Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oyN4IjJKEWgCP_tbNKTZwy-6YYk.roa
File: oyN4IjJKEWgCP_tbNKTZwy-6YYk.roa (raw, json)
Hash identifier: aDhX8Y2tU03WWWJuxiL8AopDOzF4ZdxaodPPctZ4y5E=
Subject key identifier: A3:23:78:22:32:4A:11:68:02:3F:FB:5B:34:A4:D9:C3:2F:BA:61:89
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018658805E8FC550D9AAD933931163CACE7E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oyN4IjJKEWgCP_tbNKTZwy-6YYk.roa
Signing time: Thu 16 Feb 2023 04:34:13 +0000
ROA not before: Thu 16 Feb 2023 04:34:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
212.192.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 04:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:58:80:5e:8f:c5:50:d9:aa:d9:33:93:11:63:ca:ce:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 16 04:34:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3237822324a1168023ffb5b34a4d9c32fba6189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:21:14:2c:8e:65:97:ac:5c:9d:86:c4:0c:
12:69:a3:d8:73:bd:e1:b9:91:8d:fd:a2:92:01:f4:
71:a5:0a:c9:e4:85:89:cd:cf:f8:2e:8d:be:b0:e3:
eb:8f:db:15:da:b6:ff:69:5a:f3:3b:e1:fb:95:fa:
1f:8b:bc:5a:68:0d:04:4b:0e:80:50:52:c3:10:42:
65:6b:d1:e6:5b:99:4c:39:f6:ed:5c:35:81:a5:1c:
32:5f:1b:fe:82:a7:fc:61:26:9a:97:53:f4:b1:11:
61:d1:a7:0f:c0:8c:b3:81:8a:50:64:ca:f1:0e:41:
d3:6f:c7:aa:3a:5f:23:cd:5f:aa:e0:c2:39:8f:51:
ec:42:81:45:d1:dc:5b:f0:08:1d:9d:c7:a3:62:c5:
ef:9b:89:c4:50:a9:20:76:5e:3f:f3:6f:28:96:0b:
92:b0:82:c6:1c:d2:43:38:c9:4e:e4:4e:b8:b6:61:
f6:64:af:1d:47:f9:19:f1:93:63:05:dd:cc:e9:a4:
49:3b:c6:f6:b2:91:b0:c4:71:ad:d8:d7:10:a2:b9:
4d:97:06:c9:f5:7e:b3:d4:49:02:ef:34:1e:85:d6:
82:c9:7b:65:44:51:3f:ea:1e:10:95:be:64:f5:4f:
b0:69:25:c3:b0:62:1d:da:a9:95:80:37:6c:b0:3a:
23:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:23:78:22:32:4A:11:68:02:3F:FB:5B:34:A4:D9:C3:2F:BA:61:89
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/oyN4IjJKEWgCP_tbNKTZwy-6YYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.172.0/24
192.124.182.0/23
193.124.8.0/24
193.124.133.0/24
193.124.203.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.87.6.0/24
194.87.22.0/24
194.87.27.0/24
194.87.82.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.165.0/24
194.87.171.0/24
194.87.198.0/23
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.55.0/24
195.133.94.0/24
195.133.193.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.192.211.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
21:69:71:60:78:77:ff:eb:14:57:7b:94:0c:17:9d:82:b7:0d:
3f:af:b1:07:65:e9:83:59:8a:2e:36:3b:d1:65:7a:fe:b2:91:
bc:e2:5d:6f:b0:4d:f9:78:74:8d:2c:ec:a2:a7:c4:d3:1a:88:
d6:b4:f3:0f:b4:a0:84:06:50:46:09:e0:bd:42:e9:06:99:e1:
c4:07:a2:8d:09:df:0a:e9:d2:ab:d3:f6:4c:be:f8:31:d5:5e:
2d:e0:24:8d:1a:3b:81:d7:75:ac:5b:09:b5:97:59:1a:a1:a9:
17:87:1b:ba:04:89:c4:f8:95:65:51:76:8c:c5:1a:9d:5a:1e:
a6:f0:06:b3:a8:aa:3f:37:b7:cd:cd:b2:0c:7e:ed:8f:a7:c6:
e2:18:db:32:00:7d:ff:22:7f:98:6d:66:f3:37:f5:c3:24:f6:
88:39:02:a0:45:a5:94:9f:4c:2a:1f:6a:50:26:ff:f0:7f:e8:
cb:cc:8b:b5:e2:6f:42:ba:78:20:92:6a:c1:8b:a4:49:11:d5:
38:1c:fe:55:56:05:1f:a5:ba:8d:a2:55:59:54:8b:e2:ac:d9:
3f:28:1e:74:92:00:0d:56:bd:dc:4a:c6:76:67:c7:22:e4:d4:
30:ca:eb:98:22:b7:ad:c1:c7:bb:ac:2c:9f:59:59:1a:aa:eb:
f8:d7:6a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:26 2024 by rpki-client on console-fra.rpki-client.org