Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oG9gywA3sSNkIZNO977op4Rcl6A.roa
File: oG9gywA3sSNkIZNO977op4Rcl6A.roa (raw, json)
Hash identifier: uOulPamCeFEIymhTzmo3cQKIKqVdASQH/qxNg4gvC1o=
Subject key identifier: A0:6F:60:CB:00:37:B1:23:64:21:93:4E:F7:BE:E8:A7:84:5C:97:A0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185EDAD2FBB68B6FFED6B4ED152053460B4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oG9gywA3sSNkIZNO977op4Rcl6A.roa
Signing time: Thu 26 Jan 2023 10:43:48 +0000
ROA not before: Thu 26 Jan 2023 10:43:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Jan 2023 12:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:ad:2f:bb:68:b6:ff:ed:6b:4e:d1:52:05:34:60:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 10:43:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a06f60cb0037b1236421934ef7bee8a7845c97a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:87:2d:bd:a4:f0:df:00:ee:5a:8b:75:8b:76:
b5:36:02:47:d3:76:ec:1c:e5:59:cd:9a:98:c4:f5:
d8:1a:63:97:5c:ba:ef:de:40:3a:24:dd:29:a5:17:
6a:e5:73:03:19:71:bb:70:20:eb:88:ee:18:41:6d:
2f:2b:8c:30:4a:b0:da:a8:e0:3d:c4:a9:e5:a2:cd:
e2:ed:eb:c1:6a:14:f4:a2:59:6a:30:66:8f:ae:3f:
fe:c6:53:65:a5:80:0f:22:27:df:21:5b:47:a6:70:
6c:87:b8:2f:4d:4a:61:33:a7:a0:85:77:49:1e:75:
62:bf:ad:2b:98:ec:7a:0f:4f:4d:e9:73:05:f5:f4:
5e:e5:85:8f:c1:0b:ce:4f:c7:75:8f:ac:90:2e:ef:
a9:b2:02:6b:ad:0b:90:f0:d4:20:82:74:29:a7:a2:
56:ac:f9:f0:c1:b0:ae:0a:d5:17:01:b7:4d:13:ad:
b8:ea:23:14:d8:36:8e:d7:5c:81:74:fe:b3:a7:a8:
b0:d3:88:f4:5e:31:79:6f:54:aa:da:3d:6f:9b:38:
c2:ad:96:e1:1e:a8:5d:9e:6b:1b:22:9b:e2:df:ad:
f0:c1:4a:d3:23:e0:b5:e7:ea:8a:07:50:4d:b6:86:
98:64:d3:2d:aa:39:17:89:24:ac:10:84:e3:9e:f7:
69:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6F:60:CB:00:37:B1:23:64:21:93:4E:F7:BE:E8:A7:84:5C:97:A0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oG9gywA3sSNkIZNO977op4Rcl6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.8.0/24
193.124.80.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e9:28:0e:7a:7d:99:f8:f8:66:2e:df:1a:20:ae:9c:0a:ce:
54:8c:89:ba:5f:85:71:91:2e:23:aa:da:6e:89:6c:41:a3:73:
b3:9b:7d:0a:8f:53:33:8b:68:f8:23:15:b0:b3:20:95:5b:e4:
8d:80:2b:db:7d:dd:32:40:12:5f:5e:c8:16:60:e2:6a:8c:dc:
bc:f9:18:b5:8b:46:9a:0a:d5:89:f0:7a:90:6f:ba:50:bb:7f:
8e:58:df:6e:79:98:cb:c3:e5:3e:0a:82:53:11:3f:ac:ad:e3:
fb:61:be:2b:a9:32:bc:4f:c7:fb:ed:f3:81:cf:bd:4b:73:63:
86:66:43:c7:01:ac:16:60:56:34:71:f4:62:a3:01:51:4d:69:
b8:30:e5:5c:bd:30:97:b7:6f:72:6e:da:20:ac:16:da:c0:f3:
fe:4f:9f:9b:09:41:ae:25:f5:a6:ca:87:b8:88:68:f1:4d:54:
0e:93:e0:45:4e:20:00:1f:84:c6:0f:87:27:74:c2:38:92:82:
43:ab:ab:5b:fa:3b:41:dc:bf:e8:05:00:a7:e9:49:15:a1:7d:
aa:a4:1b:aa:ef:ef:e4:c9:ed:6b:05:05:5a:a9:cb:46:ce:18:
5c:53:4c:5a:ba:c2:80:3b:d9:b5:2e:46:33:41:db:0c:ac:24:
ba:c1:b3:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:46 2024 by rpki-client on console-ams.rpki-client.org