Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/EhJa8eBwRQcpIFuHtxNVODoXAlE.roa
File: EhJa8eBwRQcpIFuHtxNVODoXAlE.roa (raw, json)
Hash identifier: zHukQJkCIpoXNfljUvnYXcemoFRhPRuqvVeQnXQmm2o=
Subject key identifier: 12:12:5A:F1:E0:70:45:07:29:20:5B:87:B7:13:55:38:3A:17:02:51
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 018E36C9E6822AB498A323F97C5EED3749EB
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/EhJa8eBwRQcpIFuHtxNVODoXAlE.roa
Signing time: Wed 13 Mar 2024 07:49:45 +0000
ROA not before: Wed 13 Mar 2024 07:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202468
IP address blocks: 37.32.0.0/19 maxlen: 24
37.32.0.0/22 maxlen: 22
37.32.4.0/22 maxlen: 22
37.32.8.0/22 maxlen: 22
37.32.12.0/22 maxlen: 22
37.32.16.0/24 maxlen: 24
37.32.17.0/24 maxlen: 24
37.32.18.0/24 maxlen: 24
37.32.19.0/24 maxlen: 24
37.32.20.0/22 maxlen: 22
37.32.24.0/22 maxlen: 22
37.32.28.0/22 maxlen: 24
37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
94.101.176.0/20 maxlen: 24
94.101.180.0/23 maxlen: 23
94.101.180.0/24 maxlen: 24
94.101.182.0/24 maxlen: 24
94.101.184.0/21 maxlen: 24
185.97.116.0/22 maxlen: 24
185.143.232.0/22 maxlen: 24
185.206.92.0/22 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.224.0/24 maxlen: 24
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.220.227.0/24 maxlen: 24
185.226.116.0/22 maxlen: 24
185.228.236.0/22 maxlen: 22
185.228.236.0/24 maxlen: 24
185.228.237.0/24 maxlen: 24
185.228.238.0/24 maxlen: 24
185.228.239.0/24 maxlen: 24
185.231.180.0/22 maxlen: 22
185.239.104.0/22 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
188.121.104.0/22 maxlen: 22
188.121.108.0/22 maxlen: 22
188.121.120.0/21 maxlen: 24
188.121.124.0/23 maxlen: 23
188.121.127.0/24 maxlen: 24
193.176.240.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
2a07:3900::/29 maxlen: 29
2a07:3900::/32 maxlen: 32
2a07:3900::/48 maxlen: 48
2a07:3900:1::/48 maxlen: 48
2a07:3901::/32 maxlen: 32
2a07:3902::/32 maxlen: 32
2a07:3902:100::/40 maxlen: 40
2a07:3903::/32 maxlen: 32
2a07:3904::/32 maxlen: 32
2a07:3905::/32 maxlen: 32
2a07:3906::/32 maxlen: 32
2a07:3907::/32 maxlen: 32
2a0c:a7c0::/29 maxlen: 29
2a0c:a7c0::/48 maxlen: 48
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:2::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Apr 2024 11:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:36:c9:e6:82:2a:b4:98:a3:23:f9:7c:5e:ed:37:49:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Mar 13 07:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12125af1e070450729205b87b71355383a170251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:11:e4:64:bc:df:40:d0:3a:f7:e1:9c:b5:aa:
0b:ff:2d:a4:4a:62:50:30:14:75:ff:dc:78:47:14:
52:a2:df:63:e6:9f:57:58:d0:6b:9e:8f:45:d7:df:
10:86:b4:c5:14:c2:12:6d:e0:dc:cd:33:27:b5:1c:
01:58:b5:67:09:44:21:9c:ed:b3:2e:13:58:59:88:
dc:6a:fe:08:39:80:3c:9b:1a:5e:86:41:01:b7:4e:
3d:a7:17:4f:01:c9:9e:b2:06:97:b0:e6:00:95:e5:
2b:59:4f:ce:06:ed:a0:f2:70:9d:3a:14:34:f2:76:
17:9c:49:da:48:32:5f:81:c7:3f:06:cb:0b:4d:af:
8e:a3:e3:f1:da:6d:cd:de:86:d3:42:42:ab:0b:36:
ad:70:f4:1b:e3:15:86:93:7c:0a:fb:de:04:d1:6a:
a9:a5:47:96:ba:47:f3:d9:23:bc:a5:e5:e3:dd:ba:
02:5b:e0:6f:f5:63:2d:2b:f3:b7:bc:e4:20:9d:4d:
d3:09:19:f0:e4:9d:e5:88:e8:07:52:1e:a7:25:d4:
1e:08:8e:d7:1a:4a:16:52:33:6a:c7:6e:cf:a6:29:
a5:b1:c9:26:ab:e0:34:52:bc:85:70:a7:64:3b:4a:
f0:df:dc:d0:4e:04:dd:88:d6:3b:0e:78:ff:a2:c2:
59:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:12:5A:F1:E0:70:45:07:29:20:5B:87:B7:13:55:38:3A:17:02:51
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/EhJa8eBwRQcpIFuHtxNVODoXAlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.0.0/19
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/29
Signature Algorithm: sha256WithRSAEncryption
47:44:e2:0b:d1:fb:1f:d9:46:d5:0a:84:9c:a8:6a:6f:32:26:
5b:be:30:17:8f:ae:ce:ac:0d:ae:f6:6d:42:fb:a4:a5:31:65:
13:4f:78:bc:4b:fc:9b:02:b3:4e:b3:ec:ec:33:5b:8d:58:94:
be:1e:4e:af:f2:8d:ba:34:63:05:35:d4:c0:60:3b:ba:3e:b2:
20:be:c7:02:12:38:a7:df:73:83:96:b7:10:32:fc:1a:ea:18:
e2:bf:77:0e:4c:38:bd:93:7b:8d:b6:71:96:98:d5:6a:7e:1c:
24:63:c0:61:cf:ce:47:a6:a2:eb:8f:54:d2:9f:9a:49:d9:47:
a0:7b:fa:22:ee:8b:23:9a:c5:d2:3f:f2:0a:7b:2c:ad:a1:8a:
d2:9c:99:c1:8c:b7:60:6a:97:22:ee:0f:a2:d0:2c:35:12:0a:
6d:1b:48:18:cd:65:35:0d:4c:15:e8:a0:b2:99:b6:7f:66:92:
e1:dc:9e:8a:a0:41:81:e7:15:8c:9b:3f:95:5e:32:98:1a:13:
07:e9:38:f5:6e:53:46:ad:6e:96:c6:fb:e6:a0:a4:ad:5a:8e:
74:01:22:56:07:96:18:77:ba:83:52:6a:5b:2e:54:b2:b5:3e:
aa:df:ea:df:9b:29:43:72:8b:31:ae:39:06:99:ce:ea:31:5e:
11:11:5d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 14:38:36 2024 by rpki-client on console-fra.rpki-client.org