Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bwmkhHqp9_FufgWzGivRQqDQtZM.roa
File: bwmkhHqp9_FufgWzGivRQqDQtZM.roa (raw, json)
Hash identifier: 1H4yE8MlIJ1uwr3//42zgbfYChLuPC9En2ZXHRjDAjw=
Subject key identifier: 6F:09:A4:84:7A:A9:F7:F1:6E:7E:05:B3:1A:2B:D1:42:A0:D0:B5:93
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185923B0FFE7C8816047DE6CD92419200DD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bwmkhHqp9_FufgWzGivRQqDQtZM.roa
Signing time: Sun 08 Jan 2023 16:33:42 +0000
ROA not before: Sun 08 Jan 2023 16:33:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:92:3b:0f:fe:7c:88:16:04:7d:e6:cd:92:41:92:00:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 8 16:33:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f09a4847aa9f7f16e7e05b31a2bd142a0d0b593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7c:5c:a9:2e:04:eb:24:f4:14:f1:06:3d:98:
4e:62:e8:14:e8:4a:2c:20:6e:15:fa:4c:28:5f:78:
c7:74:3f:b9:61:48:22:9d:d9:65:55:5f:2f:12:f3:
9f:2f:2a:4c:54:34:0d:de:0d:be:2e:fc:57:39:70:
00:77:d4:3b:ef:e1:84:d3:20:34:02:44:c9:81:a2:
f8:b0:a5:fc:b4:57:b3:4b:47:08:8a:45:d9:ac:fd:
f1:80:51:4c:67:4d:d3:a4:4d:3e:05:28:c9:d6:8b:
95:53:69:ff:71:23:61:46:af:d8:a3:1a:45:76:20:
d8:0e:4d:25:df:f1:3f:e2:ed:03:34:8c:7c:da:23:
e7:12:69:3a:35:2a:d2:c0:bc:00:4d:9d:bc:df:72:
0b:6c:06:c3:1d:cd:87:a8:28:7b:6e:95:1f:0b:a9:
aa:0a:eb:c8:cf:f1:35:8f:a7:4a:5f:59:59:d3:3e:
14:5b:21:8c:99:68:4d:cf:9d:32:b0:65:e6:b2:ec:
e4:c8:c6:ee:b6:d3:6b:93:8b:36:bd:a2:35:84:80:
db:34:7f:36:38:f6:65:43:26:e6:73:f4:b1:f9:22:
bd:d1:d0:ca:48:0a:ba:fc:18:6d:2f:13:83:28:06:
a8:8e:3b:c7:bf:67:c4:46:45:66:06:d6:b3:b6:d1:
64:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:09:A4:84:7A:A9:F7:F1:6E:7E:05:B3:1A:2B:D1:42:A0:D0:B5:93
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bwmkhHqp9_FufgWzGivRQqDQtZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:bc:69:46:50:53:51:21:f3:5b:60:25:8f:16:b5:bd:61:c4:
00:6e:7c:5d:07:cb:53:4b:e9:68:42:d0:c1:49:e9:ab:19:ff:
1b:c1:22:99:3a:32:f8:3a:2f:41:7e:fb:6c:67:f3:8d:3f:9b:
3e:0a:9a:28:3e:8b:0a:ad:27:70:52:37:7a:f3:cb:9d:54:d1:
b1:c2:75:92:25:61:87:c5:2e:19:69:af:17:60:72:4e:bc:cf:
b1:a0:02:51:0a:48:04:41:35:f3:22:c8:f5:c5:d1:7c:6b:03:
62:b8:e2:c7:2d:56:9c:fd:52:ef:1d:be:f8:af:cc:f4:7d:e7:
4d:3a:34:af:01:63:18:f3:cb:e4:9e:93:d5:55:72:28:ad:79:
ae:8f:db:34:c6:73:14:43:9c:49:b3:79:ed:60:64:59:e6:77:
dd:01:e8:a2:ef:7e:48:e6:5d:ac:88:65:06:d3:5c:94:5a:2e:
cd:e1:f6:2a:bc:40:fd:1b:84:02:c6:68:bf:2f:26:fa:d9:eb:
b9:0c:71:4a:ae:6c:6b:7e:13:c0:6f:07:5d:f7:bb:88:32:d6:
b8:35:45:0f:fe:5d:33:19:b5:ed:3d:0e:17:58:d4:2f:20:8b:
fb:0f:08:bd:6a:69:50:39:72:3c:d3:9f:fd:16:b4:77:d8:d4:
67:1c:05:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org