Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gojTXcv-Kot9fo36zAPmwYUjf4E.roa
File: gojTXcv-Kot9fo36zAPmwYUjf4E.roa (raw, json)
Hash identifier: JnR1ih1q0gyKOaImM7oaGGZ8vfvp14KmuDj9gqAcI3U=
Subject key identifier: 82:88:D3:5D:CB:FE:2A:8B:7D:7E:8D:FA:CC:03:E6:C1:85:23:7F:81
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01859A777E077B7E0B25D26215BCF5E33F3D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gojTXcv-Kot9fo36zAPmwYUjf4E.roa
Signing time: Tue 10 Jan 2023 06:56:40 +0000
ROA not before: Tue 10 Jan 2023 06:56:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9a:77:7e:07:7b:7e:0b:25:d2:62:15:bc:f5:e3:3f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 10 06:56:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8288d35dcbfe2a8b7d7e8dfacc03e6c185237f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:18:0c:2d:58:5e:4b:f2:f2:eb:e1:b7:e6:69:
05:95:c5:45:90:78:b8:4f:07:7a:50:4f:49:8b:5c:
06:e0:b0:e2:77:35:cd:8a:86:b8:ea:36:07:eb:a6:
61:72:95:f0:b0:1a:db:ea:b1:b9:e3:49:a3:db:76:
0d:bb:65:fa:3e:f4:7d:3d:8d:f2:de:23:4d:36:6b:
75:a6:c1:f3:b6:09:7c:80:aa:70:38:5f:1e:d3:b1:
fa:4b:fa:ff:59:6f:f9:58:8d:63:8c:e4:f6:b2:d3:
d3:c6:83:d4:1b:7c:5e:66:89:2b:3e:57:2f:ca:c0:
59:18:95:f4:44:27:6e:15:87:79:fd:dd:70:ad:33:
0f:7d:f1:d8:8a:05:0c:1e:14:5e:74:3f:82:58:c7:
90:17:78:59:13:77:f3:a9:27:ed:79:6d:36:88:ed:
37:14:18:7b:60:39:42:a1:bc:7e:35:d3:5c:96:4f:
30:8e:a7:83:21:25:90:14:6c:2b:07:24:a9:97:28:
b1:9a:28:a7:fd:19:32:81:45:99:b0:02:2e:ef:92:
28:05:90:c8:13:e6:1c:e7:1f:fb:77:ab:95:5a:da:
d0:fd:aa:df:53:85:22:ae:71:87:84:11:8e:3b:ed:
6d:eb:c5:6a:fa:92:df:91:34:c6:ac:32:12:5a:c2:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:88:D3:5D:CB:FE:2A:8B:7D:7E:8D:FA:CC:03:E6:C1:85:23:7F:81
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gojTXcv-Kot9fo36zAPmwYUjf4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5c:eb:1f:8d:8e:f4:72:22:ec:b2:43:ea:fa:98:f8:e8:e1:
e3:2b:60:0e:1a:0e:f2:c2:07:a3:ff:8c:ee:35:82:b1:57:c0:
83:05:06:d5:6a:b5:86:bd:aa:35:71:a3:bf:1f:96:f3:35:19:
6f:99:fe:21:63:e1:7f:ff:1a:4f:9c:eb:42:b5:ca:60:2e:46:
34:bb:1f:65:f0:1b:89:0c:0b:ae:1d:fe:f3:a4:a2:1d:84:88:
17:2c:99:8c:a2:2a:ed:f6:b2:c2:cd:54:a9:df:7e:f1:03:e2:
08:30:29:f2:4f:02:e8:03:55:77:62:43:0d:3e:b4:c6:e6:c8:
e1:be:be:9f:2f:c0:e9:c4:22:2a:e8:54:94:ca:ae:1c:aa:ed:
fb:ed:98:28:86:ec:ad:aa:6d:a3:36:67:e5:e0:ac:92:9e:5a:
9a:be:fc:8a:0f:80:e1:a7:c5:c6:7f:a1:e8:ed:51:c4:d7:bc:
c8:2b:46:4d:3c:2e:ed:c2:b4:2b:11:78:5e:f3:e3:d2:3c:05:
1e:7a:77:4b:88:78:ab:63:d5:ef:5c:8a:c0:f6:b2:1b:7d:85:
1f:3f:99:c3:ba:f1:6a:71:d7:29:75:19:e0:e6:f3:f9:9d:8f:
65:8d:7d:b9:ff:4e:a5:6d:f0:d3:f6:d9:6b:5f:30:01:ad:25:
c4:df:14:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org