Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pqEoWn5By3etghYA94kBqFo_J4Q.roa
File: pqEoWn5By3etghYA94kBqFo_J4Q.roa (raw, json)
Hash identifier: q8WBVuhr4xwiDcvFx6zeI6csFt2A8pnSeBI3kn8yF+g=
Subject key identifier: A6:A1:28:5A:7E:41:CB:77:AD:82:16:00:F7:89:01:A8:5A:3F:27:84
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185AB2381A4D6D8B24B09B61DCD5772078D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pqEoWn5By3etghYA94kBqFo_J4Q.roa
Signing time: Fri 13 Jan 2023 12:38:28 +0000
ROA not before: Fri 13 Jan 2023 12:38:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Jan 2023 10:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ab:23:81:a4:d6:d8:b2:4b:09:b6:1d:cd:57:72:07:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 13 12:38:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6a1285a7e41cb77ad821600f78901a85a3f2784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:77:c1:ab:22:18:05:3c:b2:9f:e7:ab:04:21:
49:eb:31:9d:35:4d:6e:d3:57:c5:fd:aa:d8:71:82:
73:be:e5:b0:52:a9:79:11:fe:ea:f4:22:dc:94:e9:
f2:ce:09:4d:ef:ef:3c:40:6b:29:f1:11:1c:83:c6:
23:7d:cf:98:7d:f9:fb:67:3b:cc:6c:e9:13:85:e7:
a0:21:3a:6e:d6:ed:1c:2e:f0:3e:54:b9:fa:20:44:
d3:f7:b5:55:a7:3e:3a:e8:90:5d:40:3f:ea:db:85:
7f:37:e3:85:e3:56:f2:2c:f4:8a:63:8a:1b:08:48:
41:0a:15:d5:73:3b:66:17:00:44:17:6f:df:b5:74:
d7:dd:b7:c9:13:e3:79:98:94:dc:d2:1c:68:66:79:
20:96:ed:77:73:92:ec:ee:9c:b6:99:ba:15:65:99:
83:df:07:b3:67:d7:08:9e:1a:4a:14:a5:b9:67:ca:
6a:a0:2e:8e:1f:ff:a2:dc:11:9e:76:50:6a:4a:34:
93:b8:fb:e5:71:1f:63:b7:be:fa:93:05:0a:7e:9b:
75:f6:eb:94:5a:a5:f5:24:e6:ba:60:40:7c:f8:79:
e1:4a:20:4a:c4:a3:6c:50:d0:ee:84:c6:f4:9b:d5:
53:01:5f:fc:9e:f5:1d:ca:6b:c9:46:ab:14:38:0c:
8d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A1:28:5A:7E:41:CB:77:AD:82:16:00:F7:89:01:A8:5A:3F:27:84
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pqEoWn5By3etghYA94kBqFo_J4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.58.155.0/24
194.87.6.0/23
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.194.0/23
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
97:39:aa:83:57:11:a6:ea:44:6c:ae:64:95:8f:99:8b:80:9e:
3a:fb:0a:5f:99:06:94:42:39:7f:88:e6:a5:e6:46:2a:ca:5d:
6d:c4:0f:5e:c0:b5:da:9f:5c:2f:dc:b2:e9:62:ba:05:f2:dc:
38:2c:65:3b:d5:3e:4f:41:7e:ad:44:bd:8c:3e:76:f4:04:95:
cf:fe:44:99:f6:03:c0:6e:40:17:83:83:2c:88:15:aa:79:4f:
f4:29:29:48:c2:9a:2c:50:7e:4b:0f:4d:08:bc:38:48:16:b4:
2d:d3:42:33:ac:9e:2c:95:6e:2b:68:bb:b4:72:24:c4:00:79:
7e:1d:02:f7:2f:6c:d3:35:43:16:3a:46:79:f4:f2:1a:1d:50:
7e:65:55:85:af:8b:1b:52:7f:0b:10:87:97:19:aa:76:e7:6d:
1b:4c:2c:68:19:58:a2:0a:25:c9:b6:21:1a:cc:fe:a3:41:14:
44:70:27:48:23:97:7e:e6:f6:c4:8f:4a:e9:55:1d:47:54:49:
5e:ef:83:2f:ac:68:8e:83:a5:e8:7a:b9:dc:f9:fe:a8:ba:42:
95:19:dd:25:7e:ad:90:65:eb:c3:45:09:8d:8d:fd:d9:40:1f:
93:89:8c:8a:89:6d:3d:e1:7f:b1:ff:c9:d3:b5:ed:4b:ff:a0:
43:eb:f4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:47 2024 by rpki-client on console-ams.rpki-client.org