Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xtr2XiaCPDH7eeEQ0fuXIhcZKNk.roa
File: xtr2XiaCPDH7eeEQ0fuXIhcZKNk.roa (raw, json)
Hash identifier: 6m8HmPmmjpGfhMxYIhIgsRTYOLTW1OsC0trFn5K3G/U=
Subject key identifier: C6:DA:F6:5E:26:82:3C:31:FB:79:E1:10:D1:FB:97:22:17:19:28:D9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01892FC6945071F770D7307E1256B8D31371
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xtr2XiaCPDH7eeEQ0fuXIhcZKNk.roa
Signing time: Fri 07 Jul 2023 09:54:50 +0000
ROA not before: Fri 07 Jul 2023 09:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 06:07:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:c6:94:50:71:f7:70:d7:30:7e:12:56:b8:d3:13:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 7 09:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6daf65e26823c31fb79e110d1fb9722171928d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:86:1d:36:64:49:cf:fa:7b:f2:ea:21:ce:0b:
12:77:f7:22:b9:1f:8a:00:04:8d:2c:f5:ee:24:fc:
a9:26:ba:cd:62:ab:f4:ea:3d:92:ea:c0:fc:76:3c:
96:d2:e0:18:a0:45:e9:96:48:34:c6:a1:7d:43:c1:
95:d6:5a:c6:fd:24:a4:97:ed:fe:2e:44:34:14:aa:
90:e9:0a:b9:19:d3:53:87:70:1d:69:be:40:59:a1:
dc:ca:87:fa:4a:a2:7d:05:d7:e8:c6:43:12:00:97:
ca:0a:80:7b:ed:02:5b:7d:09:49:d1:cd:cd:96:58:
27:68:a8:67:9c:c0:55:9a:dd:52:55:d7:3d:cd:03:
3c:aa:7d:15:de:fa:ac:22:f6:ca:38:6f:75:4e:08:
00:4b:86:e9:16:c6:6f:39:0b:09:81:cb:f2:6c:87:
66:b8:74:9f:f1:f5:79:8e:94:de:16:9e:0d:88:73:
a3:4b:72:a4:e8:54:33:46:a4:37:65:fc:d3:ad:2e:
d2:65:8e:77:78:37:fc:91:a9:11:ad:46:35:46:82:
f4:00:11:c2:40:22:b9:6e:fe:84:8c:81:1f:2a:99:
61:9e:56:bf:01:44:4d:dd:d9:07:4e:9b:06:f7:c9:
5b:93:2f:7b:36:dc:50:d4:b2:ef:b7:29:d4:d6:cd:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DA:F6:5E:26:82:3C:31:FB:79:E1:10:D1:FB:97:22:17:19:28:D9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xtr2XiaCPDH7eeEQ0fuXIhcZKNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.3.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.42.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.30.0/24
195.133.35.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
00:26:69:3d:24:b9:dc:19:4b:b6:67:81:fd:bd:81:b4:b7:3e:
df:81:d5:e2:29:d5:28:32:1a:b1:62:40:85:92:b5:ba:d1:e8:
85:3d:40:a0:c9:76:14:87:ef:b1:b4:fc:e1:82:e2:38:20:c0:
a0:5a:52:b7:0e:2c:7a:7b:42:50:3a:3c:9a:12:67:2c:e4:25:
ad:91:6f:08:8a:01:88:e4:b8:0c:fe:60:24:8c:50:58:08:56:
8b:2f:a9:98:34:b5:86:c8:d1:4e:86:11:df:71:7b:5a:b2:0c:
e9:e1:bb:81:59:0a:9b:1f:71:62:8e:3b:ff:ff:d7:b1:b3:9d:
a4:3e:00:90:98:94:31:c4:18:87:37:d1:d7:f1:1b:dd:e6:20:
35:46:be:4c:30:18:0d:3a:dd:2f:f6:da:3a:e3:e6:c1:dd:ef:
b4:1d:4b:c7:92:bf:c5:c1:20:53:92:dd:57:98:ab:a1:9e:35:
95:69:de:e7:1e:75:81:ad:0e:03:57:13:6c:e7:83:85:d3:12:
58:23:3d:0c:67:57:8b:f6:02:a9:56:57:47:d6:13:f4:8d:0c:
28:10:85:9c:74:d0:fd:ea:3f:ff:42:22:67:90:17:91:7d:a0:
cf:2d:ab:37:6e:32:78:7f:99:39:6c:11:6a:b7:f8:48:ef:10:
52:8e:cc:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:51 2024 by rpki-client on console-ams.rpki-client.org