Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LODcgB8FLcxJKJIWd5PfeWxdkrI.roa
File: LODcgB8FLcxJKJIWd5PfeWxdkrI.roa (raw, json)
Hash identifier: w8lFNuFmNjS3ezBpTyyh327fpaLkngA8+O1Avu/wsiE=
Subject key identifier: 2C:E0:DC:80:1F:05:2D:CC:49:28:92:16:77:93:DF:79:6C:5D:92:B2
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01894937A7BDB852393013F91CEA7BA383A3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LODcgB8FLcxJKJIWd5PfeWxdkrI.roa
Signing time: Wed 12 Jul 2023 08:28:51 +0000
ROA not before: Wed 12 Jul 2023 08:28:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jul 2023 09:11:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:37:a7:bd:b8:52:39:30:13:f9:1c:ea:7b:a3:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 12 08:28:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ce0dc801f052dcc492892167793df796c5d92b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:01:52:f0:78:c2:65:12:46:ed:91:80:3e:e0:
7e:cb:73:f2:59:96:42:26:39:56:36:b8:96:47:86:
b3:8b:4e:52:a8:53:59:44:c3:eb:56:d7:e8:d6:00:
ed:cd:f8:18:74:51:4f:d3:e1:e0:3b:17:3f:ee:16:
1a:98:76:e7:38:de:dc:ae:e5:5d:30:e1:7f:80:01:
9a:96:d0:2a:f3:ec:74:64:61:c6:9b:68:81:2f:5e:
ba:0b:3e:48:c3:f6:2c:a0:8e:f7:af:d5:6e:26:7d:
4a:81:f0:25:8d:8f:26:bc:72:cb:50:37:58:27:1d:
31:d8:d8:02:e4:ce:56:e4:f3:51:35:41:41:d2:8f:
3a:5f:9b:61:4f:8f:c3:6b:f7:bf:3c:13:3c:0e:6e:
6c:f9:2a:f1:da:62:70:fd:64:bd:1a:d3:5e:d2:df:
04:28:18:3f:1f:51:d9:28:3e:c1:3d:24:98:4a:16:
e0:8c:b5:60:57:e5:8a:00:70:71:73:91:ad:53:8b:
23:5a:b6:a4:06:9d:7f:91:49:e6:33:50:cf:d7:60:
a3:b6:2f:57:50:bd:e4:99:92:52:a5:8a:ff:9b:64:
71:95:78:92:f6:c4:66:7c:0d:be:04:aa:05:63:99:
5f:e2:05:07:1c:53:94:5b:59:86:d4:42:79:92:02:
7f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E0:DC:80:1F:05:2D:CC:49:28:92:16:77:93:DF:79:6C:5D:92:B2
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LODcgB8FLcxJKJIWd5PfeWxdkrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.30.0/24
195.133.35.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
7f:89:f1:6f:bd:24:29:f9:81:67:0c:ef:1b:11:f4:f9:b9:38:
d7:85:df:46:2b:7f:1c:54:3a:b7:b8:b4:59:e1:21:2b:d3:5f:
bd:6e:21:e3:96:a7:13:ba:9d:15:94:1d:dd:73:b7:e2:e7:5e:
f2:f6:85:cc:5a:e3:25:57:66:24:49:39:2e:ca:bf:f7:42:84:
41:d8:ad:5b:90:90:f7:fd:09:12:ad:60:2e:e8:a9:b3:58:3f:
25:3b:a0:c0:ce:0c:65:8d:fe:d6:e7:d4:3d:35:04:46:6d:6b:
6c:9e:e3:50:3d:e9:dd:75:cf:e0:84:2e:e2:ca:b8:b4:f8:30:
9e:ba:af:50:f0:8f:91:52:1c:ee:3e:19:bc:25:c0:51:1c:e4:
78:a5:59:24:86:4d:07:6c:08:fa:91:60:20:22:76:32:4a:fd:
f3:dd:7d:8b:d6:a8:fc:1c:e7:c4:62:16:86:0c:1d:f1:f1:01:
25:10:af:d0:81:d0:a8:a5:33:7f:1f:28:e9:a4:a2:ab:5b:9c:
b6:47:8e:ac:db:00:a6:71:c3:ed:61:28:a8:d2:3d:d2:e1:8c:
45:fb:0e:c1:b3:07:2b:05:f9:c1:af:f1:d8:82:48:1f:cc:b0:
a1:f3:e0:7f:4e:61:10:ba:d6:10:ba:13:c5:4c:58:2c:cb:ab:
e1:d2:a7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:13 2024 by rpki-client on console-fra.rpki-client.org