Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6d7YWBTNUc5GMc9E6O9qdzvC3Nw.roa
File: 6d7YWBTNUc5GMc9E6O9qdzvC3Nw.roa (raw, json)
Hash identifier: ZDM6r9//dcScqD2U9suQaymKq5rNz/LVKeQF46nRu3o=
Subject key identifier: E9:DE:D8:58:14:CD:51:CE:46:31:CF:44:E8:EF:6A:77:3B:C2:DC:DC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D1832B182B31869FCFD54ADDEF0B37EA3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6d7YWBTNUc5GMc9E6O9qdzvC3Nw.roa
Signing time: Wed 17 Jan 2024 16:13:11 +0000
ROA not before: Wed 17 Jan 2024 16:13:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.227.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.81.0/24 maxlen: 24
194.87.88.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.201.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.245.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.60.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.2.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
212.193.13.0/24 maxlen: 24
212.193.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 11:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:32:b1:82:b3:18:69:fc:fd:54:ad:de:f0:b3:7e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 17 16:13:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9ded85814cd51ce4631cf44e8ef6a773bc2dcdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:9d:36:1f:4e:de:93:d0:c6:72:35:5b:b6:
60:62:64:d5:d3:1e:11:99:dd:e2:27:89:db:aa:2b:
fe:1f:43:f6:91:5a:dc:6d:d2:57:3e:46:a8:b3:c7:
9a:d6:f6:ad:19:83:13:26:91:45:7a:0b:be:b8:cb:
26:35:42:3a:1a:d1:18:f4:e5:62:e5:87:14:bc:f4:
2e:af:cc:99:df:d8:a4:b7:df:b3:c2:5e:2d:0b:c0:
39:69:b7:a9:d5:e3:7a:56:93:1e:c3:ea:ba:10:98:
d9:15:b7:bc:95:9d:77:07:39:e7:6b:aa:e4:b9:d8:
92:d7:7a:a5:38:e8:27:4b:29:4e:d1:24:5f:ff:aa:
50:1a:d6:cf:c2:ce:b5:6a:8e:d9:ba:48:b9:af:94:
34:1f:99:b1:2c:00:34:ce:ef:d3:5e:f2:73:70:03:
a9:58:4b:ea:18:da:a2:f5:05:ca:b2:a7:3a:3e:2c:
4d:30:4c:38:f6:65:56:91:84:15:21:fb:63:9e:40:
10:70:bc:ff:6c:fd:2d:22:30:de:ce:47:99:5e:5c:
39:d9:b9:55:1b:f1:f5:a2:e5:b7:a9:41:91:2f:3f:
4f:38:c9:ed:f0:d7:1f:00:f9:7a:90:c1:6f:7c:5f:
c3:83:d3:ae:78:32:04:81:f6:5a:29:00:65:95:97:
90:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DE:D8:58:14:CD:51:CE:46:31:CF:44:E8:EF:6A:77:3B:C2:DC:DC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6d7YWBTNUc5GMc9E6O9qdzvC3Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
185.72.10.0/24
192.124.183.0/24
193.124.47.0/24
193.124.95.0/24
193.124.202.0/24
194.58.41.0-194.58.42.255
194.58.66.0/24
194.58.154.0/24
194.87.26.0/24
194.87.76.0/24
194.87.81.0/24
194.87.88.0/24
194.87.128.0/24
194.87.149.0/24
194.87.151.0/24
194.87.170.0/24
194.87.172.0/24
194.87.187.0/24
194.87.190.0/24
194.87.201.0/24
194.87.215.0/24
194.87.224.0/24
194.87.229.0/24
194.87.231.0/24
194.87.245.0/24
194.135.33.0/24
195.58.54.0/24
195.58.60.0/24
195.58.63.0/24
195.133.2.0/24
195.133.25.0/24
195.133.27.0/24
195.133.72.0/24
195.133.84.0/24
195.133.192.0/24
212.192.1.0/24
212.192.214.0/24
212.192.222.0/24
212.193.13.0/24
212.193.25.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3d:b7:22:5c:c1:73:21:d7:45:e0:56:f1:9f:b1:6e:f6:64:
14:d3:65:54:66:fe:c8:e6:2c:b9:68:99:59:b7:c2:d0:3b:23:
90:05:90:d8:6c:8b:a8:9b:60:0b:04:b9:ec:c8:f2:78:f8:26:
19:c7:17:95:e1:16:1a:a5:3d:20:e0:6d:13:27:11:7b:19:0d:
72:f9:d0:54:fa:46:3c:e4:8f:b2:4f:cb:79:d9:1f:e4:7b:bb:
b1:62:64:65:32:bf:04:bc:de:0d:d3:64:07:9d:31:d7:cc:4b:
6f:e4:99:34:0f:6a:fc:8d:56:5d:12:16:05:b2:fa:38:82:6d:
45:e2:19:bd:86:c9:0c:2f:fe:bd:a7:f8:5f:93:a6:38:a8:21:
ed:4a:86:15:f6:7f:77:f3:2b:a6:2e:29:84:3a:54:f7:23:09:
97:6e:1e:59:e4:9d:a7:14:bc:38:cd:b1:f6:d2:29:a6:ff:d9:
50:76:fd:84:16:ba:2f:a3:73:c1:a6:9d:5b:10:fc:26:6f:63:
58:98:15:1b:3a:68:bc:91:c3:7e:a3:0d:6d:24:ab:f1:5f:79:
ae:3e:81:ec:4f:fd:e9:0b:c5:a6:2a:13:28:a8:28:58:db:4c:
06:64:95:b9:89:3c:20:ac:6a:46:fd:36:27:f4:65:0c:4c:d7:
14:d2:f7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:06 2024 by rpki-client on console-fra.rpki-client.org