Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rjxSnezRBO1Q5tIiSDKAVnp5Ppc.roa
File: rjxSnezRBO1Q5tIiSDKAVnp5Ppc.roa (raw, json)
Hash identifier: 2+6P16/72atf0y0vjZas5rgghTPMAPZNrIh5Afpnqjc=
Subject key identifier: AE:3C:52:9D:EC:D1:04:ED:50:E6:D2:22:48:32:80:56:7A:79:3E:97
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185ED30735D85EC488055D19D576A670474
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rjxSnezRBO1Q5tIiSDKAVnp5Ppc.roa
Signing time: Thu 26 Jan 2023 08:27:33 +0000
ROA not before: Thu 26 Jan 2023 08:27:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Jan 2023 10:35:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:30:73:5d:85:ec:48:80:55:d1:9d:57:6a:67:04:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 08:27:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae3c529decd104ed50e6d222483280567a793e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:68:e5:90:45:43:0e:63:5c:8a:7a:49:b2:
32:58:2f:59:69:c4:67:27:fd:e3:7f:87:cc:57:00:
a8:7c:a5:36:88:b2:79:ac:1d:4d:d7:91:4b:00:31:
b1:41:d9:e5:fb:1c:2d:9f:73:61:db:bb:eb:81:02:
f2:13:ef:a1:08:32:57:6b:cf:40:41:87:bf:88:ce:
86:f9:b0:60:c3:08:35:d7:12:77:c2:af:bf:c3:7f:
09:75:a9:ed:00:da:ba:50:09:2d:45:4b:39:38:1a:
e1:dd:f1:62:4c:5c:6c:d7:cb:93:c9:57:9a:88:6c:
c3:01:a8:e7:c7:a2:a2:7f:2c:4d:de:43:1e:f3:ba:
50:71:ad:a3:0a:66:2b:7d:d5:e9:2e:2c:1a:0a:47:
74:9e:95:82:f6:ea:96:ff:4c:dd:6c:d4:a3:dc:f4:
09:d6:cc:ca:d4:1f:23:92:92:82:81:9d:1e:14:1e:
2d:6a:5d:de:a5:af:be:08:c4:f0:f4:b0:02:d8:8d:
6b:c5:56:5f:69:fe:c3:cf:c4:05:f2:22:93:72:94:
eb:87:2e:5c:e1:55:2d:70:94:b4:0f:e5:2d:de:c0:
b2:6a:6d:08:71:03:16:45:2f:66:76:54:a3:4c:ac:
89:c5:35:59:a2:ea:a3:bd:fa:68:ea:cc:08:d7:0f:
94:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3C:52:9D:EC:D1:04:ED:50:E6:D2:22:48:32:80:56:7A:79:3E:97
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rjxSnezRBO1Q5tIiSDKAVnp5Ppc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.8.0/24
193.124.80.0/24
193.124.133.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.165.0/24
194.87.171.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.193.0-195.133.195.255
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
05:53:db:e8:a6:c7:71:25:a1:e7:0d:49:99:9a:8d:60:5b:c3:
9d:5d:1f:03:59:e3:f4:4d:1d:14:dc:60:00:a7:3e:d6:e5:1d:
8d:51:d5:9d:93:27:42:b6:22:c1:ed:4b:8c:65:a7:65:34:d8:
7a:13:59:07:3e:17:85:38:da:b1:86:ee:a1:55:34:b1:59:8f:
c0:2e:78:eb:6e:9f:79:7d:d8:3f:82:5b:53:d4:c6:03:a3:29:
37:30:7c:c3:b0:ee:26:d8:17:a1:02:5a:3b:f9:d3:f6:55:bd:
d9:8f:a0:2c:78:70:bd:4f:9d:34:d3:6f:cf:2a:af:89:56:54:
92:58:fa:67:15:af:9e:81:24:4e:39:bb:2f:71:12:b8:4a:b4:
8c:a0:37:bd:d6:8e:a3:c6:6a:50:3f:d3:c5:6c:e4:af:5a:b6:
60:42:f9:04:2c:20:cf:8a:be:fa:84:5e:45:7f:60:00:d6:b2:
9e:67:c3:cc:9c:d3:47:0e:77:d2:ab:a6:a4:d4:34:a0:fc:b1:
d5:d8:f6:5d:e3:46:2f:42:8e:93:58:7d:d8:1b:31:ae:93:38:
ab:30:0f:f5:ae:25:5f:f6:db:22:de:2b:98:da:4f:84:50:60:
ac:41:47:f7:ed:f4:12:ac:75:d1:cb:92:d6:bf:ea:d3:60:b5:
a1:28:9e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org