Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SLgFZdRdVSSaGYq0Hlwn9F_wHxI.roa
File: SLgFZdRdVSSaGYq0Hlwn9F_wHxI.roa (raw, json)
Hash identifier: l/P8jCRNEA+7q86rpgg7MYTy2KLLIfOeSjNSty/fqD4=
Subject key identifier: 48:B8:05:65:D4:5D:55:24:9A:19:8A:B4:1E:5C:27:F4:5F:F0:1F:12
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01857674273D4B4D3974EAAEF4F0811C993D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SLgFZdRdVSSaGYq0Hlwn9F_wHxI.roa
Signing time: Tue 03 Jan 2023 07:06:41 +0000
ROA not before: Tue 03 Jan 2023 07:06:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:76:74:27:3d:4b:4d:39:74:ea:ae:f4:f0:81:1c:99:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 3 07:06:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48b80565d45d55249a198ab41e5c27f45ff01f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b0:b1:37:ad:c9:ba:7b:0e:fa:57:ac:4d:cd:
6d:b5:ce:12:03:ec:5d:48:2a:7c:bc:14:c1:42:d7:
d5:c6:b0:4d:2d:e4:20:40:ed:ee:97:7d:ec:e7:76:
a0:c5:81:61:cd:5c:de:b8:0a:1c:1e:f8:1a:f4:b8:
af:de:89:69:d5:5a:99:e9:3b:2a:1d:55:30:4e:4a:
66:7c:5d:e0:a1:b2:87:fd:ec:f6:b7:bc:a2:bf:77:
ed:a0:d5:f9:ce:f5:cb:c6:09:a9:bd:5b:9c:2c:b4:
04:9c:cf:c3:3a:d3:07:af:66:78:62:99:17:87:28:
cf:46:8d:37:08:91:d5:ec:34:67:7e:66:83:eb:c4:
88:cd:87:55:25:14:d8:f7:18:ee:25:cb:39:4e:0a:
04:40:24:76:ce:06:ba:d1:c8:12:7f:d2:3b:41:67:
e7:30:32:06:7d:ef:5d:2c:53:42:35:9b:81:a8:26:
3e:32:e3:af:72:4f:0f:dd:5a:37:c5:dc:6c:b2:18:
3c:db:30:41:ae:fb:f2:5e:23:f3:77:c7:83:96:d4:
43:a9:aa:17:ca:6b:21:39:a7:22:6b:5e:39:47:15:
9c:f0:ea:b0:92:5c:c6:ae:1b:5f:be:5c:9c:9d:3c:
bb:04:81:eb:14:86:10:03:51:c3:43:78:d0:18:77:
50:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B8:05:65:D4:5D:55:24:9A:19:8A:B4:1E:5C:27:F4:5F:F0:1F:12
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SLgFZdRdVSSaGYq0Hlwn9F_wHxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d3:b1:36:ed:94:ef:4c:44:ce:d4:7f:55:f3:a8:a8:85:ed:
ef:69:50:65:13:dc:c7:a8:04:8d:09:15:4c:c6:b9:3b:23:d6:
e1:77:43:86:6d:05:66:82:64:f7:73:b3:d0:63:39:ef:82:b5:
87:ba:e2:e2:cd:e3:53:af:f8:f2:71:cb:0a:a1:8a:30:a5:fe:
71:d1:71:ff:6e:dc:9c:39:88:b3:e8:d3:ae:2e:99:7e:7b:7e:
2c:ef:65:c1:b0:04:ef:ca:9b:4c:4c:e5:df:4f:e1:60:f3:03:
5c:b6:5b:7e:7f:a5:f2:68:40:2e:0d:0f:cc:2e:5e:b1:87:ee:
f6:1a:f4:12:1a:82:3d:7c:4b:8c:a9:73:9d:b7:bd:eb:27:1d:
5b:13:9a:53:0a:da:d7:e0:58:89:dc:ae:0b:40:8b:93:83:9b:
54:aa:ff:55:2e:e6:05:8e:4d:30:a7:bc:c9:93:10:eb:10:46:
c1:42:d7:30:f0:5a:b0:46:02:01:b7:6e:ab:e0:a5:61:21:8e:
a5:6e:46:ef:c8:da:7d:b1:1e:f6:ed:e3:cb:4d:a5:f1:8d:76:
bd:d7:00:9c:81:b6:05:ea:d1:80:5d:da:b6:fb:a9:91:85:a6:
31:81:4a:e7:c3:0d:62:43:29:b7:42:5d:2c:b6:b3:90:9a:b1:
1b:0d:3a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:03 2023 by rpki-client on console-fra.rpki-client.org