Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xTVGUgUo27Y9b7HXPtERP0JoE0U.roa
File: xTVGUgUo27Y9b7HXPtERP0JoE0U.roa (raw, json)
Hash identifier: PC7P5zbPiSvrVUbAM+teMGx6AU/aKhiqCEOJYQnv2p4=
Subject key identifier: C5:35:46:52:05:28:DB:B6:3D:6F:B1:D7:3E:D1:11:3F:42:68:13:45
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D77EF6E57C6FE92C57545D5BAA2CF7098
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xTVGUgUo27Y9b7HXPtERP0JoE0U.roa
Signing time: Mon 05 Feb 2024 06:23:16 +0000
ROA not before: Mon 05 Feb 2024 06:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44559
IP address blocks: 62.76.227.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.4.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.24.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.57.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.62.0/24 maxlen: 24
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 07:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:77:ef:6e:57:c6:fe:92:c5:75:45:d5:ba:a2:cf:70:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 5 06:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c53546520528dbb63d6fb1d73ed1113f42681345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:66:ce:9d:d1:56:50:8a:0d:21:50:e4:d4:73:
90:84:49:6f:d0:de:04:6d:bf:0a:c7:3b:72:e3:85:
52:75:87:91:e7:24:1b:89:18:8e:73:be:45:d7:d9:
c8:12:3d:b9:41:af:30:d3:fc:db:0d:ce:4c:8f:58:
57:65:c9:ec:56:92:a8:68:fd:a7:d0:6f:6c:72:d4:
3c:66:69:2c:31:7c:5e:73:57:06:d4:2c:8a:a7:06:
b4:a0:41:b3:e7:6e:c8:fe:7f:24:f7:4d:d3:9d:ea:
77:40:49:96:17:1f:79:db:56:75:57:0d:c5:a2:2c:
74:45:b6:62:59:ad:0e:cd:f1:6e:ed:53:50:70:d2:
c2:9d:92:1d:e2:71:95:a0:58:33:09:aa:51:26:a3:
38:e1:d7:bb:07:e2:d1:a3:ec:46:0c:8d:fe:a4:d5:
15:bd:1e:a9:d7:aa:64:1b:e0:4d:cb:cc:6d:dc:10:
82:0d:6c:95:2a:10:e4:98:2e:7c:81:1d:6c:33:06:
55:0a:69:7f:09:58:4f:61:86:49:cf:6a:b3:21:12:
03:44:02:c4:27:41:c0:fe:56:c6:e4:e7:8e:7e:a4:
5b:72:44:7a:a1:10:20:fe:38:f8:68:0b:cf:e0:2c:
6f:82:ed:d1:6e:98:77:3e:d7:72:3c:2c:94:31:e0:
9c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:35:46:52:05:28:DB:B6:3D:6F:B1:D7:3E:D1:11:3F:42:68:13:45
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xTVGUgUo27Y9b7HXPtERP0JoE0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
62.76.233.0/24
185.72.10.0/24
192.124.180.0/22
192.124.188.0/24
192.124.190.0/24
192.124.209.0/24
193.124.4.0/24
193.124.36.0/24
194.58.41.0/24
194.58.44.0/24
194.58.154.0/23
194.58.223.0/24
194.87.24.0/24
194.87.26.0/23
194.87.33.0/24
194.87.44.0/24
194.87.52.0/24
194.87.54.0/23
194.87.76.0/24
194.87.83.0-194.87.84.255
194.87.90.0/24
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.138.0/24
194.87.161.0/24
194.87.178.0/24
194.87.187.0/24
194.87.200.0/24
194.87.208.0/24
194.87.220.0/23
194.87.224.0/24
194.87.226.0/24
194.87.229.0/24
194.87.231.0/24
194.87.233.0/24
194.87.250.0/24
194.135.33.0/24
195.58.38.0/24
195.133.14.0/23
195.133.18.0/24
195.133.27.0/24
195.133.31.0/24
195.133.35.0/24
195.133.56.0/23
195.133.60.0/22
195.133.73.0/24
212.192.8.0/24
212.192.242.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
Signature Algorithm: sha256WithRSAEncryption
46:8c:6a:ab:88:f1:fa:4a:00:63:ff:3e:d8:eb:a9:89:47:2b:
fa:c0:b1:14:78:53:74:ae:22:a3:2a:c9:a7:63:e5:ec:7b:89:
87:53:ff:b8:d7:99:94:f7:46:d5:e0:d6:02:b9:4e:91:21:10:
5d:ad:c5:9c:93:db:58:58:b6:28:11:b5:da:3b:91:2c:db:2f:
23:fe:b7:51:3b:a3:b1:6c:1c:43:b5:8c:bc:7b:55:e0:3d:b2:
8a:86:38:01:a1:56:e6:30:d9:06:f4:96:1d:c3:02:88:f7:15:
b9:75:c5:1b:ea:be:ef:1d:ad:67:c1:3f:0a:80:8d:64:0b:39:
8a:65:e9:d4:9f:7c:64:e0:72:ba:bd:04:66:91:5b:53:6f:88:
74:d2:e9:70:b6:eb:70:9b:40:a2:c3:45:65:4a:a3:9e:cc:74:
ef:a1:98:23:30:51:e5:e7:ba:f2:1a:44:bf:d3:36:88:c9:8f:
7b:d8:17:91:72:3a:66:51:72:20:2a:5b:d3:2a:3c:2e:5b:65:
17:e2:2d:e3:f3:2b:64:59:64:1d:ab:f7:d5:56:bf:7a:ee:53:
f5:7d:9e:45:f1:78:b9:f5:15:28:ae:12:43:fc:d1:07:29:c5:
90:95:93:b3:c5:73:a2:79:b0:d4:79:af:c4:3b:03:6f:33:2d:
2f:df:df:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:30 2024 by rpki-client on console-fra.rpki-client.org