Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ1rinXzV9TIqRuNUH5hCgz1S1E.roa
File: dJ1rinXzV9TIqRuNUH5hCgz1S1E.roa (raw, json)
Hash identifier: zZEhENf8zkvBmsWt+RGWTFHELcLkQkH1Bmd7Vyem4g4=
Subject key identifier: 74:9D:6B:8A:75:F3:57:D4:C8:A9:1B:8D:50:7E:61:0A:0C:F5:4B:51
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185A7417E003F5EC9E801755826D05DE069
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ1rinXzV9TIqRuNUH5hCgz1S1E.roa
Signing time: Thu 12 Jan 2023 18:32:45 +0000
ROA not before: Thu 12 Jan 2023 18:32:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a7:41:7e:00:3f:5e:c9:e8:01:75:58:26:d0:5d:e0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 12 18:32:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=749d6b8a75f357d4c8a91b8d507e610a0cf54b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:20:5e:04:c3:f7:48:d5:39:5e:f2:cb:9d:a6:
16:ca:83:d2:87:e2:a3:fd:3a:22:c0:06:f2:9c:9e:
16:f3:07:fc:90:64:6c:4d:af:1e:6b:48:ed:a3:bc:
5c:1d:31:bb:91:0e:66:14:b9:e5:15:36:88:59:bf:
c0:02:be:6b:97:8e:01:04:7e:58:ec:6e:c2:b7:92:
7a:c3:77:06:71:0d:4a:c9:8a:c4:7e:d1:d5:a7:89:
c7:99:1e:50:37:c9:b1:b2:2e:54:ed:0b:be:1b:21:
99:43:fc:c4:fc:53:ee:20:84:19:a4:c2:f1:5d:98:
e5:85:77:0a:28:08:ae:00:84:d9:88:2c:25:6d:24:
57:59:54:ed:c6:a0:80:3a:64:55:45:f7:70:a4:88:
c7:83:b4:1b:d6:a8:d5:30:6e:27:f1:55:69:24:8f:
79:2f:d6:9f:61:a3:00:48:85:d8:af:3c:bc:c2:0d:
b3:8a:01:3e:3b:76:67:5b:b9:7f:9e:cd:f1:85:c7:
7c:3c:01:f5:8c:53:53:b4:a9:10:25:e8:31:1e:1a:
77:ab:94:c5:d7:67:0f:3a:83:bf:10:89:dc:a6:d9:
0a:62:90:db:13:50:ce:6e:1b:f6:4f:a0:ca:50:68:
0c:e1:d6:65:13:ad:d3:51:7e:c2:6d:43:f2:d0:46:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9D:6B:8A:75:F3:57:D4:C8:A9:1B:8D:50:7E:61:0A:0C:F5:4B:51
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ1rinXzV9TIqRuNUH5hCgz1S1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.58.155.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.194.0/23
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b4:89:dc:46:98:69:b9:5f:95:44:8e:12:3f:09:00:4f:5e:
e6:6b:76:36:c2:5b:2f:db:ea:d1:4c:6b:4e:74:aa:46:d8:ae:
8b:06:d8:ff:5e:d9:d0:ba:a1:8d:75:4a:2c:8a:87:0c:b8:f6:
20:39:68:59:ac:2c:18:1d:62:4a:c5:bf:80:d3:50:1d:a4:a2:
ba:31:fa:1a:0e:da:8f:3e:69:af:ad:55:d7:30:8d:3f:c0:14:
dc:8f:26:97:c4:fb:b7:e9:21:11:57:36:57:03:48:fb:c3:16:
0c:69:0f:cd:9a:d3:18:db:21:ed:a3:cc:06:67:0f:ab:02:dc:
62:22:0b:c7:1d:5c:57:81:63:ee:69:9e:6d:c0:d4:a4:7d:dd:
4e:e9:26:07:29:f6:23:7c:39:6d:16:68:fb:a8:12:41:eb:7b:
06:ea:6c:31:95:dc:98:9b:4f:7b:1c:e6:e2:2d:e3:82:fe:d1:
cb:f0:84:ef:e8:df:91:59:19:e6:82:3e:35:84:2a:47:62:79:
53:8b:a1:c6:59:da:2b:d0:ca:2f:1a:0d:1a:38:a2:52:a3:55:
97:b4:e0:69:02:37:bb:3d:52:85:83:79:94:3a:91:82:73:66:
86:9e:8d:e9:df:9c:a9:ad:79:65:8b:73:4d:f1:b9:d7:e8:39:
7d:c0:69:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:08 2023 by rpki-client on console-fra.rpki-client.org