Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d3s7P-VejmX1q-6KXBTons-jI70.roa
File: d3s7P-VejmX1q-6KXBTons-jI70.roa (raw, json)
Hash identifier: jc/VhbhDaEnPiTQkiBYEH5lgdW6RNj0EtCvaTW9VWu0=
Subject key identifier: 77:7B:3B:3F:E5:5E:8E:65:F5:AB:EE:8A:5C:14:E8:9E:CF:A3:23:BD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190BF5B5F05978B4E3BE63435786F753433
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d3s7P-VejmX1q-6KXBTons-jI70.roa
Signing time: Wed 17 Jul 2024 06:22:34 +0000
ROA not before: Wed 17 Jul 2024 06:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.56.0/23 maxlen: 23
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.8.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 20 Jul 2024 09:22:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:5b:5f:05:97:8b:4e:3b:e6:34:35:78:6f:75:34:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 17 06:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=777b3b3fe55e8e65f5abee8a5c14e89ecfa323bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b2:49:76:9b:22:56:c8:3b:b6:b7:d1:25:d2:
85:b0:f9:b5:23:14:5d:73:9d:a7:b3:5f:db:15:8b:
1c:e3:82:c0:86:22:98:c6:f9:4b:bc:53:c8:30:ef:
bc:17:08:fb:d6:49:dd:9d:19:d0:83:33:7a:94:34:
e9:42:11:84:56:c9:89:01:00:7c:ab:5a:8d:88:3e:
a9:27:3a:ad:88:72:4f:c3:03:85:d2:eb:93:f3:f6:
5c:8b:55:42:ed:c1:b3:9c:0f:3c:79:f8:38:4f:7b:
53:52:ee:3b:fc:52:e1:1e:00:e9:90:aa:bc:c3:9c:
42:40:c4:45:ed:63:a2:90:d5:31:6e:4a:14:1b:aa:
85:5e:f2:6f:82:05:25:0c:91:c3:c9:94:3c:e6:a3:
fa:ef:01:ff:58:a4:8b:5e:25:c1:27:a9:8b:80:fc:
ef:b7:e9:de:56:87:d1:a8:43:13:46:a8:71:18:d4:
f8:db:b7:19:88:2a:17:c4:00:52:98:79:62:88:6d:
59:3d:e3:42:56:df:f9:48:84:8f:f3:63:93:4d:3e:
21:91:78:c8:e0:43:6d:8f:84:77:c0:2b:bf:00:a9:
5a:77:b7:3e:dd:52:5b:c1:ba:e6:5b:79:36:e5:9b:
9d:a7:ef:85:10:60:52:25:aa:14:39:13:61:01:67:
24:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7B:3B:3F:E5:5E:8E:65:F5:AB:EE:8A:5C:14:E8:9E:CF:A3:23:BD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d3s7P-VejmX1q-6KXBTons-jI70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.17.0/24
193.124.36.0/24
193.124.44.0/24
193.124.47.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.56.0/23
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.8.0/23
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
8c:10:2c:ff:a1:80:ef:6d:31:3a:b6:cf:5f:5e:8e:8c:a7:e3:
4b:77:d8:df:32:95:ae:3e:b6:de:e4:4c:07:d9:08:f6:86:ea:
57:37:72:1d:28:69:7d:b7:a5:d6:df:d7:d4:84:d7:8f:20:91:
ef:d4:f7:72:a0:cd:43:ff:b6:8d:cd:21:b5:22:7e:73:7f:35:
8e:fd:5c:14:35:49:c9:c0:6e:30:e6:82:22:15:46:a2:a7:32:
dc:9d:52:60:0f:f2:b3:75:70:6f:5a:a4:26:67:a3:e6:b2:31:
4e:13:c6:14:5c:7c:24:3d:e4:5a:3a:6e:f6:cc:7b:e8:7d:b6:
9d:c6:19:14:a0:35:99:f4:c2:00:a4:a1:21:80:ec:ee:82:1d:
44:85:11:7c:c2:4a:c2:ba:ba:f7:93:21:b3:37:03:b5:73:27:
64:a8:0e:90:03:9c:81:fb:6e:17:ec:ba:f4:56:b6:64:4b:c4:
fa:dd:c7:5a:1e:57:5f:28:64:2b:7e:e0:19:40:d8:7e:2b:9a:
9c:ea:90:63:91:ab:21:df:e4:57:cc:75:6d:9c:a6:fc:c5:89:
6a:b7:b5:10:e8:11:cc:c9:72:b9:b6:7f:47:a8:76:0b:6e:70:
23:e3:56:e6:48:58:0c:68:31:ec:ee:85:e7:ac:31:32:45:9a:
1d:25:2f:98
-----BEGIN CERTIFICATE-----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=
Generated at Sat Jul 20 12:30:27 2024 by rpki-client on console-fra.rpki-client.org