Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aBL1_Ba7dqkSaJUtWF_T9qk-ooU.roa
File: aBL1_Ba7dqkSaJUtWF_T9qk-ooU.roa (raw, json)
Hash identifier: 3+f5RqibRU7HpaHaDzTAfLJv8CDdEKH4/kzYzcEoeWk=
Subject key identifier: 68:12:F5:FC:16:BB:76:A9:12:68:95:2D:58:5F:D3:F6:A9:3E:A2:85
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185967180CA7EFE859A9EB79D6965350E75
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aBL1_Ba7dqkSaJUtWF_T9qk-ooU.roa
Signing time: Mon 09 Jan 2023 12:11:39 +0000
ROA not before: Mon 09 Jan 2023 12:11:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.229.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:71:80:ca:7e:fe:85:9a:9e:b7:9d:69:65:35:0e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 9 12:11:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6812f5fc16bb76a91268952d585fd3f6a93ea285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:05:70:c6:a6:14:d6:e4:08:82:45:a0:9c:6a:
83:90:08:38:3d:56:09:70:8a:5b:1f:e9:84:a6:a7:
e7:30:ab:a0:05:6d:c1:7b:a5:3c:6f:8f:55:c7:30:
af:df:f8:0a:a3:1f:8c:37:c5:7d:36:50:c7:14:01:
5d:f9:b1:79:63:2c:28:4f:79:49:00:3c:f9:44:37:
41:88:2f:a1:5f:0b:6a:5f:f8:22:a2:f8:84:e5:ca:
2d:a8:0c:56:42:9a:10:49:d8:42:71:0a:9c:57:22:
2c:9b:1f:50:ff:1a:a2:33:98:74:f7:0b:43:56:00:
e7:39:63:79:00:cf:d0:ff:1f:ac:38:23:f7:17:ce:
8c:f0:b3:13:5f:9f:fb:a8:a6:6f:92:34:ef:a1:e8:
e0:b9:d8:54:10:c7:c2:f3:4f:ec:46:1b:3c:63:e8:
df:56:b5:d7:a7:fb:65:61:64:69:6a:70:82:ff:ca:
73:cd:05:89:9a:14:be:69:87:7c:92:a8:07:2a:4d:
c5:47:19:31:fc:80:b4:f6:cf:53:2c:99:b6:4b:b7:
7a:ec:5b:62:1f:8c:ee:58:39:9e:e4:04:13:d8:94:
90:87:bb:c6:41:49:a1:af:06:eb:74:40:72:a5:97:
c4:14:7c:57:a7:8e:7e:8a:04:f9:de:6e:ad:b8:b2:
ba:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:12:F5:FC:16:BB:76:A9:12:68:95:2D:58:5F:D3:F6:A9:3E:A2:85
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aBL1_Ba7dqkSaJUtWF_T9qk-ooU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.229.0/24
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
72:65:5c:9c:c7:e2:16:af:30:08:d0:4b:b5:1c:bf:c7:35:96:
8a:bf:da:9e:e1:82:35:06:d6:55:d7:c9:f2:68:1d:8b:e2:98:
0f:6c:fa:de:3b:83:9f:b7:c2:ad:b2:d0:2a:78:68:63:c2:07:
99:b1:a3:60:17:e3:bf:e4:d0:9a:4a:0a:c4:a4:e5:11:7b:14:
49:9d:9f:13:49:57:1b:75:e5:2a:e0:07:72:46:35:d5:97:02:
8b:87:a3:9a:66:a9:ef:5e:00:9d:dd:74:a1:d8:bb:5d:d3:bc:
9d:ea:f1:68:43:00:ea:64:c2:a7:88:77:d2:74:8b:57:71:0e:
3a:3c:84:6c:5f:4d:14:8f:b1:c0:0c:de:bb:2d:61:00:d1:f5:
cf:1e:98:56:b6:3a:6e:28:88:82:f4:fa:50:b3:4d:3a:e1:b0:
ca:17:f8:f6:60:af:91:c9:8e:ad:b1:dc:96:e1:64:44:4b:da:
db:2f:f9:9f:e9:fd:ee:f3:c5:4a:39:da:07:3a:9f:08:8a:4b:
0d:a1:a4:58:b4:1c:fe:a6:40:76:d6:9c:7e:f9:7f:f3:aa:d5:
f1:5e:ef:7b:8a:d5:c1:17:9d:ca:69:69:0f:fb:49:4a:b1:1a:
89:76:e9:b9:a0:8d:5a:d2:43:a7:f9:0e:dd:b6:e5:b4:ee:37:
21:26:0f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-ams.rpki-client.org