Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EQGeCOl2V7azOq5sR7WItMtVNdM.roa
File: EQGeCOl2V7azOq5sR7WItMtVNdM.roa (raw, json)
Hash identifier: StHgOOUDnPdjjVuYtqQyXNujD0HYazfeeZRdcYIP1Rk=
Subject key identifier: 11:01:9E:08:E9:76:57:B6:B3:3A:AE:6C:47:B5:88:B4:CB:55:35:D3
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185EEE90FEC73B3D06AAEAEC45C03DDAB7D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EQGeCOl2V7azOq5sR7WItMtVNdM.roa
Signing time: Thu 26 Jan 2023 16:28:49 +0000
ROA not before: Thu 26 Jan 2023 16:28:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:e9:0f:ec:73:b3:d0:6a:ae:ae:c4:5c:03:dd:ab:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 16:28:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11019e08e97657b6b33aae6c47b588b4cb5535d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:0b:1d:87:b0:e7:af:2b:e6:2b:93:52:09:
8d:80:af:40:2d:ab:c8:94:18:ae:38:26:ad:4e:eb:
d5:f8:ec:cd:7c:6b:bd:41:2f:a9:9f:d5:a2:31:4e:
0f:2e:13:3d:c9:ba:3f:d3:94:52:da:13:f6:46:7d:
2f:0c:31:8b:67:ba:c7:1e:21:6f:95:63:8f:ab:59:
ca:e6:c5:83:31:cc:17:33:32:45:f0:12:ed:b1:1a:
86:37:25:59:31:c1:b5:01:c8:70:8d:0c:4b:45:60:
7e:cf:73:c9:50:e0:31:69:c2:af:35:cc:87:bb:91:
af:9d:fd:fe:c6:72:cf:d8:10:26:71:8c:a9:89:a2:
e4:6d:69:63:57:ca:d1:22:e7:dd:c0:73:d0:3e:c0:
f5:4e:f5:57:9c:69:5e:e5:a3:bd:3e:8b:92:b2:c1:
1b:c6:c4:7f:89:5e:79:e6:c1:e1:33:e6:ec:7c:83:
db:6d:94:c7:80:99:01:5d:52:47:e4:6f:37:93:06:
10:ba:f6:ab:a7:f3:0e:f9:cc:8d:b0:71:1a:90:0c:
67:3a:82:ff:96:db:6d:4d:04:d8:5a:fc:16:14:14:
ba:fa:4a:97:f1:33:c8:58:fb:d3:f9:ad:72:be:81:
fd:57:74:7c:8f:c0:51:0b:3d:fb:75:6e:05:56:c9:
d8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:01:9E:08:E9:76:57:B6:B3:3A:AE:6C:47:B5:88:B4:CB:55:35:D3
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EQGeCOl2V7azOq5sR7WItMtVNdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.8.0/24
193.124.80.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
38:33:c5:34:a7:24:0e:09:69:78:ed:e9:b5:0d:60:3a:88:d2:
4b:19:12:6d:ea:9d:36:e1:03:d3:d1:25:f9:69:1e:f8:cf:c2:
49:74:ae:af:e6:dc:e0:96:48:ee:ce:99:74:45:57:f7:4b:8e:
9f:d3:18:33:4d:9a:97:6b:32:87:68:27:8c:dd:df:eb:0e:d2:
af:9e:ec:37:6a:c1:d2:73:11:b6:90:09:88:3f:09:b3:fb:81:
d0:b3:7c:5c:87:90:c3:29:66:be:c1:d1:f7:ff:cd:82:18:f8:
3c:f5:a0:ee:0b:a9:3e:eb:2a:db:2a:1f:78:af:be:85:d8:f7:
79:de:85:08:3e:0d:2b:92:ed:23:fa:5f:df:a1:b7:f8:09:8f:
fc:1d:76:63:e3:4c:28:7d:58:f8:8a:60:ec:bf:45:49:59:41:
0e:45:1c:f5:ae:cf:15:e1:92:d3:32:e8:49:d0:66:2f:0a:4f:
b0:34:cb:84:93:91:8d:f3:22:59:2e:58:7b:88:4d:95:45:37:
c1:7b:db:9a:4b:91:cf:cb:09:e6:3d:75:9d:b7:6f:53:1c:96:
cc:2d:64:ee:47:94:6a:16:47:1a:ef:9e:7f:24:fb:25:be:84:
cf:fa:74:a9:de:43:1c:e9:ef:ac:bc:81:6e:9f:f2:35:17:95:
7c:64:09:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-ams.rpki-client.org