Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mbWSmIjjU6qvkHJqUuHlbHEfcjk.roa
File: mbWSmIjjU6qvkHJqUuHlbHEfcjk.roa (raw, json)
Hash identifier: JX1dh5F8eWfhwg+NU6TNJc06CTxve7W58DBacYPulUA=
Subject key identifier: 99:B5:92:98:88:E3:53:AA:AF:90:72:6A:52:E1:E5:6C:71:1F:72:39
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D59FB53EF6ACB15E498728B84FF377747
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mbWSmIjjU6qvkHJqUuHlbHEfcjk.roa
Signing time: Tue 30 Jan 2024 10:47:39 +0000
ROA not before: Tue 30 Jan 2024 10:47:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:fb:53:ef:6a:cb:15:e4:98:72:8b:84:ff:37:77:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 30 10:47:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99b5929888e353aaaf90726a52e1e56c711f7239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7e:20:f2:78:bf:4b:7f:7d:e8:88:38:3e:41:
65:02:d3:73:7e:c1:f5:04:27:b5:36:77:04:23:3b:
0b:bf:cf:e0:8f:4c:07:06:c9:b3:a2:6b:5f:29:a8:
91:ae:f4:53:25:ca:d6:19:83:e0:ba:dd:81:a6:d5:
dc:07:18:fc:95:1e:0d:3d:21:6e:b9:ee:fd:16:5a:
05:b4:cf:fa:8d:c0:6b:57:fe:4a:8e:49:26:2e:3e:
11:8e:8c:6b:bd:2a:5c:d0:20:a8:64:3c:35:3e:5e:
b3:97:f4:91:50:68:cf:59:9d:41:9a:b8:2b:4c:90:
54:4e:35:8b:b1:48:1e:42:4c:85:5a:cb:8b:8b:27:
33:46:60:ca:04:5a:9e:76:06:87:6a:00:40:92:0b:
1d:3f:dd:98:3c:4d:94:51:21:e7:7c:39:b4:a1:7c:
48:7e:26:0b:75:c8:54:bb:a4:27:67:9c:f3:0e:46:
5f:74:7d:97:66:88:2c:c9:0a:d1:de:0b:35:c8:37:
b4:bb:60:7c:a5:00:30:52:ae:a1:79:75:2c:7c:f5:
5e:06:72:32:87:2c:88:08:90:c8:69:7f:9a:84:b0:
90:5c:b5:64:c5:f3:9c:bd:39:37:bb:51:0b:93:ac:
db:9d:4e:0f:56:a1:4a:d1:55:84:d5:8b:44:86:0e:
5d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B5:92:98:88:E3:53:AA:AF:90:72:6A:52:E1:E5:6C:71:1F:72:39
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mbWSmIjjU6qvkHJqUuHlbHEfcjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.108.115.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/23
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.85.0/24
194.87.105.0/24
194.87.116.0-194.87.121.255
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.230.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
52:95:2f:fd:cb:f0:91:19:fa:c4:71:16:08:b6:43:71:78:68:
03:fa:c2:30:a3:8b:17:e0:14:7e:0c:8c:d2:07:e0:4b:a0:cc:
44:04:28:46:f4:71:ee:ea:f7:33:a2:a4:86:c6:57:81:e8:e7:
ed:49:0d:8f:ca:87:f7:f5:f7:8e:ca:1b:93:2b:c9:33:fb:85:
39:7e:58:73:59:57:7f:bd:13:40:8b:58:94:45:a8:5f:27:d9:
c8:dd:22:8e:d4:89:03:be:f5:0b:a6:a2:38:86:2e:03:74:06:
f4:79:d6:d8:3b:29:a1:b3:e2:ba:61:37:4c:d3:56:b2:ef:6a:
3a:6e:59:e4:73:e9:fa:e9:2b:9a:62:9a:07:02:b4:07:63:dc:
78:7f:9a:f5:1f:da:af:22:cd:23:47:d8:09:6a:b7:e2:38:27:
18:c6:87:6a:c3:8f:cf:bc:ce:80:d7:19:c0:ae:98:15:e5:db:
e4:e5:1e:77:71:40:df:c9:bb:4e:5c:63:94:18:36:92:7f:31:
e6:cf:40:65:0f:20:ef:b0:9a:64:29:8a:9c:07:00:02:a8:e8:
d6:d4:56:ce:2f:9f:11:cf:bf:90:02:3a:b4:55:ec:cf:e5:33:
e6:2d:94:a4:c0:57:a1:9f:a1:41:ea:f0:9a:d6:04:bf:68:3b:
1b:8b:fd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:26 2024 by rpki-client on console-fra.rpki-client.org