Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/Aysj2TmjFOk57VNehABZXpnpw9Y.roa
File: Aysj2TmjFOk57VNehABZXpnpw9Y.roa (raw, json)
Hash identifier: HWYJEsl0fQdDQ/RZsxv9aJVjzhd5DhlWml1p4BbzkjY=
Subject key identifier: 03:2B:23:D9:39:A3:14:E9:39:ED:53:5E:84:00:59:5E:99:E9:C3:D6
Certificate issuer: /CN=c037958083b641b773123ceada7bef27558e5940
Certificate serial: 01856F79689A4D33A03C2F283A217D33C75C
Authority key identifier: C0:37:95:80:83:B6:41:B7:73:12:3C:EA:DA:7B:EF:27:55:8E:59:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/Aysj2TmjFOk57VNehABZXpnpw9Y.roa
Signing time: Sun 01 Jan 2023 22:35:05 +0000
ROA not before: Sun 01 Jan 2023 22:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25435
IP address blocks: 185.166.192.0/24 maxlen: 24
185.166.194.0/24 maxlen: 24
185.166.195.0/24 maxlen: 24
185.166.193.0/24 maxlen: 24
62.121.229.0/24 maxlen: 24
62.121.230.0/24 maxlen: 24
62.121.228.0/24 maxlen: 24
62.121.233.0/24 maxlen: 24
62.121.231.0/24 maxlen: 24
62.121.232.0/24 maxlen: 24
62.121.227.0/24 maxlen: 24
62.121.236.0/24 maxlen: 24
62.121.237.0/24 maxlen: 24
62.121.235.0/24 maxlen: 24
62.121.240.0/24 maxlen: 24
62.121.238.0/24 maxlen: 24
62.121.239.0/24 maxlen: 24
62.121.234.0/24 maxlen: 24
62.121.243.0/24 maxlen: 24
62.121.244.0/24 maxlen: 24
62.121.242.0/24 maxlen: 24
62.121.245.0/24 maxlen: 24
62.121.246.0/24 maxlen: 24
62.121.241.0/24 maxlen: 24
62.121.247.0/24 maxlen: 24
62.121.248.0/24 maxlen: 24
62.121.250.0/24 maxlen: 24
62.121.251.0/24 maxlen: 24
62.121.249.0/24 maxlen: 24
62.121.252.0/24 maxlen: 24
62.121.253.0/24 maxlen: 24
62.121.254.0/24 maxlen: 24
62.121.255.0/24 maxlen: 24
62.121.192.0/24 maxlen: 24
62.121.192.0/20 maxlen: 24
62.121.195.0/24 maxlen: 24
62.121.193.0/24 maxlen: 24
62.121.194.0/24 maxlen: 24
62.121.198.0/24 maxlen: 24
62.121.199.0/24 maxlen: 24
62.121.196.0/24 maxlen: 24
62.121.197.0/24 maxlen: 24
62.121.202.0/24 maxlen: 24
62.121.200.0/24 maxlen: 24
62.121.201.0/24 maxlen: 24
62.121.205.0/24 maxlen: 24
62.121.206.0/24 maxlen: 24
62.121.203.0/24 maxlen: 24
62.121.204.0/24 maxlen: 24
62.121.209.0/24 maxlen: 24
62.121.207.0/24 maxlen: 24
62.121.208.0/24 maxlen: 24
62.121.212.0/24 maxlen: 24
62.121.213.0/24 maxlen: 24
62.121.210.0/24 maxlen: 24
62.121.211.0/24 maxlen: 24
62.121.216.0/24 maxlen: 24
62.121.214.0/24 maxlen: 24
62.121.215.0/24 maxlen: 24
62.121.219.0/24 maxlen: 24
62.121.217.0/24 maxlen: 24
62.121.218.0/24 maxlen: 24
62.121.220.0/24 maxlen: 24
62.121.222.0/24 maxlen: 24
62.121.223.0/24 maxlen: 24
62.121.221.0/24 maxlen: 24
62.121.226.0/24 maxlen: 24
62.121.224.0/24 maxlen: 24
