Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XNVsThioYmed607uWntJBn6IDpU.roa
File: XNVsThioYmed607uWntJBn6IDpU.roa (raw, json)
Hash identifier: zpkCrz0lXgA99Eh+7zvElf+e7BZygpTTJ2qpGvIVW4c=
Subject key identifier: 5C:D5:6C:4E:18:A8:62:67:9D:EB:4E:EE:5A:7B:49:06:7E:88:0E:95
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185E2D17C19D32E85926CDE5AF467CD8D42
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XNVsThioYmed607uWntJBn6IDpU.roa
Signing time: Tue 24 Jan 2023 08:07:37 +0000
ROA not before: Tue 24 Jan 2023 08:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.11.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e2:d1:7c:19:d3:2e:85:92:6c:de:5a:f4:67:cd:8d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 24 08:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cd56c4e18a862679deb4eee5a7b49067e880e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:d2:89:87:1f:8c:df:0c:3b:e8:ce:d0:57:
c7:65:8b:66:9f:1c:dc:56:90:18:a7:e4:7c:7d:e3:
e0:3c:51:57:a2:3a:90:2e:27:dc:b0:35:c9:2a:2e:
d0:fe:67:7d:56:2a:42:3c:30:19:c0:8c:1b:57:ed:
bd:ef:0e:8d:15:4b:cb:86:e7:ef:ee:d1:2c:d8:9a:
16:6e:14:76:9f:21:28:7a:af:e0:74:16:79:f2:1c:
37:67:f1:c0:67:e9:47:9f:75:01:96:d2:4b:eb:b6:
65:e4:ca:4c:16:da:29:7e:2f:3a:30:e6:e0:a6:f7:
bb:cd:04:84:68:e0:5e:fe:1a:64:b0:95:5d:d0:ef:
39:3e:22:dd:f4:98:d6:e7:61:3a:d7:2c:a0:60:a9:
fe:1b:1d:4e:b4:67:28:1b:60:9c:5c:80:e1:97:11:
71:e0:8d:43:99:8a:b9:4a:88:87:18:9e:26:10:bc:
7a:9f:59:d5:03:e5:a6:20:3d:91:ef:d9:c8:3b:f3:
62:eb:32:a6:4c:9c:03:b6:e9:fd:c9:9e:44:b2:9e:
b9:14:54:c7:01:24:d5:a1:b1:d9:ba:47:f2:f8:be:
a7:f9:a6:3e:9e:74:67:2f:21:c9:09:07:65:6e:18:
6e:b9:86:5a:87:5b:02:09:a1:4f:a9:a6:7b:55:75:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D5:6C:4E:18:A8:62:67:9D:EB:4E:EE:5A:7B:49:06:7E:88:0E:95
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XNVsThioYmed607uWntJBn6IDpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.133.0/24
193.124.202.0/23
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0/24
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.204.0/24
194.87.208.0/23
194.87.222.0/23
194.87.226.0/24
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.11.0-212.193.12.255
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a3:95:1a:6c:b3:16:d3:33:9c:49:04:ba:86:16:88:13:0f:
69:a6:73:67:d2:dd:46:46:6a:88:d7:df:d6:34:cc:c5:4c:28:
87:7a:7b:45:7b:cc:ea:d8:c5:41:b2:6a:aa:9b:05:82:84:51:
89:35:22:94:b7:95:57:d7:fd:4b:b2:48:2c:01:96:3f:44:42:
1f:d1:6e:65:02:fe:33:0c:e2:bf:84:9c:02:22:54:ab:4c:61:
73:a4:c6:01:b1:9c:21:76:0d:c7:dd:8b:b1:71:e5:21:b6:da:
5e:b5:bd:8b:1d:0c:ce:ae:fb:f7:c7:89:57:b7:4f:c6:4a:51:
f5:4a:43:b6:ac:56:ec:2c:9c:d4:a0:dc:71:d4:49:73:c2:74:
27:02:19:ab:c9:4d:25:aa:bd:63:ad:90:9f:29:d6:e3:d4:4c:
35:93:0e:ac:dc:3a:6c:67:3f:b4:dc:0d:46:5b:ec:96:3d:ec:
91:55:b9:71:ba:94:15:7f:1b:1b:e0:28:cb:df:04:0d:c2:50:
8f:08:b2:8a:7e:40:6f:ec:91:b8:f2:0f:60:29:4b:b2:c2:ce:
3f:f3:5c:8a:c4:0f:1e:51:45:21:04:b5:04:1b:bf:9e:d2:50:
46:48:a7:ae:82:58:5b:03:59:48:6d:2b:1d:fe:51:57:04:1c:
ee:f8:8e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-ams.rpki-client.org