Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lN75nKrQzVv-PnyiBtwMVTTT_Zw.roa
File: lN75nKrQzVv-PnyiBtwMVTTT_Zw.roa (raw, json)
Hash identifier: Q9ww3meWQNUZqfgJTu5Hmp20tuC8OyH/c4HVC4tDck0=
Subject key identifier: 94:DE:F9:9C:AA:D0:CD:5B:FE:3E:7C:A2:06:DC:0C:55:34:D3:FD:9C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190DA1AC9E297F15279EEF17B97C5FF979B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lN75nKrQzVv-PnyiBtwMVTTT_Zw.roa
Signing time: Mon 22 Jul 2024 11:01:47 +0000
ROA not before: Mon 22 Jul 2024 11:01:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.56.0/23 maxlen: 23
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.8.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 24 Jul 2024 09:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:1a:c9:e2:97:f1:52:79:ee:f1:7b:97:c5:ff:97:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 22 11:01:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94def99caad0cd5bfe3e7ca206dc0c5534d3fd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:98:b1:e5:3d:78:f9:25:c7:61:d7:e1:a7:e8:
1d:8c:6b:ac:e4:fe:b2:6d:de:3c:1d:da:0f:9c:41:
eb:91:92:71:16:ec:04:b7:a1:33:68:68:09:b0:b6:
d5:c8:3c:92:1f:60:57:71:c5:ba:7a:55:de:4f:a7:
d0:7f:dd:05:b1:46:62:33:6e:35:0b:b4:4a:d2:ca:
8d:9b:ab:c4:53:8e:c9:f1:cd:3b:82:cb:b8:67:92:
0f:21:75:38:f9:11:1d:f5:f0:36:f9:3b:62:c7:80:
94:7a:22:2b:96:f7:a5:f2:a2:f3:53:07:62:40:24:
2c:6a:43:64:79:50:c3:ba:00:38:fb:ea:5e:a1:86:
b7:9e:e7:f4:27:92:79:75:f4:a8:02:5d:24:d2:85:
97:9c:f6:85:08:ee:b7:f9:ed:6f:22:df:b2:d2:6d:
d5:50:85:d4:f1:b4:e3:1f:17:68:5f:bc:ce:46:57:
52:18:8d:f9:e6:56:fe:36:a9:a8:db:2d:e5:8a:a8:
87:9a:8c:f8:35:25:ea:a8:69:89:11:b2:91:2e:f3:
53:1f:3b:0e:eb:63:73:2c:1c:f2:1f:b8:21:2d:d5:
0f:ab:dd:6e:4f:67:fa:b0:b8:47:dc:35:45:9c:a3:
c7:d6:09:72:f6:5c:e0:0e:ec:f3:01:ff:4a:5f:95:
5d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DE:F9:9C:AA:D0:CD:5B:FE:3E:7C:A2:06:DC:0C:55:34:D3:FD:9C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lN75nKrQzVv-PnyiBtwMVTTT_Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.17.0/24
193.124.36.0/24
193.124.47.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.56.0/23
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.8.0/23
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
62:e4:34:80:b5:9b:a5:71:57:73:a9:e4:18:dc:d7:e1:77:c1:
05:21:42:f5:8c:2d:93:cf:d5:14:58:71:c0:0d:23:e2:66:42:
eb:84:28:e0:18:3d:2d:fd:3c:5f:4d:04:cf:8e:fb:9d:ff:37:
af:d6:2b:3c:f1:1c:39:9e:01:13:5e:4d:8b:83:50:2a:ae:b3:
bd:cb:85:d5:ed:b1:cc:3e:65:e2:bc:f8:e3:2f:7f:2f:66:c0:
1d:f5:74:d6:ec:24:c6:2b:31:65:c4:33:57:72:5a:f8:d7:8c:
fd:c2:c7:aa:11:b3:8b:e1:f2:81:d5:ca:37:92:f2:26:42:26:
d3:90:c6:c9:16:a3:a0:cd:ab:9c:c8:3a:34:03:39:35:cf:0d:
be:07:c1:26:48:97:8c:a9:fc:24:2a:03:79:e2:79:e2:56:d7:
33:a9:71:0e:f2:89:92:51:5e:b2:98:e6:74:b8:2f:d2:1e:f9:
5b:56:81:80:33:67:99:7b:80:e1:88:d1:7c:03:be:ad:bd:4e:
85:1d:2f:b1:e5:39:3d:38:0f:00:1f:03:c2:87:c6:14:0c:8c:
54:14:2e:a8:b4:0e:8e:cb:78:e3:10:03:56:d1:9a:bd:07:2e:
3f:30:5d:2e:e2:ee:e1:f4:c7:40:a0:43:65:86:e6:21:88:8b:
a8:cd:89:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:45:19 2024 by rpki-client on console-ams.rpki-client.org