Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdBYnKHuECMd0bm8mma8O-q2__E.roa
File: JdBYnKHuECMd0bm8mma8O-q2__E.roa (raw, json)
Hash identifier: PbF0+2G4z56koyN5HPvhx9YU07Y8gTOpg+l1FgqDdak=
Subject key identifier: 25:D0:58:9C:A1:EE:10:23:1D:D1:B9:BC:9A:66:BC:3B:EA:B6:FF:F1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D0CC432DBD7A6E21AE3E8B3DD31FBE1CF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdBYnKHuECMd0bm8mma8O-q2__E.roa
Signing time: Mon 15 Jan 2024 10:56:41 +0000
ROA not before: Mon 15 Jan 2024 10:56:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 212.193.13.0/24 maxlen: 24
62.76.227.0/24 maxlen: 24
212.193.25.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
195.133.2.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
194.87.81.0/24 maxlen: 24
194.87.88.0/24 maxlen: 24
194.87.201.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.245.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 04:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:c4:32:db:d7:a6:e2:1a:e3:e8:b3:dd:31:fb:e1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 15 10:56:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25d0589ca1ee10231dd1b9bc9a66bc3beab6fff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e6:9a:ad:cb:3b:30:53:5a:4a:e4:e1:a1:7f:
eb:f7:4f:4f:11:ff:f6:96:fb:39:0b:40:08:c9:91:
78:59:db:cd:0d:04:bc:2e:20:86:98:64:7e:5d:f8:
e7:96:a2:0e:d1:68:75:1b:d6:9f:47:18:56:ab:d8:
11:79:4b:f7:77:02:ba:59:94:b3:61:3e:df:3f:99:
16:30:73:0c:24:28:42:e0:52:d1:6d:15:6e:0c:ef:
85:ff:9a:d4:a7:95:64:be:d5:36:35:84:72:9e:80:
eb:e7:77:4d:0e:9d:00:e0:59:4e:45:6d:1c:f4:42:
7c:e0:a1:6a:38:d7:8f:a5:a2:29:35:01:ae:c7:a7:
d9:1e:bb:40:9b:f9:47:1a:52:80:23:d4:a6:3f:b0:
c4:fc:a0:7e:34:13:ce:10:30:e5:9c:82:13:47:ca:
80:53:bb:52:4c:80:6b:a0:11:70:18:a2:01:f8:f8:
03:d5:9a:70:26:13:f5:e5:36:50:e0:93:66:1b:26:
83:32:02:10:89:00:b0:58:79:e5:18:90:fe:b8:8f:
b9:c7:57:84:33:8d:53:1a:38:a3:c7:d8:e6:b4:aa:
f0:22:73:1b:ee:73:f2:02:75:4a:c8:06:f6:d8:7e:
20:7d:89:40:44:98:0a:82:bc:aa:27:15:ec:e0:00:
fc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D0:58:9C:A1:EE:10:23:1D:D1:B9:BC:9A:66:BC:3B:EA:B6:FF:F1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JdBYnKHuECMd0bm8mma8O-q2__E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
185.72.10.0/24
192.124.183.0/24
193.124.47.0/24
193.124.95.0/24
193.124.202.0/24
194.58.42.0/24
194.58.66.0/24
194.87.26.0/24
194.87.76.0/24
194.87.81.0/24
194.87.88.0/24
194.87.128.0/24
194.87.149.0/24
194.87.151.0/24
194.87.170.0/24
194.87.172.0/24
194.87.187.0/24
194.87.190.0/24
194.87.201.0/24
194.87.215.0/24
194.87.224.0/24
194.87.229.0/24
194.87.231.0/24
194.87.245.0/24
194.135.33.0/24
195.58.54.0/24
195.58.63.0/24
195.133.2.0/24
195.133.25.0/24
195.133.27.0/24
195.133.72.0/24
195.133.74.0/24
195.133.84.0/24
195.133.192.0/24
212.192.1.0/24
212.192.214.0/24
212.192.222.0/24
212.193.13.0/24
212.193.25.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b2:b4:79:33:d4:66:6f:8b:27:a0:a6:7f:3a:50:b0:a4:08:
67:6a:89:0b:0f:36:f6:73:92:9f:aa:30:22:bb:9f:6f:37:ea:
c0:55:ff:f7:4a:34:58:ec:28:7b:e5:bf:fd:24:c1:fe:12:26:
93:98:b4:2a:35:92:95:3e:1d:79:c2:08:9b:28:0d:9d:22:92:
7c:81:cb:c0:4a:1a:0f:69:3b:16:5c:0a:a9:25:be:b8:c0:17:
24:1f:99:8d:0e:c7:b9:a7:91:11:e5:8e:35:cd:59:2a:d5:c4:
28:98:c6:55:1b:c4:d6:70:2c:71:2e:3b:7d:e8:1f:7e:c0:1b:
2b:9e:37:b9:64:44:10:cb:e4:8b:68:36:2d:e1:09:52:cf:60:
66:15:a6:ea:9c:1c:91:81:76:12:ab:d9:5a:99:26:03:cb:18:
e3:4a:d3:67:d5:db:21:d4:7a:3c:9b:d3:65:96:30:90:a8:dc:
84:ac:0c:f3:72:96:45:83:20:aa:3d:c9:dc:c9:ee:c5:fe:f7:
58:42:78:b7:cd:39:4c:98:dd:8a:5e:63:c2:18:cd:a1:bc:3f:
40:d9:8a:3c:fe:b9:0f:67:8b:87:cc:19:d1:fd:3d:79:c8:f7:
3a:cc:3d:01:a1:4c:ca:17:2e:43:36:c8:a3:8a:3a:d3:fe:80:
b5:ef:d7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 06:10:11 2024 by rpki-client on console-ams.rpki-client.org