Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cxlp9cQpzq1ITHGayHf4pIqNges.roa
File: cxlp9cQpzq1ITHGayHf4pIqNges.roa (raw, json)
Hash identifier: BTkWeLgs9T8k7MJQid4k05FYD2INHfa5kNf5GLNDIN8=
Subject key identifier: 73:19:69:F5:C4:29:CE:AD:48:4C:71:9A:C8:77:F8:A4:8A:8D:81:EB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185E74F5638C63EA346370BEDC48F5E47BE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cxlp9cQpzq1ITHGayHf4pIqNges.roa
Signing time: Wed 25 Jan 2023 05:03:34 +0000
ROA not before: Wed 25 Jan 2023 05:03:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 14:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e7:4f:56:38:c6:3e:a3:46:37:0b:ed:c4:8f:5e:47:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 25 05:03:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=731969f5c429cead484c719ac877f8a48a8d81eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d6:d9:0a:20:3d:0b:97:02:e9:f9:ad:97:51:
cc:ff:03:99:4a:d9:b7:06:21:ab:12:ca:8a:fb:0e:
dd:24:53:c6:5d:8a:d1:67:10:d7:3e:2f:71:55:69:
08:d6:a3:22:12:58:48:16:87:5a:e2:81:3e:46:d0:
ed:aa:fc:08:6a:69:99:3c:c7:4e:c9:b7:1d:78:42:
83:0e:f3:e1:64:e3:98:e9:25:02:f2:e8:48:02:b2:
a3:fb:53:5e:08:98:da:8d:0e:30:59:f0:1f:ee:83:
c2:94:72:23:d3:96:e4:7f:3f:49:4c:e3:85:a7:9a:
77:dc:a5:ea:9c:fb:f1:5e:61:07:7e:aa:e8:c9:17:
dd:30:97:7e:5f:e6:4c:e0:78:d7:6e:b1:3d:19:36:
5c:6c:6d:54:ce:2b:07:a0:e9:af:47:a0:fd:a7:75:
75:ac:27:b0:af:16:48:b0:dc:5f:b3:8b:ef:ec:89:
c0:9d:31:d8:03:40:f7:9e:80:1b:a4:a5:78:b8:65:
08:8b:30:6a:20:a5:2f:b9:4a:3b:ca:b7:62:22:78:
92:43:d5:9b:c8:87:8a:ee:e0:b6:84:f5:79:c7:be:
67:39:ba:16:a5:f2:01:cd:58:f9:66:41:fd:8e:01:
7a:32:48:94:16:d8:4d:04:12:6f:f2:40:97:f6:c5:
6a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:19:69:F5:C4:29:CE:AD:48:4C:71:9A:C8:77:F8:A4:8A:8D:81:EB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cxlp9cQpzq1ITHGayHf4pIqNges.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.6.0/24
193.124.8.0/24
193.124.133.0/24
193.124.202.0/23
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0/24
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.226.0/24
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7a:42:6e:35:23:a1:33:ce:90:3b:0b:36:5d:52:d5:84:db:
28:d7:5d:ee:82:23:6a:48:23:cc:6c:c1:e3:e4:9e:3d:bb:b3:
59:85:71:fc:ff:3a:df:8f:e7:2c:40:49:c1:14:9a:b8:ba:62:
6c:ba:50:02:f4:a9:a9:e4:d5:2d:f2:fa:fd:55:d7:cf:1a:7c:
e2:7d:95:7e:69:45:b1:66:dd:e7:02:01:69:2d:c9:fd:8e:16:
a9:bc:3d:52:68:58:69:f4:9f:b9:3c:95:70:e9:93:f4:30:4f:
a3:7b:d6:2b:63:b3:41:87:de:e7:3d:1b:d6:e8:0f:80:c9:45:
3f:7a:03:40:d1:c9:08:4f:78:e5:b5:1d:52:86:68:9a:62:c8:
28:50:bd:9f:b1:fd:e1:ca:18:db:14:66:1d:90:f0:b7:93:78:
09:51:50:97:b9:e7:69:8e:2a:ab:96:3c:0e:26:3c:60:e1:42:
87:c5:40:44:47:2f:0a:78:3c:80:e4:ab:9e:80:5e:df:75:de:
8b:fd:16:7c:e4:56:b0:c6:88:7a:cb:af:f6:2e:22:52:16:8d:
54:82:92:64:fc:2a:a4:4d:0c:fd:8a:7e:3a:06:9d:70:a1:a0:
fd:cc:28:c2:6e:3e:6b:41:39:23:28:0f:78:ef:7f:42:06:c3:
d4:0f:bf:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org