Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9u6-TR0DuTMw2mWL_20erulfkU.roa
File: q9u6-TR0DuTMw2mWL_20erulfkU.roa (raw, json)
Hash identifier: ejWgxNvQqTUPhs8j11ri735WURema4Bs2KCcbLrfheI=
Subject key identifier: AB:DB:BA:F9:34:74:0E:E4:CC:C3:69:96:2F:FD:B4:7A:BB:A5:7E:45
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018595EAFA7F396242D1A09D3F3D2915A1D0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9u6-TR0DuTMw2mWL_20erulfkU.roa
Signing time: Mon 09 Jan 2023 09:44:42 +0000
ROA not before: Mon 09 Jan 2023 09:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 11:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:ea:fa:7f:39:62:42:d1:a0:9d:3f:3d:29:15:a1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 9 09:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abdbbaf934740ee4ccc369962ffdb47abba57e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:61:9a:02:38:f9:b0:f4:a3:0a:0a:a3:54:73:
32:e4:7b:5d:de:36:6a:c2:7f:a6:7b:29:53:ee:4d:
90:23:76:99:be:07:43:6f:4d:b5:d5:d2:56:68:52:
b2:ee:64:6e:47:d1:68:99:af:18:ef:40:65:20:a3:
be:0f:da:eb:57:5f:7f:03:81:6f:5e:f9:d2:95:0b:
e1:b2:ae:6c:ca:ff:7a:d0:c4:c1:80:29:b3:6d:2e:
c4:1c:19:c1:b5:9b:2a:d5:df:8c:cb:5b:92:ad:49:
f8:48:e6:e7:05:34:ab:04:09:c5:73:30:c4:09:17:
49:c4:37:49:d7:e9:b0:f1:a5:34:4d:3c:1b:72:fc:
64:93:24:05:2c:d8:95:4f:fd:0a:d4:70:54:0f:5c:
c4:5d:2d:3c:6d:c6:25:23:2f:4e:dc:9d:9c:d6:14:
c8:b5:21:4b:a1:3b:87:4e:15:8c:04:9e:0c:77:eb:
fe:69:b6:32:50:ca:37:24:91:ae:11:fe:f4:f5:3e:
44:4a:52:85:b1:4b:47:da:1c:af:9b:27:ac:b7:38:
b0:44:55:67:8c:68:1e:c0:b2:30:77:bb:cd:56:36:
23:b0:1d:15:02:5c:6b:20:52:cb:05:33:e9:42:63:
06:67:ea:11:3b:e0:87:97:68:c3:0e:61:0a:17:99:
b2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DB:BA:F9:34:74:0E:E4:CC:C3:69:96:2F:FD:B4:7A:BB:A5:7E:45
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9u6-TR0DuTMw2mWL_20erulfkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/24
194.87.24.0/22
194.87.36.0/23
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:0a:d5:a3:14:1e:5b:7c:a7:26:a7:d3:65:f4:08:e9:8a:06:
a6:ad:2b:bb:ee:0b:f7:54:3b:13:20:99:c4:dc:64:3c:89:9b:
8c:1f:f4:fe:7f:2c:93:c8:9c:ec:7d:00:7d:21:85:95:08:0d:
d6:fa:da:d4:d3:77:45:b9:ad:e4:66:99:ab:78:04:51:0b:86:
a0:87:b0:49:42:e7:27:a8:ea:ca:c8:35:6c:da:4d:26:9f:25:
b6:8c:91:49:64:93:cf:2f:e1:60:c1:d7:0b:34:8e:42:9e:a8:
18:49:82:bc:c4:03:b7:74:cd:bb:a1:4b:6b:27:9c:10:82:64:
95:1e:c5:8b:3b:79:f9:8e:16:40:eb:e3:f1:eb:b6:88:af:cf:
e9:13:a0:c6:fe:0e:4c:ed:7f:6e:51:28:54:42:ce:11:aa:a3:
47:e3:26:b9:36:3b:92:ce:25:5c:6e:cc:5a:7f:6c:09:30:5b:
db:57:ca:dd:ab:c2:72:aa:62:59:41:ec:55:b9:6e:7e:1a:fd:
b1:60:96:b1:1a:ec:75:f4:00:7f:32:0a:ee:59:b6:13:97:d5:
5e:7e:2e:92:11:45:43:44:94:f9:57:23:bd:42:48:14:e5:35:
55:aa:4b:75:7d:16:74:bc:13:e2:35:dd:a5:78:79:92:cc:bf:
e9:49:87:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:27 2024 by rpki-client on console-fra.rpki-client.org