Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/n6gDc8EOv4wqnlmZaVVoaYzDRgA.roa
File: n6gDc8EOv4wqnlmZaVVoaYzDRgA.roa (raw, json)
Hash identifier: OG/QEja199yYXdRjqXbPv6y3d3dK5sWzE+65loZQQOo=
Subject key identifier: 9F:A8:03:73:C1:0E:BF:8C:2A:9E:59:99:69:55:68:69:8C:C3:46:00
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018ABC7FA81520E63F9B26FB0FC3BA4E46CA
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/n6gDc8EOv4wqnlmZaVVoaYzDRgA.roa
Signing time: Fri 22 Sep 2023 10:46:37 +0000
ROA not before: Fri 22 Sep 2023 10:46:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:7f:a8:15:20:e6:3f:9b:26:fb:0f:c3:ba:4e:46:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 22 10:46:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fa80373c10ebf8c2a9e5999695568698cc34600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:82:ba:4b:9a:b0:ea:68:93:c6:fb:d6:2c:83:
34:4d:c7:7f:a9:23:0d:32:c6:25:2f:f6:e0:60:9b:
77:92:42:f3:58:9f:a7:41:01:bb:71:8e:fe:6e:19:
12:12:b3:a1:e0:2e:5e:8c:e0:e7:ef:80:da:e5:9e:
29:a1:46:03:a8:51:03:a1:45:93:b8:9d:5d:0b:f4:
b9:40:5b:37:67:3d:61:b4:02:41:a4:45:68:31:bb:
20:9b:7f:a5:48:e1:25:58:4c:44:5f:e9:2d:53:f7:
31:5c:e7:80:a6:0c:03:bc:9f:be:fb:4e:fe:e6:4b:
6e:01:b5:df:88:9c:26:bf:93:68:d1:44:3e:ca:f8:
46:b4:75:e5:8c:ec:b6:df:d3:80:64:5f:30:32:79:
b3:75:a0:51:f5:4f:86:57:09:a1:ea:02:0b:33:90:
90:c9:c4:cc:28:6d:84:03:0c:18:ec:48:3c:c7:59:
5e:d0:d6:1a:b6:bf:f1:34:fc:c9:eb:9c:a2:57:9c:
b9:27:f1:ae:99:84:a3:86:ac:95:ad:a1:ab:5c:0a:
4b:be:87:2a:5a:eb:c7:29:61:b3:53:62:61:af:40:
92:8b:85:39:e9:8f:11:65:68:d8:ff:6e:3b:7b:fa:
77:9c:bd:17:d0:f0:9a:ab:5b:fe:61:54:47:4a:4d:
b7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A8:03:73:C1:0E:BF:8C:2A:9E:59:99:69:55:68:69:8C:C3:46:00
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/n6gDc8EOv4wqnlmZaVVoaYzDRgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/24
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.85.0/24
194.87.105.0/24
194.87.116.0-194.87.121.255
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.230.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d1:b6:86:d4:1f:4f:30:64:c8:0d:4b:6a:c2:65:cd:42:b4:
16:74:4c:7b:3c:ee:0e:be:d2:47:a8:f1:76:d5:8d:0b:6a:20:
68:14:1f:45:6f:51:e8:2a:a2:96:46:42:4f:d0:99:7a:27:48:
83:dd:ba:30:38:1c:e4:f0:a2:64:df:a7:45:96:52:d4:ef:cd:
63:79:e0:3d:15:7c:0f:ca:1f:ff:2a:12:0d:25:2c:29:86:47:
0c:c9:a2:3d:2b:86:e6:6b:b0:93:11:f5:b8:5d:36:33:0e:c6:
7c:7a:8d:dc:00:51:fa:8f:4c:65:08:9b:bb:28:0f:d7:5e:f4:
29:18:5e:d5:1a:96:ed:ce:bb:35:fd:61:d8:8c:d7:49:44:f6:
75:ff:dc:19:2b:a5:85:fd:62:27:b8:79:28:7f:2a:11:0e:30:
9d:89:99:fa:26:fe:61:18:59:2c:e4:77:c2:7c:7a:88:b3:89:
e7:7c:1d:58:64:65:ff:34:2f:5c:e5:c5:02:1a:6c:09:60:08:
bd:af:82:76:bf:69:71:c8:4f:69:6e:0c:1a:74:ae:b4:0f:d3:
06:9d:74:14:b6:d7:db:7d:c8:d4:df:93:e3:d5:fa:8b:82:39:
85:3b:a4:61:89:9b:3e:3f:5f:d9:4b:69:07:40:00:14:81:65:
31:87:70:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:26 2024 by rpki-client on console-fra.rpki-client.org