Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4HVizLUA9gY95kb-6YtVXDbamI4.roa
File: 4HVizLUA9gY95kb-6YtVXDbamI4.roa (raw, json)
Hash identifier: YXA7+G+M/aCEhAAYCD3MiUM9LYqKW8iovsCoaDN5Urs=
Subject key identifier: E0:75:62:CC:B5:00:F6:06:3D:E6:46:FE:E9:8B:55:5C:36:DA:98:8E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191843EA1BE30302C7980B6F3AC5AC5D00A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4HVizLUA9gY95kb-6YtVXDbamI4.roa
Signing time: Sat 24 Aug 2024 11:56:22 +0000
ROA not before: Sat 24 Aug 2024 11:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 25 Aug 2024 13:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:84:3e:a1:be:30:30:2c:79:80:b6:f3:ac:5a:c5:d0:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 24 11:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e07562ccb500f6063de646fee98b555c36da988e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f3:a6:f4:16:68:5c:66:fb:28:e6:8f:f7:3c:
2a:dd:ba:76:5f:ba:5b:88:34:ad:f6:6d:1e:4b:d1:
81:87:6d:7d:e3:5d:d9:57:41:da:28:5f:d9:13:96:
29:27:ff:6b:4b:0f:de:0f:a8:52:91:42:38:87:5a:
8a:f8:87:cb:2f:b1:43:ed:05:5f:ac:cb:63:d3:e6:
07:4a:79:87:84:02:38:08:58:48:0f:b2:a5:ad:e9:
99:b3:4b:27:c1:3c:33:29:f7:4a:53:40:ab:23:a3:
f1:0a:cd:d4:98:97:2f:69:f3:ab:2c:d9:ef:34:e6:
27:78:7c:a1:5f:92:0f:e9:65:15:89:7f:06:c2:01:
1c:01:4e:2c:87:15:45:fa:99:16:f9:ef:2b:19:73:
61:82:8f:98:3b:b7:42:00:61:52:25:ae:8e:d8:3f:
7c:d0:c6:1c:be:ba:8f:4d:43:15:9d:63:b2:43:d6:
e9:a3:b5:d1:5a:4a:3a:e9:8e:3c:ab:e1:7b:58:a6:
ea:fd:9f:30:d3:40:fc:4d:fb:b3:66:52:a6:d2:95:
22:e6:9b:9c:9e:cb:a2:f8:94:45:0a:16:22:c7:09:
c3:c8:c3:29:ae:86:86:5d:8a:13:fc:60:5b:79:e2:
a6:0b:33:c5:bb:da:4f:39:00:ef:12:81:3b:02:88:
c2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:75:62:CC:B5:00:F6:06:3D:E6:46:FE:E9:8B:55:5C:36:DA:98:8E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4HVizLUA9gY95kb-6YtVXDbamI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
194.58.155.0/24
194.87.26.0/23
194.87.44.0/24
194.87.49.0/24
194.87.76.0/24
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/23
195.133.14.0/23
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.217.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
88:2c:7f:33:c7:09:7b:7e:da:85:95:20:9e:88:7f:60:a1:2c:
f4:84:44:70:bc:4e:56:71:09:04:7c:c3:eb:22:fd:b1:6f:35:
54:f1:8d:10:1e:0c:55:4f:84:56:92:f6:02:3d:3f:84:3a:c4:
4e:44:90:32:9f:e0:e2:d1:73:1f:e1:12:16:81:49:f6:5e:28:
9e:f9:27:f8:42:da:66:a8:25:2f:27:fd:62:03:d6:eb:0e:18:
99:eb:0d:6c:a0:53:fb:2c:b3:9c:6e:0b:7c:43:eb:be:71:ab:
c0:9a:e1:73:18:0d:9d:53:fe:e4:18:4b:b8:a7:a7:87:b6:2c:
9c:76:f2:6c:4d:aa:6d:d0:20:fb:e1:ce:7c:51:7f:ae:5e:33:
ff:65:73:f5:aa:70:fb:f8:a0:d3:0c:40:44:fa:22:f6:02:e8:
0a:b7:37:f9:b1:cb:24:56:cc:52:b6:ca:dc:82:65:c0:a4:4d:
6b:8c:75:4a:d9:6a:d6:eb:4a:ad:f8:bb:ba:19:66:40:86:ce:
07:fb:63:87:45:97:25:26:52:32:65:02:2f:4c:5c:d9:e9:13:
0f:83:26:d2:4d:4f:77:bf:b4:3a:94:85:36:15:34:d8:25:ef:
bd:f1:79:0c:05:4a:42:66:4d:76:9c:db:64:31:b9:df:d5:8b:
49:bd:82:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 17:13:54 2024 by rpki-client on console-fra.rpki-client.org