Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eFrDd8lVh_y0NfAZVEWl1RHd4Fc.roa
File: eFrDd8lVh_y0NfAZVEWl1RHd4Fc.roa (raw, json)
Hash identifier: 7haoc3vVS2vaFBjTVU2Y+IBkyyQLzZvWg8nHwc1jIHM=
Subject key identifier: 78:5A:C3:77:C9:55:87:FC:B4:35:F0:19:54:45:A5:D5:11:DD:E0:57
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190EF8BA5861CA457B323CB891BD587412C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eFrDd8lVh_y0NfAZVEWl1RHd4Fc.roa
Signing time: Fri 26 Jul 2024 14:57:04 +0000
ROA not before: Fri 26 Jul 2024 14:57:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 193.124.36.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Jul 2024 08:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:8b:a5:86:1c:a4:57:b3:23:cb:89:1b:d5:87:41:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 14:57:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=785ac377c95587fcb435f0195445a5d511dde057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8c:c1:b3:d0:f8:32:8f:8c:a6:9a:ef:c8:fb:
79:fa:ba:3f:94:36:ca:a0:99:7d:b5:9f:60:72:7d:
73:23:68:b9:1c:98:ef:15:80:d9:39:32:0d:97:77:
1a:ad:dd:f4:e6:01:5c:2f:93:51:40:92:4a:3d:c3:
cd:ae:f8:fc:72:21:5b:31:8b:f7:91:65:6d:68:04:
d8:ad:61:90:8a:5f:de:a7:a0:00:fd:a3:7b:5c:6e:
2c:3e:00:4b:6e:42:8f:34:a8:b5:3e:f1:b7:ae:f4:
a5:6b:1e:8b:85:fd:50:ec:77:b5:99:0f:cc:f5:16:
cd:e3:96:03:7d:8a:c6:d9:24:de:78:ea:2e:8f:04:
01:e0:fc:c9:a5:28:07:75:c5:93:a5:04:67:4b:85:
b0:b2:3d:2a:32:8f:bf:99:11:9a:8f:f9:0a:e4:f4:
0a:58:24:8b:26:97:ed:b1:48:fa:a8:ac:5b:86:9f:
7a:b7:c2:9b:ff:a5:26:0b:54:12:26:24:00:b6:ef:
20:11:6f:b9:e3:a2:e4:b0:61:f4:a0:b7:ea:0b:92:
0f:a4:12:b3:f5:d4:78:cb:ca:90:7c:5b:a1:4c:a5:
77:cd:1d:4a:80:8a:20:33:ab:70:8a:8f:c3:45:2b:
16:30:f7:76:2c:9b:a6:40:ca:30:bf:f0:8d:5e:9c:
79:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5A:C3:77:C9:55:87:FC:B4:35:F0:19:54:45:A5:D5:11:DD:E0:57
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eFrDd8lVh_y0NfAZVEWl1RHd4Fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.36.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.52.0/24
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.9.0/24
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
89:99:91:29:8b:f9:c9:8c:17:29:53:90:e0:57:d8:3d:8d:5e:
21:4d:cd:1c:f7:88:71:f4:a0:0c:cb:10:cb:11:69:59:b9:d3:
2b:92:cb:fd:54:eb:36:a6:c0:0f:5c:8d:21:5f:d8:0f:c1:56:
21:74:e1:bf:54:e7:43:34:8c:67:62:05:90:ac:83:20:41:3b:
90:39:17:ab:ae:cd:6e:1a:1b:58:af:62:4d:c7:b8:71:1a:07:
88:7e:0e:f7:0c:14:28:5d:f2:92:12:5a:9f:65:6b:c5:f4:69:
3f:10:90:7d:97:2c:2d:6a:02:4b:93:9d:06:0f:40:7f:6f:b0:
3f:0c:fb:61:5a:e2:63:b5:78:dc:ba:5a:a5:af:2a:1e:1d:1f:
91:82:d3:76:a7:29:0b:57:b7:92:55:42:9c:ac:49:2c:45:40:
c3:2b:aa:c6:4e:67:2c:85:b2:4e:5b:31:3a:af:69:3b:a3:63:
0f:39:d1:1d:b7:ca:74:d8:59:e7:d2:bc:6a:e0:4f:f3:c9:93:
0f:89:20:2c:66:b5:b4:d9:94:34:bf:6d:02:5c:ab:fb:a9:28:
a2:e4:fc:50:31:56:30:aa:b1:fb:52:6c:c2:95:5a:8d:0f:47:
5a:cd:95:78:e5:85:a5:95:f9:13:09:7c:83:e5:57:28:a2:b6:
ef:fb:39:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 09:58:20 2024 by rpki-client on console-ams.rpki-client.org