Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rQEc3pAAxpYXUBZuGogmhsHH6nk.roa
File: rQEc3pAAxpYXUBZuGogmhsHH6nk.roa (raw, json)
Hash identifier: u9lk5NSiY2+3b6WS7m1qqzOZrD4XYS3gBTx1bFGQRdY=
Subject key identifier: AD:01:1C:DE:90:00:C6:96:17:50:16:6E:1A:88:26:86:C1:C7:EA:79
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185EE1AF2FB2D208A9AC1936F6EE31B6957
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rQEc3pAAxpYXUBZuGogmhsHH6nk.roa
Signing time: Thu 26 Jan 2023 12:43:41 +0000
ROA not before: Thu 26 Jan 2023 12:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Jan 2023 16:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:1a:f2:fb:2d:20:8a:9a:c1:93:6f:6e:e3:1b:69:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 12:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad011cde9000c6961750166e1a882686c1c7ea79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:12:ef:df:ec:d8:77:2a:1c:d2:5c:bb:84:84:
4d:d3:f9:ee:6a:2a:aa:97:5b:9c:7a:c9:0f:da:36:
33:b4:f2:df:0c:8e:58:1c:c8:82:82:c6:33:18:a5:
64:7c:00:28:85:81:0c:d0:82:17:d5:78:5d:69:4d:
bf:57:25:4d:20:28:47:a6:e2:c9:ac:26:45:1a:4a:
f0:40:b5:4d:da:c4:77:78:87:1f:c6:50:0e:09:d6:
e7:3f:e8:a7:c2:82:ba:31:28:7d:51:90:c4:c2:97:
ef:0c:66:83:3a:20:59:40:e6:23:64:49:f2:28:5e:
25:03:75:9f:8b:5b:35:62:70:3b:9b:97:d1:75:f6:
15:b8:d4:54:3d:c4:b5:ac:b0:68:23:3a:43:e0:0a:
2e:59:ff:d7:4c:79:9d:b6:75:82:0f:bc:aa:a1:5e:
93:a9:e8:9b:f7:f7:4b:2a:c6:88:51:4b:d8:3b:e5:
a4:69:de:83:e5:58:2f:9b:4f:dc:ea:20:8c:8c:95:
58:f5:6a:dc:e8:53:89:3d:0f:c1:66:32:33:96:ac:
99:f1:87:a8:dc:59:4a:de:cd:84:b5:d9:c8:d5:5c:
e3:ec:88:d8:9c:37:b9:50:e6:21:4e:6f:08:94:e9:
08:9b:e7:75:a9:00:be:27:18:c3:1c:cf:0c:a0:69:
ba:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:01:1C:DE:90:00:C6:96:17:50:16:6E:1A:88:26:86:C1:C7:EA:79
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rQEc3pAAxpYXUBZuGogmhsHH6nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.8.0/24
193.124.80.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d4:06:78:1a:4c:f5:b8:ca:22:75:82:b4:7c:88:3f:18:d2:
ad:ed:cc:68:d8:3d:9c:2b:8f:d3:55:1c:98:57:31:3b:fe:7c:
f3:11:e9:b2:1e:1f:7e:5f:97:36:40:c8:6f:56:89:ff:f6:99:
1d:3a:fd:91:54:d7:98:af:66:03:50:80:bf:44:31:d1:93:b6:
a4:6b:a5:7c:a4:26:d2:be:85:b1:b3:1c:78:89:79:c7:38:9c:
7b:4a:ac:29:9d:83:99:95:b5:f1:b7:26:28:37:f2:2d:5d:db:
dc:df:d8:24:8d:eb:60:cd:26:c5:51:ca:e5:aa:3a:ec:a8:23:
49:55:de:1e:53:3b:22:5c:e1:84:aa:14:2a:3b:56:73:63:6b:
45:85:62:7d:97:d3:46:35:54:3e:12:9c:49:ab:51:9c:18:03:
cd:af:e7:8c:3e:e2:ef:82:8a:62:02:2a:5a:22:84:ea:7b:b5:
b3:e9:fd:02:cc:26:51:0b:07:03:f2:96:3c:d9:9c:8f:f6:3f:
9e:98:67:42:73:df:ae:4d:a3:5b:79:41:9f:e9:e9:be:4b:6f:
64:56:0f:c1:2b:56:0e:00:8e:ff:df:d3:af:03:50:19:4f:27:
4e:e0:1c:2c:21:a0:d9:6a:af:41:11:fe:f1:26:53:44:54:71:
3e:33:e7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:47 2024 by rpki-client on console-ams.rpki-client.org