Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lX-WRmdxO2kmabF7-KjecGXWu5E.roa
File: lX-WRmdxO2kmabF7-KjecGXWu5E.roa (raw, json)
Hash identifier: FYPZ11Q23xts0BgI1ubRGn442U4Hy3Ec/cTIGY7S5VM=
Subject key identifier: 95:7F:96:46:67:71:3B:69:26:69:B1:7B:F8:A8:DE:70:65:D6:BB:91
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 018F86B11A4173486CDB359EE9F187EA098E
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lX-WRmdxO2kmabF7-KjecGXWu5E.roa
Signing time: Fri 17 May 2024 13:15:04 +0000
ROA not before: Fri 17 May 2024 13:15:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
37.18.72.0/23 maxlen: 23
37.18.100.0/23 maxlen: 23
37.18.102.0/24 maxlen: 24
37.18.107.0/24 maxlen: 24
37.18.108.0/22 maxlen: 22
37.18.112.0/23 maxlen: 23
37.18.114.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.139.0/24 maxlen: 24
37.230.179.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.186.0/24 maxlen: 24
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
45.89.224.0/22 maxlen: 22
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
46.243.172.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.206.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.100.0/22 maxlen: 22
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
91.224.86.0/23 maxlen: 23
94.139.252.0/22 maxlen: 22
95.174.88.0/21 maxlen: 21
141.101.151.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.201.0/24 maxlen: 24
176.109.96.0/20 maxlen: 20
176.123.160.0/21 maxlen: 21
178.170.191.0/24 maxlen: 24
178.170.192.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
178.170.242.0/24 maxlen: 24
185.50.200.0/22 maxlen: 22
188.72.96.0/24 maxlen: 24
188.72.106.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
188.72.117.0/24 maxlen: 24
188.72.118.0/24 maxlen: 24
192.144.12.0/22 maxlen: 22
194.5.92.0/23 maxlen: 23
195.128.152.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 May 2024 14:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:b1:1a:41:73:48:6c:db:35:9e:e9:f1:87:ea:09:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: May 17 13:15:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=957f964667713b692669b17bf8a8de7065d6bb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cd:92:a7:ad:32:84:a1:8a:14:2a:8a:49:7f:
98:55:85:29:cd:13:d6:ee:bd:8b:d8:66:e2:16:9c:
33:68:00:92:72:11:00:b3:95:eb:cc:ed:09:b6:83:
db:da:44:c7:6c:db:e2:49:73:25:b2:b0:7f:6d:1d:
2d:f0:29:31:21:f1:7f:cf:b3:e8:67:0c:2f:21:ac:
f9:c5:1e:5a:22:f3:ff:19:46:00:81:0f:39:58:fc:
65:60:bb:64:92:28:30:df:d3:f4:ee:13:56:48:e9:
bd:3d:8f:82:83:1f:bd:0b:76:13:a0:1d:07:0b:82:
18:68:aa:55:2c:9c:21:bb:68:a7:06:20:a6:2b:8c:
aa:7e:6d:26:2c:81:47:04:e3:08:c2:10:d0:45:7f:
87:01:83:cb:65:2c:ed:b3:74:6f:d1:43:96:bd:1a:
d1:c9:2b:9c:8f:20:4d:8b:94:9c:38:35:03:e1:82:
14:14:86:ab:7c:8a:02:11:f4:0c:90:35:05:dc:e7:
0b:8e:9f:d1:fa:76:0d:ab:99:05:3a:9f:87:6a:3e:
0e:89:b8:dc:d2:f2:77:c1:6c:e5:bb:7b:26:80:ed:
4f:54:31:bd:e0:8e:34:7f:ba:b3:85:e8:74:06:16:
dc:32:5a:bf:e1:8e:43:e4:b5:db:07:73:a0:ab:26:
82:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7F:96:46:67:71:3B:69:26:69:B1:7B:F8:A8:DE:70:65:D6:BB:91
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/lX-WRmdxO2kmabF7-KjecGXWu5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
87.242.84.0-87.242.95.255
87.242.100.0/22
87.242.116.0-87.242.127.255
89.232.160.0-89.232.171.255
89.232.176.0/22
91.224.86.0/23
94.139.252.0/22
95.174.88.0/21
141.101.151.0-141.101.152.255
141.101.201.0/24
176.109.96.0/20
176.123.160.0/21
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
192.144.12.0/22
194.5.92.0/23
195.128.152.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
0f:6b:1c:e8:8f:b6:e5:dc:b6:4e:a4:8d:8e:f2:f6:94:8a:b5:
7f:3b:e6:5c:38:e4:7b:45:b5:9f:ef:28:4f:86:d4:4d:ac:c7:
69:f8:76:90:0a:e5:30:9f:94:b9:eb:51:46:8e:45:93:c9:fa:
7b:1f:96:b8:7f:9b:a3:70:33:a7:2e:20:7e:03:7c:79:0e:2f:
31:63:2f:11:95:95:63:7b:13:d4:b2:f7:d0:b2:50:91:aa:35:
fd:07:b2:dc:39:f6:4a:5f:cf:56:c8:77:4d:fd:c9:ac:82:d5:
fb:88:29:c3:5f:18:11:96:36:18:a5:9e:a3:30:1f:a8:75:78:
09:a5:74:01:98:5c:38:73:b5:ff:e6:96:19:22:a4:8c:e1:78:
2e:a4:75:3b:b2:d5:27:2f:78:65:3e:6a:27:a1:b8:4c:f9:d7:
bd:39:1c:4a:d5:c0:f4:aa:50:92:93:e0:1d:a1:68:26:b6:8e:
d3:c0:8a:13:0b:cf:43:a9:85:86:82:d3:5b:1c:a7:38:f1:17:
ae:6e:d6:a0:cd:a0:5d:15:d8:cc:7a:06:0c:8b:56:8e:23:cf:
47:49:74:cc:1c:1e:47:65:26:d7:7e:0f:07:bb:5f:c2:70:4a:
c0:ee:ee:4e:5d:3a:6b:bf:61:a3:fe:b9:a3:98:4a:b6:c4:95:
39:39:74:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:55:02 2025 by rpki-client