Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CoiAImaXgZGB4FMtoszQFOKsmg4.roa
File: CoiAImaXgZGB4FMtoszQFOKsmg4.roa (raw, json)
Hash identifier: ztwOa2Wuzxg24C5BcDez5x3Fh+gPpyd+Oqn3pP+44MI=
Subject key identifier: 0A:88:80:22:66:97:81:91:81:E0:53:2D:A2:CC:D0:14:E2:AC:9A:0E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A743AF1624AD66B15E9EE4BF1BB10
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CoiAImaXgZGB4FMtoszQFOKsmg4.roa
Signing time: Tue 02 Jan 2024 12:33:49 +0000
ROA not before: Tue 02 Jan 2024 12:33:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 10:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:74:3a:f1:62:4a:d6:6b:15:e9:ee:4b:f1:bb:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a8880226697819181e0532da2ccd014e2ac9a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:29:e6:73:fc:f3:4d:85:95:14:d7:57:a0:
8c:82:69:1b:c2:9e:2a:fb:7e:da:c9:44:57:52:c0:
12:1e:8e:e7:8e:47:4d:a8:59:d1:b9:f0:53:98:33:
3c:82:d4:c0:c3:02:4b:52:6c:b3:8e:c3:5a:67:5b:
3d:c7:90:e0:7c:bb:b5:fc:b1:d5:1c:36:d6:59:5d:
76:84:b1:f8:f3:6e:83:15:6a:ea:6c:98:35:4b:ba:
c4:26:96:19:cf:50:95:f7:cf:62:64:55:ba:be:8f:
1d:2b:4b:28:b1:81:1e:05:e7:48:99:21:8e:24:6e:
5d:e6:7f:6e:e8:3d:1b:b2:b9:94:e6:c4:f8:f8:0c:
26:97:5f:55:1a:15:56:c8:01:57:b6:17:a0:a8:63:
66:55:8a:e9:de:58:82:00:e7:94:7f:b9:b2:c5:7f:
63:45:fa:be:30:7a:ff:7f:8d:1c:36:99:ca:9a:c0:
f0:59:82:4b:2f:74:e7:cb:12:40:55:db:1e:97:fd:
10:11:bf:de:8e:06:71:b9:4d:59:eb:1c:be:ae:73:
c5:99:c8:b2:a9:db:a1:27:56:90:54:15:a2:60:ce:
1c:2c:6f:be:aa:a7:72:cf:b8:54:d5:e4:a3:9b:c1:
62:77:0b:dc:73:73:fd:33:2d:62:b4:e7:07:0c:b7:
3d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:88:80:22:66:97:81:91:81:E0:53:2D:A2:CC:D0:14:E2:AC:9A:0E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CoiAImaXgZGB4FMtoszQFOKsmg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/24
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.85.0/24
194.87.105.0/24
194.87.116.0-194.87.121.255
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.230.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6f:48:be:90:d4:ec:ee:eb:da:a1:06:01:42:3a:7a:9a:f7:
95:3b:8b:a7:d2:60:f9:67:ee:8e:8f:c2:ca:5d:e4:7f:54:33:
82:e5:3b:3a:a1:74:17:ef:df:2d:44:12:ac:da:12:0d:d0:aa:
a5:3a:0f:08:1f:9a:ec:20:25:10:0a:fe:87:b0:f1:5b:e6:d5:
ac:89:3d:59:51:a0:6a:f7:b8:22:3d:97:5f:a2:f6:e9:16:91:
54:71:38:ac:8d:44:83:98:1a:d2:71:ae:ac:d9:02:05:18:9e:
59:0c:d2:42:c4:91:5b:6b:f6:a2:cd:f7:c5:df:a3:95:1b:7c:
4b:9a:6d:25:b2:d5:37:27:71:d0:2b:e3:27:bb:b6:a8:af:43:
43:a0:1c:6a:0d:9f:b0:dc:bd:c5:fe:4d:7a:80:3a:4d:bb:8b:
0b:0a:8f:46:b5:0b:6e:bc:2d:6d:29:68:b7:53:fd:e2:e1:5c:
58:35:aa:00:bb:f2:45:d8:3f:80:b1:ef:4d:de:0d:81:bc:eb:
60:2d:df:64:69:2b:05:20:c5:ed:94:8e:0c:f4:85:df:dd:cf:
4e:b3:b0:78:00:45:80:cc:29:f0:57:20:12:76:e6:79:50:3c:
04:e7:42:b2:5b:b5:39:71:ce:5d:49:b0:f9:b9:2e:58:dc:0a:
f1:5e:bc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 14:12:48 2024 by rpki-client on console-ams.rpki-client.org