Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C7-OPL2qM5Ej1FtHEqbaUt-Ire0.roa
File: C7-OPL2qM5Ej1FtHEqbaUt-Ire0.roa (raw, json)
Hash identifier: kdzhHlBM4Ns5x6X250fCq14eqDSFFMEpvNna+wAZ5MQ=
Subject key identifier: 0B:BF:8E:3C:BD:AA:33:91:23:D4:5B:47:12:A6:DA:52:DF:88:AD:ED
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019189D59A7615274D67CCCB78003517ED74
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C7-OPL2qM5Ej1FtHEqbaUt-Ire0.roa
Signing time: Sun 25 Aug 2024 13:59:22 +0000
ROA not before: Sun 25 Aug 2024 13:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
194.58.57.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 26 Aug 2024 09:55:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:89:d5:9a:76:15:27:4d:67:cc:cb:78:00:35:17:ed:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 25 13:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bbf8e3cbdaa339123d45b4712a6da52df88aded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a4:df:de:a7:eb:f3:11:c3:cd:9a:4a:f5:60:
18:3f:26:19:20:fb:77:c3:90:04:6f:a8:37:99:88:
4c:4b:d4:66:c9:8b:40:ef:b2:85:bb:94:87:4a:bc:
50:5a:c0:db:ee:89:4c:02:fb:93:a5:cf:ca:79:e0:
1b:ec:1c:23:28:4a:a3:26:3f:31:66:3d:e0:a7:0e:
76:31:1b:99:ef:8b:8d:ad:c7:99:df:50:14:67:c4:
2a:af:51:c3:76:97:7f:42:da:b3:bd:7e:09:79:27:
67:81:ad:f5:6c:22:5a:ea:cb:98:06:39:26:9e:28:
69:49:ac:79:a1:68:35:ba:d6:97:3f:67:05:d7:06:
5c:3c:29:48:e2:cd:1b:1f:d3:89:3c:5e:4e:22:99:
cb:01:33:df:ab:28:44:f8:bd:4b:06:00:2c:43:c8:
53:bd:78:b2:d5:28:b0:dc:53:52:c2:cd:4b:c1:11:
f4:3c:48:94:7e:19:90:3b:db:a8:d3:3f:0c:ac:f6:
7a:61:f9:47:3d:b8:34:7b:87:93:15:a0:ef:59:1d:
a5:5e:8e:34:3a:85:ec:c6:fd:07:9f:60:be:0d:2b:
72:a9:0e:0f:e6:5e:a3:72:e3:79:66:80:50:f8:14:
2c:86:e8:b2:04:40:58:90:19:a5:d1:53:eb:01:a8:
4d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BF:8E:3C:BD:AA:33:91:23:D4:5B:47:12:A6:DA:52:DF:88:AD:ED
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C7-OPL2qM5Ej1FtHEqbaUt-Ire0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.47.0/24
194.58.57.0/24
194.58.155.0/24
194.87.26.0/23
194.87.44.0/24
194.87.49.0/24
194.87.76.0/24
194.87.82.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/23
195.133.14.0/23
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.217.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
16:b9:1e:43:a3:5b:f2:d2:17:1e:4a:dc:b6:49:d2:b0:52:49:
7b:f8:10:1e:2d:f0:40:02:f6:2b:9e:ca:ba:a0:b4:cf:f6:5e:
f5:43:c2:bd:e3:d0:67:63:49:21:f9:82:24:71:3b:b0:fa:6e:
5d:9a:fa:ce:97:aa:20:13:87:d7:44:91:08:1c:77:07:b6:17:
22:d7:65:58:f0:38:05:19:91:1c:e8:7f:ee:45:07:cf:e4:ad:
98:37:4f:c0:57:a7:98:72:07:60:0f:c2:07:9d:bd:b2:bb:0e:
9a:2d:cb:78:0e:c8:48:c8:38:78:72:e9:da:73:67:2a:19:37:
c0:85:17:d5:8b:f3:1c:3d:7c:6a:af:d3:3d:5e:41:fe:68:5c:
1f:90:51:11:6b:ce:0a:6a:02:b6:75:31:0d:89:6b:05:58:35:
45:d6:06:6d:b0:a9:81:60:52:78:2e:4d:57:28:b6:bd:5b:5e:
ce:ee:61:3d:32:33:f1:a7:f5:9a:a8:a0:0b:27:74:62:48:bc:
17:aa:51:7d:21:7e:82:e3:45:a8:f8:88:82:20:19:2f:2e:c2:
8f:2f:63:4f:79:6b:2b:53:36:ff:af:61:4c:45:59:7a:72:c4:
0c:de:28:d4:f4:4f:a6:8d:a9:53:a1:de:00:22:45:80:a1:b6:
54:c0:30:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 12:49:06 2024 by rpki-client on console-fra.rpki-client.org