62.121.225.0/24 maxlen: 24
2a07:2d40::/48 maxlen: 48
2a07:2d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:68:9a:4d:33:a0:3c:2f:28:3a:21:7d:33:c7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c037958083b641b773123ceada7bef27558e5940
Validity
Not Before: Jan 1 22:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=032b23d939a314e939ed535e8400595e99e9c3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:f5:87:9a:31:c7:39:31:22:81:ef:a0:b8:
d0:3d:7c:64:67:80:e3:8f:20:35:df:1a:8c:b8:ef:
ca:f2:d4:86:a9:27:21:69:00:d5:68:ea:6e:06:b4:
7a:d5:b5:33:31:5d:c3:5e:7f:fd:d1:0a:da:bd:3e:
63:d3:9f:0e:35:95:b5:9f:19:b1:98:61:6f:3c:c6:
31:9f:9e:fb:11:f1:95:3c:98:10:d8:b8:05:db:aa:
13:69:ee:1e:b4:ec:00:fe:db:00:fb:f6:12:b4:71:
60:21:ed:66:d2:68:cc:f7:d5:f2:45:16:88:45:aa:
92:e3:e7:c5:1a:9b:65:4c:52:32:60:6f:dc:3c:3f:
3c:83:79:98:49:54:63:ca:f7:66:45:77:97:79:0b:
da:7c:4c:07:92:59:ca:21:c3:d5:a3:bc:54:50:f5:
ad:00:a3:13:fe:95:a1:82:1f:37:30:12:9e:2f:ea:
ac:98:ba:72:6d:b7:cb:20:05:ca:d3:6e:ab:83:b5:
33:c2:cd:d1:c6:25:72:27:34:96:a2:14:d7:1f:76:
ed:fe:fb:17:ab:e3:3f:c6:24:c4:ab:31:31:9e:5d:
21:ab:6a:9f:b3:82:1e:63:dc:78:53:a3:78:d7:e4:
f2:9f:20:37:46:26:55:ec:7f:fc:32:32:5b:90:8a:
fc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2B:23:D9:39:A3:14:E9:39:ED:53:5E:84:00:59:5E:99:E9:C3:D6
X509v3 Authority Key Identifier:
keyid:C0:37:95:80:83:B6:41:B7:73:12:3C:EA:DA:7B:EF:27:55:8E:59:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/Aysj2TmjFOk57VNehABZXpnpw9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/07cdaa-99ff-441e-8050-b2d2a2f0c782/1/wDeVgIO2QbdzEjzq2nvvJ1WOWUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.121.192.0/18
185.166.192.0/22
IPv6:
2a07:2d40::/29
Signature Algorithm: sha256WithRSAEncryption
57:c6:e4:6f:2a:a8:a2:d6:b3:c5:08:d1:43:4b:60:08:a5:83:
de:7c:48:cc:9c:23:86:6a:ae:a8:3d:a0:d7:89:1a:0c:41:47:
a2:16:36:98:2e:45:72:fe:cb:1e:13:d0:20:fa:dc:b8:6c:b6:
8b:85:ba:8d:de:f0:48:bf:26:7b:fb:38:c4:24:de:b2:98:4e:
d2:19:4a:61:ff:31:56:f4:26:86:cc:c4:78:67:04:f7:2e:91:
20:e8:72:ac:42:45:54:ec:08:2f:e2:74:0a:92:69:b4:71:e6:
c0:92:a0:8f:c0:99:96:63:38:1f:5a:68:89:0a:58:dc:c7:5b:
b0:c2:5d:de:b4:3b:21:4f:a4:02:e7:a7:ce:c2:87:b2:ce:4f:
8d:7e:b5:91:c8:47:35:51:52:b6:5a:a1:ec:e1:98:bd:5d:51:
76:84:97:ba:c8:aa:8c:6b:9c:45:84:37:d3:4e:86:53:22:a9:
c4:c7:76:53:32:9b:e5:01:1a:4e:32:eb:11:ef:48:eb:cb:eb:
43:55:f0:6f:0d:f6:f3:bb:44:1e:a1:2b:62:47:83:38:5a:e7:
f9:c4:84:68:08:5d:26:77:5c:db:ec:de:1f:87:98:9b:e1:4b:
18:0d:2b:b6:1e:c9:00:d2:c1:53:e3:a2:a0:a0:ba:2d:b6:00:
26:d0:8e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org