Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aMsDLDbc_HFKTffMf5buhwHXtNg.roa
File: aMsDLDbc_HFKTffMf5buhwHXtNg.roa (raw, json)
Hash identifier: w/MZlqXoPAvedF4dcSBazMXNDkmpW9AxE4kFR6AwMVg=
Subject key identifier: 68:CB:03:2C:36:DC:FC:71:4A:4D:F7:CC:7F:96:EE:87:01:D7:B4:D8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01914607443972124B9500CDE422F797903D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aMsDLDbc_HFKTffMf5buhwHXtNg.roa
Signing time: Mon 12 Aug 2024 09:59:26 +0000
ROA not before: Mon 12 Aug 2024 09:59:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.39.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.11.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 12 Aug 2024 11:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:07:44:39:72:12:4b:95:00:cd:e4:22:f7:97:90:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 12 09:59:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68cb032c36dcfc714a4df7cc7f96ee8701d7b4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9d:7a:5b:ba:4c:d2:3a:aa:b4:78:53:2a:47:
cd:36:f7:54:cf:c8:74:eb:2a:79:3a:c7:23:68:6d:
66:07:ab:7a:05:2c:4c:ba:c1:c1:4d:f1:a6:bb:db:
f3:a6:e0:d7:4e:d0:7c:18:85:eb:f4:a6:a8:2f:f4:
84:10:b2:3a:49:7b:d8:54:3b:d2:9f:ab:9c:aa:bc:
cb:f7:84:3e:21:18:46:a3:c8:ae:fc:54:32:ea:d4:
ab:6e:0f:58:fe:ad:05:31:ad:91:4a:fb:8f:ca:52:
7b:f8:f9:87:c7:a7:f7:c2:81:a1:77:f2:9e:d9:b7:
15:42:60:4b:ff:83:71:a2:a4:58:06:38:d4:ab:11:
25:16:07:65:6b:31:af:03:b7:4f:2d:6c:07:44:9d:
10:df:4b:50:3a:6a:bf:4e:1e:5e:35:5b:70:cb:8e:
01:a6:bf:09:56:48:3a:de:d0:87:8a:38:56:57:95:
15:89:e8:54:1e:f0:e1:42:d3:bb:06:0e:cb:37:5c:
fa:61:ae:53:7e:7d:94:6c:2d:a3:05:e9:cc:de:c3:
43:49:3e:82:37:53:9a:18:72:b9:20:de:39:2b:cf:
79:08:25:dd:52:db:75:37:28:0e:4e:ee:f2:62:38:
64:12:1c:56:2a:5a:9b:3c:42:83:b3:bc:27:07:4f:
9d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CB:03:2C:36:DC:FC:71:4A:4D:F7:CC:7F:96:EE:87:01:D7:B4:D8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/aMsDLDbc_HFKTffMf5buhwHXtNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.44.0/24
194.58.66.0/24
194.58.155.0/24
194.87.44.0/24
194.87.49.0/24
194.87.52.0/24
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/22
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.5.0/24
212.193.11.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
14:04:2e:63:5b:70:50:8c:ee:e3:90:38:3c:68:fa:3e:92:56:
41:bf:27:0c:3d:1b:58:31:81:1e:a5:da:13:ba:46:dd:e2:82:
6e:a1:ff:68:83:30:02:3d:be:53:0c:1c:67:14:39:7b:d7:f8:
e3:d7:b5:ca:31:e5:6c:35:21:3b:b9:3b:88:ae:f5:7b:49:8e:
57:e9:c0:82:bd:92:51:92:f8:96:97:93:8c:29:f0:36:b7:9a:
ef:e2:98:cb:7e:f8:30:98:b9:86:02:f3:fc:2d:5f:a2:7b:00:
67:4a:0e:20:56:13:f5:f4:07:fb:f4:76:17:be:f9:63:a3:6b:
53:0f:fd:93:57:f1:cf:a3:05:7e:99:ef:7b:8f:c1:ef:12:28:
1c:8f:10:33:67:73:18:c2:7a:d9:4c:c2:17:e5:46:c8:f3:f5:
c3:76:fa:6f:99:f4:29:34:de:8c:12:20:c7:c7:a5:dd:49:65:
bb:ec:9f:5a:30:17:a1:ac:6a:4e:2e:35:99:69:d5:5a:7a:5f:
5e:ce:74:4c:a6:eb:fa:4e:9d:43:f2:d7:07:ff:9d:2d:97:e1:
bd:ec:7d:e1:e0:38:6b:19:73:f6:05:79:36:77:4f:78:db:3e:
e4:57:9c:d7:db:ee:34:34:6e:d1:55:86:f8:24:92:33:51:3a:
b9:a9:99:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 14:09:08 2024 by rpki-client on console-fra.rpki-client.org