Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eLJvcxvsqEu7UBvjzaF8-Ym24wE.roa
File: eLJvcxvsqEu7UBvjzaF8-Ym24wE.roa (raw, json)
Hash identifier: fELm70fkWM9ZeDxMwATmSe0lHhndGP3Fc4k6lvqWpyw=
Subject key identifier: 78:B2:6F:73:1B:EC:A8:4B:BB:50:1B:E3:CD:A1:7C:F9:89:B6:E3:01
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01919F26253DC9277E5ADF1BECD36FDB9592
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eLJvcxvsqEu7UBvjzaF8-Ym24wE.roa
Signing time: Thu 29 Aug 2024 17:19:22 +0000
ROA not before: Thu 29 Aug 2024 17:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
194.58.57.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 02 Sep 2024 06:47:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9f:26:25:3d:c9:27:7e:5a:df:1b:ec:d3:6f:db:95:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 29 17:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78b26f731beca84bbb501be3cda17cf989b6e301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:af:bc:d5:75:ab:74:da:cf:97:c6:22:c6:8f:
1d:f2:ef:78:71:aa:a6:3a:a4:56:4e:bc:c9:89:0e:
02:bc:92:6b:a9:ae:6f:46:8b:86:9b:8e:0e:6c:6f:
00:a8:77:05:3d:65:8d:96:21:75:52:6e:ea:7b:18:
10:15:6e:75:a6:28:8a:3f:1a:64:91:b5:b7:e2:12:
5f:5b:74:eb:08:f0:ff:69:99:b0:9c:dc:07:86:d9:
bd:aa:7c:69:25:00:f1:1e:4d:86:91:e7:dd:f2:b3:
75:f3:d2:8c:c6:be:74:72:fd:8c:44:78:e8:c5:78:
90:89:0a:29:8a:c7:85:80:20:62:e8:06:20:8f:cd:
46:c3:b6:f1:bf:c3:5a:5a:61:a4:73:74:ec:89:41:
27:f8:ce:be:b9:53:38:56:0b:fc:ce:5e:89:f3:e5:
48:94:f6:5a:0c:32:67:bd:c2:5b:c7:70:5a:cf:d1:
99:a7:c7:aa:06:23:a0:18:ce:83:8b:60:4c:f9:fd:
22:19:cf:9d:04:25:ec:df:9e:6c:ba:82:af:d1:b7:
01:dd:c5:f7:69:ae:8f:92:23:2d:b0:d1:bb:46:be:
b3:5f:05:14:64:ed:7c:b4:bc:f7:87:b3:ee:a5:c3:
f7:c8:ab:68:bc:29:95:79:44:2d:4b:96:7c:ec:7d:
5f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B2:6F:73:1B:EC:A8:4B:BB:50:1B:E3:CD:A1:7C:F9:89:B6:E3:01
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eLJvcxvsqEu7UBvjzaF8-Ym24wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.47.0/24
194.58.57.0/24
194.58.155.0/24
194.87.26.0/23
194.87.44.0/24
194.87.49.0/24
194.87.76.0/24
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/23
195.133.14.0/23
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.217.0/24
212.192.246.0/24
212.192.248.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
79:ab:45:f8:76:ef:b2:e8:ea:83:69:c4:d4:25:f3:64:e0:3f:
79:b7:df:e2:73:c0:bf:69:c5:9b:da:e2:03:c1:e0:28:9d:71:
6d:3e:91:88:25:6e:71:0a:20:f3:64:3a:eb:d9:5b:b3:3e:d7:
da:eb:d5:89:02:55:c7:a6:9d:f2:ce:11:ca:0d:88:1c:82:54:
1e:83:c0:ef:2e:dd:7e:6a:1a:5c:93:6a:e9:e6:f2:08:ca:a2:
51:d9:24:6f:f5:8e:aa:2a:53:99:d9:11:e0:e2:ac:c3:08:6e:
f3:20:c5:56:b2:7e:ee:ad:91:e8:23:d0:8a:85:7b:c3:74:3b:
f3:8c:ca:b3:bf:a2:32:74:37:89:83:87:19:e3:e6:a5:bd:22:
2c:e1:00:bc:99:f4:fc:28:41:ab:29:4e:49:9a:84:26:ef:63:
a5:22:8b:3f:fd:1e:02:ab:e1:62:71:eb:90:69:ef:9f:c5:f2:
52:b4:cb:51:3c:d6:29:b6:cb:d3:ef:fe:6a:c2:8d:1b:e1:a5:
fb:58:05:61:ed:da:64:8b:cb:c5:2b:c0:ed:61:e0:00:b3:00:
82:96:3c:3d:5f:95:d3:f8:fe:58:57:63:a8:eb:65:13:f5:04:
e9:6d:97:21:bc:bd:ae:c5:59:f0:1e:ae:78:02:e4:ae:1c:bd:
93:a0:d2:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 08:06:43 2024 by rpki-client on console-fra.rpki-client.org