Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iR4gPkuNEgPYMvx_1hf-sTg5Bzc.roa
File: iR4gPkuNEgPYMvx_1hf-sTg5Bzc.roa (raw, json)
Hash identifier: 6dFHhWtXdR6brdf/MWkaZcexh95JVdAdCQmdiNz8HC0=
Subject key identifier: 89:1E:20:3E:4B:8D:12:03:D8:32:FC:7F:D6:17:FE:B1:38:39:07:37
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01913675066A92B53B0AAC709725E538385D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iR4gPkuNEgPYMvx_1hf-sTg5Bzc.roa
Signing time: Fri 09 Aug 2024 09:25:24 +0000
ROA not before: Fri 09 Aug 2024 09:25:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.39.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 09 Aug 2024 15:20:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:36:75:06:6a:92:b5:3b:0a:ac:70:97:25:e5:38:38:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 9 09:25:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=891e203e4b8d1203d832fc7fd617feb138390737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:90:dd:c5:b0:a4:b2:37:19:8a:c6:0f:3e:ff:
eb:7f:bf:36:99:bf:5a:6c:53:3d:24:85:0e:9d:42:
a4:e8:9d:9e:2f:9d:21:b5:8d:d6:be:3e:d8:bf:59:
00:26:87:c4:75:91:f1:88:d2:ce:f8:7c:fe:2a:d9:
cc:1a:e9:b0:7a:89:f3:07:bd:6f:5a:76:1b:14:f9:
a9:49:5a:dc:51:d2:5a:70:32:33:03:75:04:23:94:
8c:18:14:a4:1c:aa:87:24:49:47:fa:fa:c9:b9:01:
ac:04:b9:bf:86:d0:29:c8:7d:5c:80:30:bd:81:36:
bd:e8:b6:4c:93:61:fa:c7:3e:de:a3:ca:ff:b6:68:
eb:13:ce:7e:9e:58:9c:f7:e2:98:3b:6c:c6:4c:d5:
11:0c:32:a6:59:b9:83:06:eb:bf:ff:12:a3:1f:c2:
3f:a5:1e:39:3c:e2:09:62:f5:a9:90:c0:9e:97:2f:
2e:5a:76:50:a0:7e:45:bb:37:8e:45:6a:2e:0d:12:
21:92:a7:06:cc:b6:5d:0d:9c:40:a2:da:87:ba:c9:
5b:40:a2:cd:ed:e1:09:5f:48:df:e0:40:6b:6d:4a:
ef:be:fb:e8:10:22:be:4d:31:b6:6f:b6:ab:4a:3c:
c8:89:bc:c9:5e:ae:02:84:12:5c:1b:03:d6:92:97:
81:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1E:20:3E:4B:8D:12:03:D8:32:FC:7F:D6:17:FE:B1:38:39:07:37
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iR4gPkuNEgPYMvx_1hf-sTg5Bzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.41.0/24
194.58.44.0/24
194.58.66.0/24
194.58.155.0/24
194.87.44.0/24
194.87.49.0/24
194.87.52.0/24
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/22
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
24:ba:ea:7d:79:f3:a6:84:0a:27:9a:79:88:53:05:d0:74:74:
dc:5a:ad:86:01:f3:a6:91:70:f2:77:4b:88:9b:70:a5:9a:d2:
96:11:c8:55:a1:de:4f:96:3f:dd:dc:cb:cd:2a:04:78:ec:ea:
56:c5:bc:45:c9:d9:81:00:12:3a:7d:2f:84:aa:0b:a1:ca:c5:
20:3a:91:e2:af:ba:7f:49:42:fd:96:50:f6:2c:fe:6c:57:67:
29:30:71:95:17:eb:26:e9:ab:a3:5a:1c:ba:16:6e:f2:9f:38:
8c:14:91:17:f0:44:65:ab:ad:9e:1c:47:74:1d:c7:0f:27:ac:
91:73:7d:7c:1a:e2:e7:f3:1c:94:c4:f9:7d:8f:db:8f:4a:eb:
d5:89:98:a9:88:90:f0:59:59:52:36:ed:e9:56:f5:97:3c:1a:
1c:64:bf:b9:bc:87:60:a7:52:c6:21:58:b3:75:da:4f:4a:20:
4b:ab:93:92:6e:a9:ca:b6:fa:4c:95:2d:75:ce:21:ba:7a:cd:
c4:5b:e0:c0:25:a5:1f:e2:91:01:22:5c:a5:d4:c3:9c:a2:18:
16:16:db:a8:e4:5b:bf:4b:0b:46:f4:9b:e4:9e:3d:f5:29:39:
c9:4f:d9:e6:d4:fa:fe:7f:4a:b7:85:22:82:ce:d1:0a:22:75:
7d:c6:65:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 18:23:57 2024 by rpki-client on console-ams.rpki-client.org