Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GoIt0pbvKZhKZi0bFth4qhjHF_g.roa
File: GoIt0pbvKZhKZi0bFth4qhjHF_g.roa (raw, json)
Hash identifier: qdntxp5Mtu8Cnrod50YNImxlnncgv4T64A9D4/G/Mu8=
Subject key identifier: 1A:82:2D:D2:96:EF:29:98:4A:66:2D:1B:16:D8:78:AA:18:C7:17:F8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185EC7B2C65481073CA62401EDA0FC6A233
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GoIt0pbvKZhKZi0bFth4qhjHF_g.roa
Signing time: Thu 26 Jan 2023 05:09:33 +0000
ROA not before: Thu 26 Jan 2023 05:09:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ec:7b:2c:65:48:10:73:ca:62:40:1e:da:0f:c6:a2:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 05:09:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a822dd296ef29984a662d1b16d878aa18c717f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:df:b0:f4:8c:a0:85:4b:17:ad:b2:14:6e:f5:
26:d9:a3:1c:35:db:da:c4:c5:b6:6d:be:ee:cb:96:
5d:ae:d4:5d:4e:d6:23:ae:ca:b7:6d:35:76:e2:1f:
6a:2f:27:48:7c:30:a7:fe:f2:f3:49:68:c3:58:05:
90:2a:c3:51:44:07:38:40:9d:45:4c:9d:5f:1c:eb:
c1:2d:6b:6d:e7:7b:b7:7e:a7:83:e0:30:ef:7d:61:
c2:89:4c:22:3c:fe:c2:b8:eb:e3:8d:71:d1:e3:ee:
a0:71:ad:7b:eb:7f:43:b3:f6:03:02:dd:16:bf:b9:
77:16:98:70:a5:22:a7:df:89:0e:3c:0d:94:8c:76:
86:33:11:8f:c5:59:49:99:d1:6e:3c:f6:b5:6c:4a:
6a:25:fa:c8:45:a7:52:a4:38:42:1f:ab:e5:46:e6:
9d:a9:85:ec:53:cb:5a:f6:f6:fb:60:80:1f:8c:45:
3e:8d:93:0f:0a:18:51:b7:a5:9a:18:a3:70:7f:77:
ff:37:a0:a8:61:b9:57:18:4c:95:0b:b8:a7:f8:b5:
b5:f1:da:29:61:1e:f4:3b:18:56:c1:2e:7d:8a:6c:
d1:aa:ac:23:9d:f8:70:29:88:6f:8d:fb:a9:59:76:
38:4c:0d:a5:f5:69:43:2e:b4:0a:a2:e8:cf:7d:be:
66:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:82:2D:D2:96:EF:29:98:4A:66:2D:1B:16:D8:78:AA:18:C7:17:F8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GoIt0pbvKZhKZi0bFth4qhjHF_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.6.0/24
193.124.8.0/24
193.124.80.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:b1:cd:9e:24:0d:19:7f:b5:70:8f:85:ee:39:43:58:37:f4:
db:22:f0:04:99:b6:58:1c:c1:0b:98:86:9a:ae:75:95:c0:24:
07:71:be:3a:72:ad:07:72:27:0a:4b:df:40:5b:47:eb:96:51:
f1:7e:c8:b9:aa:58:12:e6:1c:f8:16:72:66:93:96:5d:6f:b2:
5c:bf:db:5d:a3:0a:3d:50:2b:81:42:21:48:9d:3d:ea:35:ff:
48:27:36:a6:b9:f3:19:f8:04:22:5f:70:17:c8:78:f8:20:e6:
4f:31:fb:12:37:a7:3c:9e:36:31:4e:84:ee:ef:86:7a:83:1d:
68:11:bc:c4:9e:8a:8d:d8:c3:c6:83:46:27:d3:bf:e3:4b:04:
cf:bb:04:61:14:62:6f:ea:8f:91:85:4d:e5:4e:37:e5:69:a5:
00:b0:39:4a:ff:f7:2a:2b:ca:bb:58:ba:5f:39:28:e0:7c:ac:
d3:3d:42:ff:61:8c:fc:a9:c2:bd:c9:e0:9f:06:f7:17:3b:a8:
db:98:dc:0e:69:2d:b5:b4:21:e3:2c:c6:e6:d1:93:b7:21:79:
47:3a:26:cc:44:fa:ff:ac:57:f0:5a:9b:8d:0a:65:92:04:fd:
77:ca:8a:4f:cc:f7:10:7c:b1:d1:db:c8:78:2a:a1:7e:c3:53:
c4:31:e8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org