Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKEiJzHYyxpCXigXCaHlsQ0ww5c.roa
File: wKEiJzHYyxpCXigXCaHlsQ0ww5c.roa (raw, json)
Hash identifier: IPZ//v9qzg5co58CXf69dYu9r+rryVnFhwxtRB/hifw=
Subject key identifier: C0:A1:22:27:31:D8:CB:1A:42:5E:28:17:09:A1:E5:B1:0D:30:C3:97
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190CF7350575CF949E65CA05DE7B5BD00E6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKEiJzHYyxpCXigXCaHlsQ0ww5c.roa
Signing time: Sat 20 Jul 2024 09:22:39 +0000
ROA not before: Sat 20 Jul 2024 09:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.56.0/23 maxlen: 23
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.8.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 22 Jul 2024 10:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cf:73:50:57:5c:f9:49:e6:5c:a0:5d:e7:b5:bd:00:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 20 09:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0a1222731d8cb1a425e281709a1e5b10d30c397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:ae:17:54:87:e0:b3:66:0f:d5:2e:f0:ff:
c5:d7:42:7f:d5:63:49:b6:69:5b:10:d5:10:a5:3f:
92:83:44:31:63:7b:61:0b:ac:55:2e:cb:ed:62:32:
58:cc:c4:c5:e7:ed:b2:6f:06:4f:dd:d6:64:ba:6f:
47:63:79:2a:de:42:79:d6:55:c9:af:0a:87:88:e2:
c8:af:d5:9f:25:3d:c3:47:af:c0:79:b3:0e:6b:cc:
ca:df:8d:b6:0c:1c:1a:66:c4:e0:32:96:d6:98:74:
6b:77:50:84:b5:14:c2:c8:c6:4d:f8:55:7e:f5:5e:
ff:61:29:4d:29:02:a9:65:5a:fb:23:ce:8a:cc:c5:
00:12:31:b7:dd:25:d7:e0:70:d8:7d:03:42:01:40:
b2:85:01:be:cd:de:d4:27:d7:e8:6e:0b:71:01:79:
05:7a:e5:a6:c4:2e:6b:8a:01:22:e4:d4:7f:db:25:
fb:82:d2:7b:a4:80:03:b7:54:02:ee:09:1f:7a:41:
d5:5d:3c:74:da:e5:02:02:59:49:15:58:d1:6b:41:
f9:1d:1a:da:7e:fe:03:cb:c5:aa:be:1b:99:92:c4:
1c:ce:76:13:30:b9:11:81:03:7e:de:40:4b:e3:34:
bb:c3:36:b2:30:93:e6:ea:b4:c7:94:8d:13:68:94:
b1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A1:22:27:31:D8:CB:1A:42:5E:28:17:09:A1:E5:B1:0D:30:C3:97
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wKEiJzHYyxpCXigXCaHlsQ0ww5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.17.0/24
193.124.36.0/24
193.124.47.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.56.0/23
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.8.0/23
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
40:9f:c4:01:63:77:d8:54:e7:c8:d5:eb:f0:eb:ae:91:92:aa:
85:39:27:9a:b4:9e:d6:5e:d4:9a:11:83:62:f0:6c:8b:50:53:
9b:c6:8f:7a:49:ca:77:4a:94:c7:21:31:31:4d:ed:5d:1c:ed:
af:3f:72:cf:22:2b:d2:83:c3:ff:99:1f:4c:e4:73:94:5f:9d:
7e:d3:cf:1a:b0:ae:2d:ce:44:2a:3e:e6:c7:de:5c:82:5f:2e:
dc:ce:85:93:11:00:04:4e:dc:32:98:9d:84:7d:e4:73:a4:73:
d7:de:f0:94:20:45:bf:7c:1d:bb:bf:de:c1:41:7a:aa:7b:1f:
20:c1:07:99:d1:4b:cd:6d:50:38:04:63:fe:45:f4:62:44:57:
b0:3a:cc:db:fa:f1:cf:b4:d7:65:41:b9:e7:d1:f8:39:60:87:
f6:97:c2:61:02:30:d7:79:70:b5:48:93:bc:81:33:2e:68:b5:
e3:b3:bd:65:f3:54:19:16:ee:74:5a:99:bc:64:74:a9:48:33:
b8:fc:84:51:eb:fc:58:ab:ea:85:0f:26:4e:08:44:04:0b:79:
ab:a8:eb:c6:3c:7f:65:e2:ef:c4:c9:4c:40:19:cb:ed:60:9c:
a9:fb:3a:6c:e3:4d:f2:a2:3d:53:52:47:1c:0b:c5:ee:ec:51:
06:59:fc:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 13:23:21 2024 by rpki-client on console-fra.rpki-client.org