Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5Mek7dC7meCnyBN_kikPlP0UdgY.roa
File: 5Mek7dC7meCnyBN_kikPlP0UdgY.roa (raw, json)
Hash identifier: J0uwslvVJcLqcbeMQmkg2oNU12H2iimeXZ5bNXZfUqU=
Subject key identifier: E4:C7:A4:ED:D0:BB:99:E0:A7:C8:13:7F:92:29:0F:94:FD:14:76:06
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185BE9D9CDD9FE31A00BD1AE68ADA3D53E2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5Mek7dC7meCnyBN_kikPlP0UdgY.roa
Signing time: Tue 17 Jan 2023 07:24:38 +0000
ROA not before: Tue 17 Jan 2023 07:24:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:9d:9c:dd:9f:e3:1a:00:bd:1a:e6:8a:da:3d:53:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 17 07:24:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4c7a4edd0bb99e0a7c8137f92290f94fd147606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:65:3f:7e:85:ca:a3:9b:52:53:c0:39:0d:09:
4c:a8:e5:6e:0c:32:d4:da:ac:3a:4e:b8:15:1e:1c:
c0:04:06:3a:e6:82:b5:80:a6:ee:13:e5:bd:ee:c9:
d0:e0:c1:03:70:68:2f:8b:c4:6f:18:8a:05:17:f7:
4f:f7:26:24:25:7c:c0:f0:f4:84:33:d2:42:ed:d4:
72:ce:fa:48:f4:3a:4a:84:e5:4b:4a:79:e4:ad:62:
36:1d:73:49:99:c9:d3:93:5b:a2:b1:69:78:b5:59:
38:74:c4:df:be:e6:ec:92:48:7a:0c:cd:08:c4:38:
46:26:74:8b:fb:ee:94:4d:61:69:00:ce:4d:90:dc:
dd:0f:b0:5a:b2:dc:2b:0c:c5:e2:77:c8:81:84:20:
3a:cb:c3:44:53:77:df:49:b5:0d:e4:29:68:a1:1d:
9c:60:7e:e2:4a:52:52:aa:03:03:c7:fc:ce:0b:ef:
56:c8:f6:7d:03:bf:2c:63:32:32:ec:ff:04:8c:fe:
67:be:a0:37:13:8b:a7:a0:f0:bb:42:f6:ba:30:14:
87:e8:a6:51:2d:4d:ff:26:8b:ac:c2:e1:97:dd:1b:
13:77:bb:25:9d:66:76:72:06:d5:71:35:20:8c:d7:
16:90:6e:fc:64:09:e2:40:f9:32:f9:74:7b:2b:d9:
0f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C7:A4:ED:D0:BB:99:E0:A7:C8:13:7F:92:29:0F:94:FD:14:76:06
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5Mek7dC7meCnyBN_kikPlP0UdgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.133.0/24
193.124.202.0/23
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.204.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.194.0/23
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
80:9b:48:4b:ca:0e:dc:61:c2:19:e7:ae:4d:65:b9:e9:22:9a:
53:e0:45:9c:ae:f9:d6:3a:90:1c:1a:d6:40:a1:40:f1:e4:a0:
80:d4:dc:60:2e:cd:11:38:89:50:b9:74:79:c2:9c:fd:fe:cb:
50:8c:28:e5:fb:71:fc:89:e8:1c:45:64:d2:8c:1e:df:08:40:
f0:bd:a1:51:fc:4f:18:89:f8:37:12:37:b2:bc:65:f7:90:d3:
e1:5e:26:5d:3e:2a:16:3b:3f:d1:50:07:23:fd:27:6c:e7:bf:
d4:15:b7:bc:f2:ea:f3:51:60:65:79:82:86:8e:6b:c6:18:f7:
bf:da:f0:b4:5d:53:fe:ff:b8:a3:05:bd:ec:3c:79:70:6a:53:
8d:fe:c2:0e:b3:bb:3f:0b:65:fe:76:09:cb:fe:27:35:73:12:
41:a7:bd:e2:fc:22:f9:62:41:d5:96:eb:17:76:89:dd:09:44:
44:51:a7:2d:2d:9e:a9:3c:e7:77:47:0e:3d:5d:55:4e:9e:cf:
80:9d:2f:f3:17:a6:6d:f2:f7:29:e3:90:e7:bb:93:de:52:8a:
35:be:a3:9e:9f:96:d3:cf:bc:54:05:6a:ed:c3:68:1b:87:41:
4d:5c:6b:c3:75:b8:bb:c8:bf:1c:34:ab:96:14:09:57:20:3d:
e7:4b:20:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org