Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/K5Im6OTe8tEF1Q1fiVV5OFKijYQ.roa
File: K5Im6OTe8tEF1Q1fiVV5OFKijYQ.roa (raw, json)
Hash identifier: zseq/0to+QCblnHxy/Jv+53gOvnMYbL8pnOP7rJC3eE=
Subject key identifier: 2B:92:26:E8:E4:DE:F2:D1:05:D5:0D:5F:89:55:79:38:52:A2:8D:84
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01897737B4830B211BB8587D46C5A959FA8E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/K5Im6OTe8tEF1Q1fiVV5OFKijYQ.roa
Signing time: Fri 21 Jul 2023 06:51:26 +0000
ROA not before: Fri 21 Jul 2023 06:51:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 195.208.56.0/24 maxlen: 24
195.19.172.0/22 maxlen: 24
195.19.168.0/22 maxlen: 24
195.208.80.0/22 maxlen: 24
195.208.84.0/24 maxlen: 24
195.208.88.0/22 maxlen: 24
195.208.86.0/23 maxlen: 24
195.208.92.0/22 maxlen: 24
195.19.199.0/24 maxlen: 24
195.19.195.0/24 maxlen: 24
62.76.164.0/24 maxlen: 24
195.208.21.0/24 maxlen: 24
195.208.20.0/24 maxlen: 24
193.232.54.0/24 maxlen: 24
195.208.178.0/24 maxlen: 24
195.208.180.0/24 maxlen: 24
193.232.88.0/22 maxlen: 24
195.208.110.0/24 maxlen: 24
195.208.117.0/24 maxlen: 24
195.19.219.0/24 maxlen: 24
62.76.7.0/24 maxlen: 24
194.190.149.0/24 maxlen: 24
212.193.184.0/22 maxlen: 24
212.193.188.0/22 maxlen: 24
194.190.131.0/24 maxlen: 24
62.76.155.0/24 maxlen: 24
194.190.210.0/23 maxlen: 24
195.19.29.0/24 maxlen: 24
194.226.187.0/24 maxlen: 24
212.192.228.0/24 maxlen: 24
195.209.188.0/24 maxlen: 24
194.226.166.0/24 maxlen: 24
194.226.165.0/24 maxlen: 24
194.226.184.0/24 maxlen: 24
194.85.179.0/24 maxlen: 24
194.85.180.0/24 maxlen: 24
194.85.181.0/24 maxlen: 24
194.85.182.0/24 maxlen: 24
212.193.162.0/24 maxlen: 24
212.193.164.0/24 maxlen: 24
212.193.168.0/24 maxlen: 24
212.193.171.0/24 maxlen: 24
212.193.167.0/24 maxlen: 24
212.193.102.0/24 maxlen: 24
212.192.56.0/22 maxlen: 24
212.192.63.0/24 maxlen: 24
212.192.60.0/24 maxlen: 24
212.192.61.0/24 maxlen: 24
194.226.4.0/24 maxlen: 24
194.226.5.0/24 maxlen: 24
193.232.204.0/23 maxlen: 24
194.226.20.0/24 maxlen: 24
212.192.168.0/24 maxlen: 24
194.226.97.0/24 maxlen: 24
195.209.135.0/24 maxlen: 24
195.209.145.0/24 maxlen: 24
194.226.112.0/24 maxlen: 24
212.192.192.0/24 maxlen: 24
194.226.115.0/24 maxlen: 24
212.192.196.0/22 maxlen: 24
194.226.113.0/24 maxlen: 24
212.192.195.0/24 maxlen: 24
194.226.120.0/24 maxlen: 24
194.226.124.0/24 maxlen: 24
194.226.125.0/24 maxlen: 24
194.226.123.0/24 maxlen: 24
194.226.126.0/24 maxlen: 24
193.232.222.0/24 maxlen: 24
193.232.220.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jul 2023 09:10:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:37:b4:83:0b:21:1b:b8:58:7d:46:c5:a9:59:fa:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 21 06:51:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b9226e8e4def2d105d50d5f8955793852a28d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ba:5e:4f:bf:14:4e:fd:23:ef:b0:90:0b:85:
