Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qRH-wxfuRqKP0jjnnuQHJm4Ts34.roa
File: qRH-wxfuRqKP0jjnnuQHJm4Ts34.roa (raw, json)
Hash identifier: Cc9Wa5lc14GPosLRG0ltWEbEjtTwl7B5wEpUvq5OA6A=
Subject key identifier: A9:11:FE:C3:17:EE:46:A2:8F:D2:38:E7:9E:E4:07:26:6E:13:B3:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018742071B56BA328FF842844573E278544C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qRH-wxfuRqKP0jjnnuQHJm4Ts34.roa
Signing time: Sun 02 Apr 2023 12:52:54 +0000
ROA not before: Sun 02 Apr 2023 12:52:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 14:59:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:42:07:1b:56:ba:32:8f:f8:42:84:45:73:e2:78:54:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 2 12:52:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a911fec317ee46a28fd238e79ee407266e13b37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:c9:7b:9a:c9:74:e6:9f:fc:15:c2:7b:66:
68:86:1b:33:19:27:a1:31:8f:25:18:4d:56:57:66:
93:7e:49:2c:d1:b3:25:62:0c:d2:5a:4c:51:f7:81:
74:2a:ad:40:f4:74:44:24:e2:af:0c:e0:4e:f7:3d:
a2:6a:ea:7d:03:89:95:3c:44:69:ed:07:40:33:70:
cc:81:d9:b3:26:91:f2:b9:63:9b:e6:e5:ee:89:18:
9f:e1:84:e8:2c:db:f8:56:ec:70:c2:bd:98:28:4c:
0e:c4:aa:c8:5d:b0:74:71:68:3c:8b:43:b9:08:d9:
86:3c:d7:f5:45:58:41:95:1c:ee:5c:f6:95:d7:f1:
40:64:02:cc:ae:49:38:6a:69:8b:68:b5:59:7c:00:
8d:39:a8:eb:ce:ee:06:98:18:38:e7:5a:36:a4:38:
57:53:54:10:1b:da:1b:f8:76:fe:9f:4f:a2:20:20:
5c:ff:89:42:11:f2:ed:a5:4a:6f:06:a5:0a:66:b6:
17:f0:fe:5f:50:04:0a:56:77:84:80:99:fe:df:5a:
b5:f5:ac:a7:4a:56:c2:2c:d2:47:6c:d6:bd:d9:a3:
67:d7:e9:ec:30:69:b9:14:c6:21:0c:e7:16:0d:58:
3e:32:44:00:71:56:fa:dc:f3:bf:a9:ab:03:cf:c4:
f0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:11:FE:C3:17:EE:46:A2:8F:D2:38:E7:9E:E4:07:26:6E:13:B3:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qRH-wxfuRqKP0jjnnuQHJm4Ts34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
194.58.38.0-194.58.40.255
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.37.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:5d:73:9d:73:a3:0c:1f:89:40:f8:47:f8:ca:b9:de:8e:7b:
15:38:38:12:01:f7:9d:61:3c:32:aa:48:e6:a2:4e:74:ea:fe:
40:9b:2b:0e:6e:fc:05:2e:71:65:28:53:11:ea:36:15:17:e3:
76:31:e5:99:73:97:69:b2:58:d0:39:07:eb:e8:c3:59:41:21:
ac:e7:0f:d9:54:37:eb:9f:45:cd:f6:aa:ab:76:29:e4:96:8d:
67:14:23:fb:81:6f:ee:ad:3d:0a:15:fd:bb:3b:2d:b4:fa:e3:
13:32:c5:7d:c0:30:a2:e1:d5:d2:94:c7:3c:03:33:fa:bc:37:
9d:c5:d9:8f:7b:e3:dc:86:23:ef:02:eb:8f:d9:a2:9f:56:37:
6d:02:1a:90:8a:88:8a:f5:0f:75:2d:ef:1e:c3:bc:66:a3:ba:
40:4f:29:3a:b8:6d:a8:7f:34:a6:e0:45:57:00:b2:2f:06:99:
59:99:a8:8c:e8:7f:ab:e5:75:4b:d8:61:c5:06:3d:cb:47:73:
52:26:6d:da:4c:77:2e:e4:18:ad:34:ef:b8:f8:8f:0e:b3:82:
d7:eb:3d:c2:61:e3:b6:5a:22:dd:f0:54:8e:d2:15:21:f2:6f:
19:a5:1e:85:f8:ef:e3:fc:2b:a1:61:01:a9:ac:72:6e:c2:a5:
91:a0:96:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:27 2024 by rpki-client on console-fra.rpki-client.org