Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0O8tCjFFHPkQ25NIiLDI35H5C8s.roa
File: 0O8tCjFFHPkQ25NIiLDI35H5C8s.roa (raw, json)
Hash identifier: +mTShb22tX0kAlu7JnhS7MzZ1cPWexR5L3m4ttteTMA=
Subject key identifier: D0:EF:2D:0A:31:45:1C:F9:10:DB:93:48:88:B0:C8:DF:91:F9:0B:CB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191A3A89FE643923F64097A920D4F501495
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0O8tCjFFHPkQ25NIiLDI35H5C8s.roa
Signing time: Fri 30 Aug 2024 14:20:22 +0000
ROA not before: Fri 30 Aug 2024 14:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 05:17:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a3:a8:9f:e6:43:92:3f:64:09:7a:92:0d:4f:50:14:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 30 14:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0ef2d0a31451cf910db934888b0c8df91f90bcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:d5:9b:8e:9d:b1:81:00:83:73:6f:0f:59:
0e:f6:b3:35:1c:60:6a:41:e1:be:9d:2d:d9:cd:d4:
0b:52:9c:15:d9:3e:0e:64:5a:e3:20:a8:06:77:1a:
ef:c6:0a:64:07:c4:37:61:8c:c7:f8:46:82:f7:1b:
e8:50:81:cc:7e:53:e0:82:ba:4e:6e:b4:b2:5b:30:
a5:05:c9:e7:01:47:48:11:b0:7a:c1:70:40:c4:8b:
ce:77:5c:ae:c3:ef:1e:1f:da:b7:0b:17:e4:08:72:
77:be:2c:4b:dc:a3:50:cf:c4:cd:61:40:9b:78:05:
1b:6b:5e:95:77:46:3a:a2:06:5d:9a:79:51:d2:f6:
57:c8:c2:ba:c3:06:fb:84:59:6e:3a:ed:68:00:d0:
6a:05:9f:01:ac:77:00:9f:82:5c:3f:70:56:d1:70:
a6:82:6c:4b:cb:ff:83:15:1e:a0:2c:c1:b4:ab:db:
0f:16:dd:ff:be:a0:06:7b:13:23:13:bf:9d:4a:b9:
7e:4f:25:c4:ff:68:3d:a0:25:82:c5:ca:b9:d1:fe:
4b:c6:5f:1b:5b:35:95:46:de:7d:35:e0:ea:ee:e3:
94:ab:4a:60:e6:1d:be:65:0a:f9:2f:ff:14:23:52:
3c:f0:c5:67:ed:bd:ba:2a:13:a6:b3:13:2e:a2:43:
29:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:EF:2D:0A:31:45:1C:F9:10:DB:93:48:88:B0:C8:DF:91:F9:0B:CB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0O8tCjFFHPkQ25NIiLDI35H5C8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.108.115.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/23
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.85.0/24
194.87.105.0/24
194.87.116.0/23
194.87.120.0/23
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.26.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
37:2c:0d:5f:a0:df:9f:9a:c2:b6:71:60:8c:5c:55:12:ae:3b:
b0:95:c4:cd:36:5e:26:2c:1c:0a:46:c5:24:27:75:69:ca:05:
b1:8b:a0:25:2f:b2:b1:ee:ce:b5:fe:32:98:9e:c2:7f:da:ca:
89:e7:ec:82:06:0c:2b:2e:2f:25:8b:6f:0c:94:b9:97:b7:fe:
6e:91:b7:c8:ea:71:0e:d4:4d:9d:82:80:a1:ad:d8:9d:ac:2f:
f6:2d:7e:81:b3:02:a9:aa:67:f5:09:93:10:e0:11:b2:ee:9f:
f5:c3:e8:68:e4:49:59:72:31:d3:3d:17:47:f4:88:29:b0:93:
2d:0f:41:a3:a0:61:b6:fa:da:95:c3:f0:83:86:0d:56:71:e5:
d9:a6:3c:4f:76:ea:dc:c1:4e:28:39:bc:13:43:ef:e1:19:8f:
56:77:fb:14:87:3b:2a:e4:d4:56:8b:6a:51:78:26:3b:67:f4:
b1:93:5d:b5:f7:7e:f7:92:34:8e:d6:4c:19:fc:50:b1:d1:9a:
88:c4:7e:09:bc:3b:38:ca:7b:05:70:e9:ff:ae:e0:4b:49:8f:
82:8e:5c:ee:14:3a:7d:24:40:57:72:30:19:2c:49:98:9d:56:
3d:c9:ab:8a:48:c6:61:3f:8c:1e:67:2d:71:b2:4a:ab:81:ac:
5f:52:d5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 05:50:27 2024 by rpki-client on console-fra.rpki-client.org