c1:b1:b9:16:86:3f:1e:c2:e9:b5:a2:f8:a3:f5:43:
d7:06:37:19:e1:dd:dc:13:78:07:c9:ef:31:66:86:
7a:4f:0e:87:86:6e:1a:f7:0e:30:a0:20:c3:9b:53:
7a:83:d3:fc:c2:d5:e5:ea:08:cd:d3:92:3d:25:be:
39:1f:fc:c7:bd:46:11:7b:c0:21:2c:9b:62:bf:72:
38:0e:30:73:bc:67:e2:9a:18:4a:e6:90:59:a3:0c:
72:de:e8:4a:ad:21:bd:12:c0:77:0a:f6:76:6b:a5:
73:ea:78:2f:9f:14:ba:bb:4a:5e:b9:d7:21:5d:af:
b4:09:5d:70:23:d8:af:f7:51:3b:e6:2e:84:ac:58:
5f:de:f5:c0:82:af:d6:a3:89:07:a6:47:21:4c:83:
8c:3d:c2:73:3d:23:12:0f:75:9c:e6:d0:67:dd:fc:
78:8f:86:a8:3a:53:2b:9a:56:11:24:69:a5:a8:fe:
5d:7b:b4:15:e7:98:55:fc:3b:bf:0b:02:47:19:52:
1c:76:fb:9e:c6:10:06:98:7b:be:79:44:5b:d6:73:
71:48:cc:4e:cc:77:95:c3:3e:b3:0a:7b:7b:3d:27:
85:3d:c3:43:ff:ea:17:87:b0:7e:75:92:a0:e3:40:
aa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:92:26:E8:E4:DE:F2:D1:05:D5:0D:5F:89:55:79:38:52:A2:8D:84
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/K5Im6OTe8tEF1Q1fiVV5OFKijYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.7.0/24
62.76.155.0/24
62.76.164.0/24
193.232.54.0/24
193.232.88.0/22
193.232.204.0/23
193.232.220.0-193.232.222.255
194.85.179.0-194.85.182.255
194.190.131.0/24
194.190.149.0/24
194.190.210.0/23
194.226.4.0/23
194.226.20.0/24
194.226.97.0/24
194.226.112.0/23
194.226.115.0/24
194.226.120.0/24
194.226.123.0-194.226.126.255
194.226.165.0-194.226.166.255
194.226.184.0/24
194.226.187.0/24
195.19.29.0/24
195.19.168.0/21
195.19.195.0/24
195.19.199.0/24
195.19.219.0/24
195.208.20.0/23
195.208.56.0/24
195.208.80.0-195.208.84.255
195.208.86.0-195.208.95.255
195.208.110.0/24
195.208.117.0/24
195.208.178.0/24
195.208.180.0/24
195.209.135.0/24
195.209.145.0/24
195.209.188.0/24
212.192.56.0-212.192.61.255
212.192.63.0/24
212.192.168.0/24
212.192.192.0/24
212.192.195.0-212.192.199.255
212.192.228.0/24
212.193.102.0/24
212.193.162.0/24
212.193.164.0/24
212.193.167.0-212.193.168.255
212.193.171.0/24
212.193.184.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:36:6a:b9:bd:6b:20:d8:2e:85:3d:8e:dc:56:41:55:86:b1:
30:60:58:28:d1:e5:d3:02:c9:2e:21:2b:f6:2e:24:3d:2b:81:
11:91:f8:bf:f2:32:a4:00:d3:5a:e1:5d:e9:e7:ef:4a:17:50:
40:ee:b3:23:fc:25:d9:b5:55:89:b5:b4:e3:42:f2:43:a7:29:
d5:8e:68:6d:a7:86:2a:99:be:c2:35:79:d7:a0:f1:6a:a5:8d:
ea:e5:1e:dc:40:a3:fe:73:2e:a0:fa:ae:3d:80:6a:bc:92:e4:
d2:05:6a:dd:74:76:e9:1f:9b:66:96:59:03:49:db:f5:6a:fb:
f6:4f:2b:2c:27:aa:74:c5:dc:43:c6:f1:54:03:dd:ba:e7:ae:
d7:73:7e:5b:1d:1a:78:6d:fd:8a:fe:f8:a8:4c:e2:2e:f3:ea:
01:c2:81:0f:b1:63:3b:99:82:dc:9c:27:14:7e:10:81:29:b7:
c2:90:4f:96:91:c0:b4:ea:11:a6:09:4c:99:f6:58:4d:2f:99:
b0:b6:66:ce:96:bb:35:60:45:5e:d5:09:c9:df:53:cc:3a:49:
db:f3:25:12:46:2a:69:9b:88:c2:b4:b8:99:cf:b4:78:7d:01:
32:40:a1:35:7f:3a:17:50:cb:1b:b0:16:00:27:10:88:91:76:
9b:09:23:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org