Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5yxHb4rkw2PI73uiDqHUmg6TUnY.roa
File: 5yxHb4rkw2PI73uiDqHUmg6TUnY.roa (raw, json)
Hash identifier: 2I2nnsATBUgH2VXMNAEZ/fKTd8517T+1yudCitOwEzg=
Subject key identifier: E7:2C:47:6F:8A:E4:C3:63:C8:EF:7B:A2:0E:A1:D4:9A:0E:93:52:76
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01858897B60F6AB653B9737428FB59CEE6DB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5yxHb4rkw2PI73uiDqHUmg6TUnY.roa
Signing time: Fri 06 Jan 2023 19:38:41 +0000
ROA not before: Fri 06 Jan 2023 19:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:88:97:b6:0f:6a:b6:53:b9:73:74:28:fb:59:ce:e6:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 6 19:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e72c476f8ae4c363c8ef7ba20ea1d49a0e935276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7b:44:21:20:60:61:88:27:b0:3d:a3:c5:66:
3b:2f:a4:5e:70:f7:9d:3e:35:8d:4e:08:41:6f:6a:
b8:da:70:20:15:ff:54:78:9a:05:b4:13:be:21:ef:
cb:44:d6:21:e1:a7:92:db:47:34:b6:0a:ef:d9:7f:
b7:5c:5c:48:c5:dd:98:a6:7a:ca:66:6c:c6:cf:db:
c8:80:d9:35:80:7b:78:16:3c:71:02:12:12:88:2f:
c1:0e:30:9c:b6:09:ce:1b:e7:c6:aa:31:be:26:ee:
a4:5c:e8:da:ce:55:de:10:8d:06:93:55:27:49:df:
63:f7:85:e3:9f:e1:fd:b6:bb:24:c0:c6:43:32:4a:
85:1d:2a:67:f2:04:a8:5a:24:03:7a:04:e9:41:20:
32:37:1c:9b:75:9d:bb:40:19:d0:b4:f9:1b:43:6f:
fd:c7:dd:e6:f5:c5:b7:c3:19:7c:5e:4b:ec:fc:6f:
e2:07:d0:12:2f:a1:58:88:da:87:de:f3:3a:ce:f4:
c3:5f:e7:12:23:12:0a:e8:71:9e:39:3d:96:69:13:
2f:74:24:0f:bf:77:e9:34:b5:23:ce:47:87:2b:3e:
9a:b8:9b:04:3a:b3:29:0f:bc:2b:db:29:95:8c:31:
1e:7c:a1:35:bb:21:1c:b9:7f:5f:52:f2:e8:96:54:
c4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2C:47:6F:8A:E4:C3:63:C8:EF:7B:A2:0E:A1:D4:9A:0E:93:52:76
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5yxHb4rkw2PI73uiDqHUmg6TUnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0-194.87.200.255
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
98:2f:46:e6:ad:a3:fe:60:a3:06:91:23:ba:7c:af:04:f3:52:
42:b7:39:29:a1:71:d1:d4:32:f2:14:4d:1f:e7:b4:a0:1f:04:
bc:14:7b:e5:f2:cd:a0:0a:c9:c3:b7:4a:2d:f7:eb:7f:e2:c5:
c8:22:74:50:19:00:0b:62:4f:dd:d3:d0:0f:f5:c5:fa:9a:71:
16:5b:a3:c8:3c:ca:bd:59:b8:6b:d4:fc:20:26:87:7c:86:e0:
69:7c:a2:d0:ca:a0:99:5f:05:b8:44:e8:4b:6c:ee:9f:55:b4:
27:1a:a0:a1:71:1c:28:ef:88:68:fb:d3:f0:b5:3a:e1:f3:32:
ef:12:d0:38:45:e9:40:40:b0:19:f7:84:01:25:0a:07:15:c5:
f4:81:3a:70:43:13:6a:2d:74:de:c0:8d:af:47:99:d5:54:69:
b3:61:b0:91:7d:b8:b7:19:45:eb:45:89:82:13:1b:c7:4f:c9:
bf:8e:cb:54:26:34:43:df:83:c8:29:8d:59:d7:bc:31:4d:3c:
d1:15:88:41:23:34:dd:8c:50:42:0f:33:a9:d3:59:16:10:f0:
af:d0:9c:8f:5b:d1:bc:ff:14:40:d9:03:ba:4c:68:e3:f2:3e:
d5:76:33:02:d6:56:2f:e1:f3:83:d3:65:35:27:4e:6a:99:21:
c3:10:53:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org