Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_s4DKj3cfqLkKUYm_FjbUY0URj8.roa
File: _s4DKj3cfqLkKUYm_FjbUY0URj8.roa (raw, json)
Hash identifier: JPhUcrhkC6eD0JBdIPgYbYa5DftOADlFVLKKJ+IRZqM=
Subject key identifier: FE:CE:03:2A:3D:DC:7E:A2:E4:29:46:26:FC:58:DB:51:8D:14:46:3F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190EDFF3925CA4FAD512BD75E81FFF59B6A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_s4DKj3cfqLkKUYm_FjbUY0URj8.roa
Signing time: Fri 26 Jul 2024 07:44:04 +0000
ROA not before: Fri 26 Jul 2024 07:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.56.0/23 maxlen: 23
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 26 Jul 2024 11:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ed:ff:39:25:ca:4f:ad:51:2b:d7:5e:81:ff:f5:9b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 07:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fece032a3ddc7ea2e4294626fc58db518d14463f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:34:c7:58:c5:4f:8d:dd:5b:a5:e9:0c:6e:80:
67:6e:96:a4:92:d6:9e:58:1c:d9:e7:5b:c9:ac:c1:
2b:e1:a8:59:ff:fd:fd:fb:f9:7b:e7:32:e0:0b:ea:
4d:d8:d4:5b:c5:1d:69:94:48:54:50:c9:e6:b4:71:
17:b7:89:15:95:20:df:17:30:05:e3:d8:25:95:70:
fc:ab:f1:43:1b:74:89:7a:a4:92:cd:4f:42:43:64:
62:0d:f8:7c:63:4f:9e:50:c9:a1:94:a1:44:25:d4:
c0:77:0e:43:f2:38:d5:1e:71:69:9c:ca:51:1f:17:
09:06:87:0c:6b:15:c1:3e:7e:d1:49:5f:37:90:be:
7f:f7:53:31:cc:cb:5d:05:b1:93:b5:c5:3d:a1:1c:
b7:38:9a:c0:b0:39:1c:cb:77:1c:a4:c2:98:e3:32:
dc:31:92:e9:93:88:4f:44:ee:b1:95:ca:76:07:e0:
b1:19:d7:61:2b:02:80:73:89:38:1e:da:bf:86:67:
09:96:1c:03:b6:9b:6a:c7:37:16:f2:97:ff:7e:46:
87:03:91:5d:cc:8e:99:ef:20:47:bf:9b:78:36:ab:
3e:f2:ad:3e:cc:a8:23:1b:44:43:07:21:c1:f1:0f:
20:fb:e3:0e:18:5e:96:71:2d:8c:2d:b2:0e:16:19:
af:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CE:03:2A:3D:DC:7E:A2:E4:29:46:26:FC:58:DB:51:8D:14:46:3F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_s4DKj3cfqLkKUYm_FjbUY0URj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.17.0/24
193.124.36.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.56.0/23
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.9.0/24
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
64:b0:ee:49:1b:38:2b:83:fb:68:46:e6:a5:03:1b:7b:1c:e8:
1b:12:4d:4f:b4:7a:3f:36:75:04:d8:e0:83:d6:d4:76:5d:25:
53:70:53:08:03:8a:71:e6:77:bd:6e:3b:0a:25:aa:d6:15:69:
95:dc:48:6f:1a:04:2a:17:62:19:24:14:bb:74:5b:75:c3:a0:
1d:99:e6:00:bd:c0:da:43:c5:0d:46:79:a7:c3:2e:44:0e:15:
ad:91:45:68:8c:ff:f2:f4:f6:7f:fa:7e:00:6d:33:68:81:f1:
88:94:48:06:86:d9:30:23:b6:7f:79:f4:96:16:6e:e8:b2:64:
c7:f6:c1:2c:98:ce:17:f2:dd:58:1d:14:01:87:1b:c3:b1:ab:
1a:6e:99:2b:70:af:d9:e6:66:7c:87:f9:2c:00:98:d2:fe:e7:
2f:25:22:19:fd:56:43:4d:f2:52:32:0d:24:fc:f8:f8:57:5b:
88:fa:9a:28:3a:54:84:ed:b2:1a:88:b5:18:67:07:11:eb:58:
54:76:54:bb:03:b1:16:78:d2:51:bc:d3:67:3e:c9:49:5f:03:
de:06:95:2f:fd:84:b3:12:3d:6e:63:ca:08:31:fa:ca:a4:e3:
00:b3:cd:b4:03:0f:9d:5f:8d:68:c5:e7:ef:41:66:1b:4d:1f:
46:40:9c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 14:10:37 2024 by rpki-client on console-fra.rpki-client.org