Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LjM0Kf2JTfbHBTyLj4HMvClUElA.roa
File: LjM0Kf2JTfbHBTyLj4HMvClUElA.roa (raw, json)
Hash identifier: n7e4Awh4s+XUMWy8P8NUZ2ZnnZCqxeQW6qBaI2NHhE4=
Subject key identifier: 2E:33:34:29:FD:89:4D:F6:C7:05:3C:8B:8F:81:CC:BC:29:54:12:50
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01859B01B86265D5F5B8F939D69C3FF8274B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LjM0Kf2JTfbHBTyLj4HMvClUElA.roa
Signing time: Tue 10 Jan 2023 09:27:39 +0000
ROA not before: Tue 10 Jan 2023 09:27:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:01:b8:62:65:d5:f5:b8:f9:39:d6:9c:3f:f8:27:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 10 09:27:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e333429fd894df6c7053c8b8f81ccbc29541250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ea:fb:96:a7:32:7b:2d:9b:15:eb:a6:a3:55:
da:d5:5d:ec:b7:78:cb:03:7f:c7:d5:57:2f:cf:8a:
a8:cb:ff:3d:94:22:1c:cf:f4:60:02:ac:24:b0:11:
60:96:27:63:d5:76:d1:a1:18:e2:db:3b:09:5e:29:
26:63:e1:d3:a8:da:27:8f:67:d5:61:4a:7e:bb:c7:
e3:49:9d:cc:82:22:88:47:9a:d2:ca:89:0a:83:a9:
02:bb:1d:3b:10:8a:23:1d:2d:c1:91:1a:0e:8c:fc:
a2:ff:07:79:12:96:50:48:c4:0f:46:5d:e2:f7:d1:
c1:31:ce:3b:99:99:bd:99:24:60:61:39:1a:b4:8e:
08:e0:d2:0f:3c:ee:4a:14:2b:2f:8a:6f:fc:58:e2:
35:5f:fb:6c:4e:5b:88:cd:fa:8f:4d:08:f1:45:38:
32:60:83:c3:77:c3:22:ea:92:36:42:7b:82:7b:0b:
62:72:78:73:e4:cb:a7:58:01:95:9e:c5:90:6b:3b:
c6:1d:1c:8c:46:44:f3:0f:47:5b:29:eb:aa:44:a0:
33:bd:18:a8:b0:2b:8e:62:1a:90:79:0b:6c:f2:15:
2c:62:45:d8:e2:c3:13:35:89:2d:72:6c:1d:92:f8:
83:92:51:f5:09:7e:8a:87:b4:f7:8e:e7:c4:b7:35:
e6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:33:34:29:FD:89:4D:F6:C7:05:3C:8B:8F:81:CC:BC:29:54:12:50
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LjM0Kf2JTfbHBTyLj4HMvClUElA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:e8:9b:6b:42:32:2d:3a:5f:e8:fa:62:d0:6f:a9:a9:85:16:
2b:9e:70:f8:f5:92:01:44:0f:17:c2:0f:ca:96:7c:d9:9c:26:
75:4b:ed:54:6c:10:8e:e6:ee:d3:a7:06:50:d3:81:b7:de:e3:
95:21:61:21:0c:f4:13:e7:e2:39:53:dd:24:57:13:81:59:76:
77:f5:1b:0a:83:e2:91:5a:e1:a4:a6:4a:55:fc:0c:11:0a:8b:
f4:99:96:28:18:45:7d:c6:c1:6a:90:65:1c:f7:d9:5b:3c:60:
1a:47:b7:f8:81:d7:74:a6:b9:b1:d7:94:92:d8:e0:22:fc:f2:
48:f2:8a:eb:0b:06:95:65:42:a9:59:8f:38:d8:67:6e:78:23:
a2:7b:39:85:af:7c:d3:80:4e:32:e2:c7:30:45:53:72:b6:93:
76:53:02:6f:c2:19:c9:c8:96:e0:39:86:50:d7:33:40:3f:ef:
93:72:16:d7:f2:72:07:09:b6:cf:56:cb:71:90:b5:90:39:c8:
f9:ad:cb:73:83:e8:cf:9c:70:ba:8c:8b:ab:a3:3d:30:b3:81:
87:36:b5:89:bf:f2:a6:7c:e2:f5:eb:51:c8:60:16:da:0a:d3:
eb:a7:9c:da:9d:08:23:5a:2e:1e:b4:7e:0c:4c:6b:65:b1:cb:
a7:da:92:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-ams.rpki-client.org