Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sAninmIfip2el-sxyIGPGc2bQH4.roa
File: sAninmIfip2el-sxyIGPGc2bQH4.roa (raw, json)
Hash identifier: F91gd3597E4WwAQATyI6geYRxiYU3F5vzZV89HqMXX0=
Subject key identifier: B0:09:E2:9E:62:1F:8A:9D:9E:97:EB:31:C8:81:8F:19:CD:9B:40:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185966FAE540F869345CC10D599CF564306
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sAninmIfip2el-sxyIGPGc2bQH4.roa
Signing time: Mon 09 Jan 2023 12:09:39 +0000
ROA not before: Mon 09 Jan 2023 12:09:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.229.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:6f:ae:54:0f:86:93:45:cc:10:d5:99:cf:56:43:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 9 12:09:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b009e29e621f8a9d9e97eb31c8818f19cd9b407e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:62:17:1a:5a:33:85:d9:03:9b:b5:94:8d:a4:
23:0d:7c:66:d2:b2:05:ca:b4:6d:f6:75:f6:0a:9d:
19:c6:a2:8b:13:f9:ca:73:c1:c2:8e:a7:ec:de:b7:
ff:b6:86:08:aa:d1:71:4a:e1:db:f3:d9:4d:2c:b6:
ce:2c:2c:5a:8c:f9:c9:c1:8a:b6:1f:ff:34:d7:1f:
e9:a1:b4:76:5b:3b:c9:b1:ab:f0:a3:36:6a:f2:27:
0a:ed:56:8e:71:82:15:ef:ea:aa:1e:fe:49:35:74:
5a:bd:19:84:30:4d:10:f5:2b:f3:34:a5:f2:f0:2d:
6d:63:37:0a:c3:c2:62:79:ad:df:1c:5b:04:9e:00:
31:33:a2:a6:5f:9c:4b:c0:01:61:39:23:34:e0:89:
b1:21:ac:15:b7:57:cc:41:4b:a0:ed:3d:d5:83:35:
74:de:17:55:9a:4b:04:b3:e7:cd:91:6c:fa:29:ab:
db:fb:c4:31:a2:1b:3d:a0:52:47:eb:ce:bf:91:6a:
36:73:a5:c5:a1:e8:3e:7c:ba:57:73:0f:a4:28:e4:
83:d4:93:fb:36:66:d9:fc:28:94:94:f2:d5:19:86:
2c:24:c1:9b:7d:f0:86:78:aa:11:77:32:64:98:60:
d4:29:3b:ac:8f:0f:6a:c0:52:f2:d1:75:7f:91:a8:
74:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:09:E2:9E:62:1F:8A:9D:9E:97:EB:31:C8:81:8F:19:CD:9B:40:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sAninmIfip2el-sxyIGPGc2bQH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.229.0/24
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.6.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ef:f3:9d:56:b8:ea:90:31:bf:d5:03:57:ce:e7:81:d8:71:
34:00:27:cc:a7:cb:4b:20:b2:ea:6f:37:bd:7e:df:47:d6:3a:
5a:ff:09:1c:17:2d:c4:1a:5e:8c:02:bf:17:23:97:fc:1f:41:
bd:e0:1e:62:65:b1:85:37:a6:13:98:15:e9:d5:12:ce:aa:85:
bf:f5:ce:ab:bb:83:67:39:10:c7:1a:56:8c:ba:cd:48:eb:96:
d1:4d:8b:4e:42:a8:a6:90:b7:ee:85:4a:94:08:ee:06:63:68:
52:9d:f6:d4:2e:e4:97:bd:43:77:fd:25:62:6b:1a:c1:ac:6d:
14:b6:d4:fc:0b:7f:ac:16:26:1c:1b:09:4a:bd:d0:3a:60:4e:
47:b1:fd:96:7a:5e:55:b2:aa:26:f5:9f:97:36:bf:34:e3:40:
bc:ad:8a:44:d8:cd:d8:76:07:eb:6a:1b:4b:86:1a:80:5b:ec:
93:e8:02:10:90:ff:83:65:fa:74:1a:74:00:33:05:59:d8:77:
1b:b1:de:6b:99:a2:69:65:f7:93:f2:57:73:5d:9d:0b:0c:65:
78:c4:6f:ee:de:e7:87:3f:6b:74:e1:fc:fd:e8:b7:1b:bd:04:
91:d7:43:4d:04:2e:ba:28:8a:22:71:5f:e1:f2:ce:9e:d9:59:
8d:7a:f4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:12 2023 by rpki-client on console-fra.rpki-client.org