Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B4mwsXEhUnV8qgJ-TrKOctwTLWM.roa
File: B4mwsXEhUnV8qgJ-TrKOctwTLWM.roa (raw, json)
Hash identifier: rBlduR74yW8QFG+6tyURypjvCJ+qNYtF6s213yvm5iw=
Subject key identifier: 07:89:B0:B1:71:21:52:75:7C:AA:02:7E:4E:B2:8E:72:DC:13:2D:63
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185812769D78DB00A275F8DF5A0C94010E1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B4mwsXEhUnV8qgJ-TrKOctwTLWM.roa
Signing time: Thu 05 Jan 2023 08:58:41 +0000
ROA not before: Thu 05 Jan 2023 08:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:81:27:69:d7:8d:b0:0a:27:5f:8d:f5:a0:c9:40:10:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 5 08:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0789b0b1712152757caa027e4eb28e72dc132d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e6:62:5a:c3:a7:ed:82:2d:c3:9e:5c:83:41:
c7:0b:d7:97:02:73:e8:85:81:9d:41:87:50:36:06:
35:65:c4:34:3f:b4:89:f7:81:ef:59:cd:ad:75:99:
83:d9:d4:95:ad:2b:9b:1e:f3:39:f5:f3:85:d5:f1:
f9:17:2b:31:fe:b4:4b:e9:24:28:f7:2b:93:c6:21:
49:4e:dd:f7:b0:e3:c1:9a:bf:9b:39:07:24:71:d4:
82:d4:18:a1:55:eb:5d:1f:a6:68:f3:88:84:d5:3a:
f8:c7:dc:31:e1:b6:27:3c:9e:a1:38:02:26:33:ce:
41:d9:1a:39:f7:b9:48:e4:3d:c7:35:37:c2:70:7d:
5d:3b:96:aa:72:69:4e:1f:65:45:ee:ce:e2:fa:43:
d4:93:fe:6b:84:61:26:ac:9d:48:7f:ad:82:e9:f1:
78:40:a6:2d:c3:5f:ff:69:46:48:a3:3e:23:dd:e5:
52:ab:a2:78:91:c3:2a:44:eb:2d:64:d1:9f:be:56:
05:99:c6:67:bd:e9:6f:d7:ad:e6:c0:d4:2f:bf:c1:
54:b7:7c:7f:8c:70:16:e0:cb:b5:42:68:b7:1f:49:
32:be:28:7b:64:2d:d4:34:87:7f:63:0b:0c:c6:58:
9d:a7:aa:87:43:14:e5:fb:3b:5b:e1:b6:df:f7:07:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:89:B0:B1:71:21:52:75:7C:AA:02:7E:4E:B2:8E:72:DC:13:2D:63
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B4mwsXEhUnV8qgJ-TrKOctwTLWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
43:07:13:26:a4:36:80:f8:0a:97:cf:a4:aa:04:31:ae:8f:c3:
b8:d2:4a:e7:a6:3f:11:d7:8c:f0:1a:7e:a9:50:58:b7:d8:0e:
40:97:e3:fd:20:d5:8a:d3:dd:de:f3:7b:4b:11:5f:a5:b6:e7:
a0:04:74:30:b8:1a:0d:54:89:51:0e:88:b7:b7:d8:a2:b9:d8:
7a:0c:f0:4f:05:22:0f:5f:da:3e:2a:28:f9:a1:31:44:b7:2c:
fc:2b:e4:f7:ff:d5:32:de:3a:ff:f6:a8:53:13:30:27:e1:af:
a9:38:a0:ab:17:65:87:67:34:46:07:8f:5a:ce:47:34:89:2d:
4f:0e:8a:12:c5:43:7f:c1:02:28:71:b0:96:3b:82:9a:3e:cf:
96:08:d4:38:a1:27:cc:02:2b:58:40:3b:bf:94:02:1b:11:3d:
d9:c1:76:31:6c:16:80:92:a1:3f:ea:a4:b3:5d:a6:ea:e6:29:
ce:c7:c0:7c:9e:0f:16:b2:b4:f5:27:d6:8e:9d:8e:d8:96:a7:
62:c8:f9:69:c5:30:d9:4e:f3:09:d0:f2:c8:1d:e5:a7:6a:47:
c5:69:51:8d:f0:a9:a3:ae:80:f4:4e:78:66:69:d8:66:52:bf:
97:e7:ab:5f:f6:e5:49:76:b2:54:8e:14:45:13:f3:1e:f6:90:
73:3b:dd:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org