlen: 21
84.47.224.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
84.47.231.0/24 maxlen: 24
84.47.227.0/24 maxlen: 24
84.47.230.0/24 maxlen: 24
84.47.229.0/24 maxlen: 24
84.47.228.0/24 maxlen: 24
84.47.228.0/22 maxlen: 22
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
2a02:828::/32 maxlen: 32
2a02:829::/32 maxlen: 32
2a02:82b::/32 maxlen: 32
2a02:82f::/32 maxlen: 32
2a02:828:1::/48 maxlen: 48
2a02:82a::/32 maxlen: 32
2a02:828::/29 maxlen: 29
2a02:828::/64 maxlen: 64
2a02:828::/48 maxlen: 48
2a02:82e::/32 maxlen: 32
2a02:82c::/32 maxlen: 32
2a02:82d::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:de:dc:be:39:54:c9:ab:31:d2:47:67:f1:e3:85:77:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Mar 14 06:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5f1abf33766748ad658262f8af7c2c4dbf1a310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:a5:b3:cf:14:cf:d9:94:c8:f8:27:43:57:
b5:51:63:a4:34:e4:b0:ae:73:45:63:b5:0a:ea:d1:
1a:ce:72:9e:fe:97:a4:f3:a6:2c:6a:75:52:4d:55:
25:69:9b:83:c7:32:c7:08:af:51:5a:4e:b7:5c:30:
92:e3:1c:1c:e2:ca:39:67:6f:60:19:82:30:63:4a:
71:d8:0e:6b:ae:c3:d7:26:05:ee:a9:c4:08:5a:28:
9d:11:3e:00:29:86:09:65:1b:7e:e1:4b:56:b7:0e:
71:c9:80:f8:bf:7e:58:28:6b:14:a7:e7:10:f6:2a:
dc:24:ef:42:30:44:12:01:5a:b5:bc:ee:19:b1:b4:
7d:8e:c7:1d:55:8d:9a:89:d7:5b:91:b7:9d:ee:37:
19:46:cc:02:47:9e:d9:22:1e:3f:09:3c:40:ff:44:
33:97:36:42:9d:cf:13:3b:82:42:f4:0c:c3:91:2d:
04:e3:18:f8:d4:6e:49:6d:2b:9e:e5:e8:c0:7e:eb:
25:e0:0c:8f:9a:e3:3f:21:ff:2b:a5:e5:63:98:c8:
e9:be:7e:48:42:96:81:1f:38:c8:4b:7e:6d:e3:67:
a3:44:bb:18:1d:3f:50:c1:49:b7:3c:eb:ed:24:5d:
39:66:11:5c:0c:37:a7:cf:89:d5:ce:9e:d0:00:27:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F1:AB:F3:37:66:74:8A:D6:58:26:2F:8A:F7:C2:C4:DB:F1:A3:10
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/tfGr8zdmdIrWWCYvivfCxNvxoxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.32.0/21
37.75.243.0-37.75.247.255
45.9.252.0-45.9.254.255
45.87.4.0/22
45.140.224.0/22
46.28.72.0/21
78.110.120.0/22
84.47.224.0/21
85.198.24.0/22
86.57.96.0-86.57.123.255
88.135.37.0-88.135.39.255
91.236.168.0/23
185.18.212.0/22
185.51.200.0/22
185.121.128.0/22
185.128.136.0/22
185.141.132.0/22
185.182.248.0/22
188.209.152.0/23
195.110.38.0/23
217.172.120.0/21
IPv6:
2a02:828::/29
Signature Algorithm: sha256WithRSAEncryption
86:62:7e:66:af:6b:94:00:f7:1b:9d:60:73:1e:9a:6c:10:71:
c7:fc:a7:55:de:c9:24:2e:10:21:5a:29:f4:19:36:9e:60:15:
06:11:a7:f4:3c:15:7b:64:17:d6:ba:77:b6:99:f3:7f:f2:63:
29:32:df:46:81:a3:4b:da:72:fd:f2:0f:db:af:57:05:46:44:
56:00:45:7c:15:85:0d:b6:5d:80:73:fb:74:32:64:d1:03:ee:
19:a3:12:fb:1c:52:e2:80:07:3a:98:c7:f4:47:93:af:ff:31:
f7:17:53:52:42:bd:84:53:9e:b3:bd:4b:43:04:e0:39:82:ec:
46:88:95:0e:16:e7:74:ad:a6:2f:17:ed:80:6b:4f:1f:54:01:
74:93:93:f6:be:0e:47:d8:7b:e3:f7:42:22:b2:9b:c0:f6:82:
5e:68:68:cc:77:ea:9d:c9:18:bc:2a:f4:5f:a1:ad:c5:f8:8f:
ff:c2:21:d0:e4:58:97:23:34:7b:59:f6:77:c4:a5:f9:cf:67:
7e:2d:f6:5b:9e:78:f2:e8:a2:7d:ee:db:af:97:03:5b:ae:e9:
79:2c:16:7b:c6:a2:77:cc:f5:ba:18:ef:38:a7:ee:41:74:34:
58:98:2e:99:57:9e:18:6b:aa:63:14:66:f8:a2:34:71:d3:19:
6a:34:8c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org