Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AahsGuw_0Q69obdl5p4EdW4gEOs.roa
File: AahsGuw_0Q69obdl5p4EdW4gEOs.roa (raw, json)
Hash identifier: bh4MnbO+sCmg/mJvnWVwVCcIT8b+oyzoeYuXk7UA0LI=
Subject key identifier: 01:A8:6C:1A:EC:3F:D1:0E:BD:A1:B7:65:E6:9E:04:75:6E:20:10:EB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185822D44417F14072C5C84038E3755580C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AahsGuw_0Q69obdl5p4EdW4gEOs.roa
Signing time: Thu 05 Jan 2023 13:44:42 +0000
ROA not before: Thu 05 Jan 2023 13:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 09:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:2d:44:41:7f:14:07:2c:5c:84:03:8e:37:55:58:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 5 13:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a86c1aec3fd10ebda1b765e69e04756e2010eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:d4:a3:2a:bf:df:4e:16:3b:b8:94:4a:32:
45:45:48:29:91:73:18:d3:90:89:fa:a3:c2:91:6f:
62:82:d8:8f:85:a5:d8:bf:cb:1e:5a:07:38:29:6e:
47:0d:ac:e8:e6:11:89:a7:9f:78:c7:23:1e:b0:29:
3d:ce:f4:a5:81:9e:72:99:36:fb:5b:63:b3:d5:a4:
0a:49:18:c9:7d:16:10:36:e8:0a:27:82:c6:c0:3c:
8d:07:9b:a1:17:60:a9:c5:04:29:b7:46:0d:c1:28:
1d:fe:9e:60:45:ed:cc:00:b1:9c:9e:3c:e8:b8:00:
3a:cb:82:28:47:cb:e5:8e:8a:93:ff:4d:c9:4d:f9:
4b:a3:aa:9a:20:5e:1b:b2:0e:b7:11:e0:ab:b1:c2:
24:b9:0c:7b:5d:c6:79:a2:ae:d9:09:03:a8:a2:f4:
51:8d:50:a1:42:be:b8:0a:bb:c7:af:62:29:32:74:
cd:9c:29:1b:6a:bc:71:a4:c7:90:3e:bf:c0:c5:83:
5d:10:06:c2:36:f5:59:44:d9:0c:00:91:12:da:e7:
29:42:0d:28:55:54:4a:e3:82:8b:c3:bd:39:49:93:
ce:2a:d0:a8:56:d1:a4:f7:65:6e:1f:e2:ec:8d:ed:
80:51:77:18:30:31:2b:d8:5a:ac:26:bf:1a:2d:bd:
82:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A8:6C:1A:EC:3F:D1:0E:BD:A1:B7:65:E6:9E:04:75:6E:20:10:EB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AahsGuw_0Q69obdl5p4EdW4gEOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.45.0/24
193.124.93.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.192.222.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
52:1d:a4:a9:19:a4:6f:06:c3:31:b6:1a:13:3c:60:9d:a9:d1:
12:36:d4:68:c5:5b:9d:ff:9a:50:dc:63:ad:7b:7a:04:5a:c3:
00:01:96:2b:77:2b:b3:66:28:c7:4d:8e:94:cd:00:55:f7:2c:
51:82:78:ad:24:b8:8b:16:8e:e9:a5:c3:ea:b0:48:29:cd:ea:
5b:d8:df:c6:ba:ea:2c:f9:1f:c2:e3:8d:46:b8:70:db:03:41:
dd:fd:a4:ca:46:9d:25:70:a0:12:72:2f:df:9b:a3:33:a4:91:
4e:5a:d0:a1:d5:5d:ff:fc:d6:3b:ff:57:d0:9c:6c:27:79:cd:
28:37:e5:a4:a9:c7:07:f3:17:28:e4:02:96:cc:17:12:e3:be:
8c:a9:c3:2f:d5:d2:0e:85:e2:d4:c3:bb:eb:5b:87:f5:99:c7:
76:83:6b:a6:e7:57:fe:e8:11:1b:62:bb:3e:cc:bb:8e:97:82:
15:5e:17:51:83:3e:de:ea:e5:20:07:74:e8:e7:f9:84:49:9f:
10:14:fd:3f:6e:85:4c:70:28:f1:df:26:57:70:fb:b7:0b:09:
a1:09:35:1d:03:8b:ba:89:e2:38:1d:f0:3d:b8:68:de:4c:09:
9b:3d:7c:09:84:6e:b2:15:07:20:30:84:8e:62:ac:3a:d9:4c:
f9:86:8c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:08 2024 by rpki-client on console-fra.rpki-client.org