Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6fiEeidJkO0M6QeyMf2MB6izPl0.roa
File: 6fiEeidJkO0M6QeyMf2MB6izPl0.roa (raw, json)
Hash identifier: HEnzk9mc0MnC5xOicm9JMEHxaqrx2yHSrFCN7+b+mqc=
Subject key identifier: E9:F8:84:7A:27:49:90:ED:0C:E9:07:B2:31:FD:8C:07:A8:B3:3E:5D
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185780527E57C828AE29FB4D561FA571042
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6fiEeidJkO0M6QeyMf2MB6izPl0.roa
Signing time: Tue 03 Jan 2023 14:24:41 +0000
ROA not before: Tue 03 Jan 2023 14:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.17.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:78:05:27:e5:7c:82:8a:e2:9f:b4:d5:61:fa:57:10:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 3 14:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9f8847a274990ed0ce907b231fd8c07a8b33e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:98:5f:02:f5:20:7b:28:d1:0d:46:7f:f8:
e5:7b:d1:e2:1f:e9:59:13:da:28:8d:6a:4b:f9:93:
9a:8f:04:77:68:63:00:6e:9a:ef:d4:cf:74:c6:22:
46:c4:19:70:8c:d0:05:4a:7f:04:c1:cd:58:15:23:
16:2b:99:57:f4:22:8e:e9:70:00:5b:f4:36:d9:ce:
15:6d:52:3f:64:a9:d4:58:a0:a1:c8:ed:49:d4:84:
0c:c5:b7:f8:7f:eb:14:18:93:dc:6b:3d:7d:31:7a:
f8:4a:14:a3:65:5f:5a:7f:ce:dc:08:74:9a:c8:59:
34:38:c5:d9:ac:90:c3:59:fe:9c:dd:61:56:58:46:
d8:c6:f1:9f:4f:97:50:55:e1:63:c2:de:d9:af:90:
ab:7f:2b:9c:43:c1:a6:72:fd:b6:c1:61:1e:42:de:
d2:f0:63:93:02:b7:35:d7:0f:2c:42:d9:4a:62:bc:
ff:d8:13:bc:da:db:b6:c9:d3:d9:f2:2c:66:72:63:
ef:92:18:77:b5:0e:2e:c5:36:cf:77:55:d8:3b:be:
fa:be:28:c7:99:98:47:07:07:00:a8:14:7a:90:ac:
40:18:d7:81:98:32:a6:ca:72:fd:2c:58:de:0a:ce:
37:b0:be:b0:c5:0b:76:b0:27:c7:44:7f:55:49:b3:
a6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F8:84:7A:27:49:90:ED:0C:E9:07:B2:31:FD:8C:07:A8:B3:3E:5D
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6fiEeidJkO0M6QeyMf2MB6izPl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.7.0/24
194.87.17.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
82:d4:51:47:95:51:f9:5d:c7:1a:c6:72:70:8d:45:57:f7:06:
80:0f:47:04:3e:6d:08:1d:08:d3:22:6b:72:51:0e:cc:e6:b0:
56:14:d1:32:c9:41:61:7b:fd:64:ca:e9:ba:59:d0:00:ce:e1:
a2:ec:ee:ac:33:7f:e5:6a:41:99:27:e6:60:9e:06:92:d8:86:
26:fa:bc:3c:7a:c9:34:ce:9d:44:6e:a0:28:15:d6:6d:cb:bb:
c9:c6:72:4f:5e:b5:bb:07:70:ca:df:5c:a6:04:57:3b:e0:e7:
33:39:4a:24:bd:47:40:b5:0b:6a:22:a9:d1:12:1f:80:65:f2:
8a:08:d5:77:ef:d8:ed:d1:5c:99:89:16:a4:c6:fb:35:2e:48:
fc:b7:1c:60:eb:5a:a6:77:a1:89:0a:bf:82:fc:1e:f4:f8:2a:
d9:1f:48:54:f7:3f:86:fa:84:61:2f:1d:54:0d:ad:3d:9c:43:
91:4c:6c:b9:1d:3e:f0:14:eb:70:5f:58:bd:f6:a7:18:91:b3:
97:9e:1f:e9:a1:2e:9a:74:8e:3a:56:94:04:0e:e4:08:89:8e:
dd:de:6e:5d:ed:1d:2d:f0:df:fa:c6:bc:a8:cf:0c:29:86:9b:
4a:96:36:b2:a3:d4:54:dd:95:41:af:29:89:a9:1a:2d:b2:0f:
bc:f6:21:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org