Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yD_MlHDvDSAkUYE651kZYRydfb8.roa
File: yD_MlHDvDSAkUYE651kZYRydfb8.roa (raw, json)
Hash identifier: Tjs0LBXIfRSUf9TuRNnNfsI2LujZt7FndhSYCZWfpLc=
Subject key identifier: C8:3F:CC:94:70:EF:0D:20:24:51:81:3A:E7:59:19:61:1C:9D:7D:BF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190A716DA956D4F1FAE7F58CCCD5E4AB9C7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yD_MlHDvDSAkUYE651kZYRydfb8.roa
Signing time: Fri 12 Jul 2024 13:16:51 +0000
ROA not before: Fri 12 Jul 2024 13:16:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.56.0/23 maxlen: 23
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.58.223.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.8.0/24 maxlen: 24
195.133.9.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 14 Jul 2024 16:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a7:16:da:95:6d:4f:1f:ae:7f:58:cc:cd:5e:4a:b9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 12 13:16:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c83fcc9470ef0d202451813ae75919611c9d7dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7c:52:2e:78:28:f3:e8:9b:9d:9e:4b:2c:bc:
74:3b:73:b1:a7:d4:8f:9d:fe:42:ee:7e:c0:df:b7:
dd:84:32:ad:90:9c:6d:82:2f:a7:31:6f:4c:f6:0d:
5e:1e:a4:31:e3:1b:09:4d:7c:9b:1e:7b:07:7c:54:
6e:b3:a4:96:bc:c0:97:7d:e0:e5:b9:3a:30:d4:d3:
ea:6f:9a:50:1c:98:30:a3:a0:2f:b7:14:73:eb:88:
7e:2f:df:88:c5:c2:92:89:9d:16:61:78:0f:d9:3d:
24:5e:aa:4c:08:8e:cd:62:e4:d2:1b:b0:ad:63:86:
07:68:55:34:2e:74:b7:8a:59:d4:b7:5d:16:aa:d8:
3b:54:f1:12:93:20:61:90:65:a9:98:59:be:8e:c9:
74:1a:fc:73:dc:d6:cb:b1:48:1d:10:7b:dc:9f:49:
b8:bc:d8:8f:59:34:d6:07:41:fe:5f:27:79:3b:43:
77:91:e0:cc:1e:91:b8:45:26:ec:ad:39:7c:e3:19:
88:06:cf:fa:4d:10:12:e3:ff:88:c8:1d:33:97:97:
55:05:61:f5:25:77:31:1d:c9:76:35:25:38:d9:06:
6a:96:4e:15:fd:2b:be:4e:b1:8a:7d:4f:69:92:55:
a3:e9:91:df:6f:85:0c:ff:db:c8:1a:b5:6a:f7:01:
cd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3F:CC:94:70:EF:0D:20:24:51:81:3A:E7:59:19:61:1C:9D:7D:BF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yD_MlHDvDSAkUYE651kZYRydfb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
192.124.209.0/24
193.124.17.0/24
193.124.36.0/24
193.124.44.0/24
193.124.47.0/24
193.124.204.0/24
194.58.41.0/24
194.58.44.0/24
194.58.56.0/23
194.58.66.0/24
194.58.155.0/24
194.58.223.0/24
194.87.44.0/24
194.87.49.0/24
194.87.51.0-194.87.52.255
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.128.0/24
194.87.130.0/24
194.87.133.0/24
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.233.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0-195.58.38.255
195.58.63.0/24
195.133.8.0/23
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.214.0/23
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
61:eb:17:46:87:7b:d6:05:c7:ea:2f:95:f5:bd:ac:41:0b:11:
24:68:53:e0:d5:8f:20:0f:46:94:d6:7f:85:fb:ac:5d:80:b6:
81:c9:5c:99:e5:cf:9c:22:7e:ce:89:44:8f:bd:ca:bc:ae:41:
1a:17:7a:db:76:12:c8:b3:89:e3:a1:c7:d9:9f:53:80:a8:19:
d3:dd:44:fe:6f:7d:1e:5e:13:5d:94:28:b8:44:c3:40:ae:88:
23:7a:5a:7a:95:b6:11:65:ae:61:84:5b:13:57:44:b6:5d:d4:
78:58:9e:d4:b1:0c:67:42:1e:e9:a8:e6:ae:43:d5:39:98:9a:
e7:a2:d6:eb:7c:b8:cc:2b:d1:83:eb:56:71:30:61:c7:60:1f:
ce:ef:56:48:7e:d1:f8:a3:7f:45:d6:75:37:dd:37:e8:5f:85:
a4:53:91:c5:23:31:d0:7a:cc:f0:a0:60:24:ef:95:be:88:ba:
65:8e:a2:76:49:eb:58:f8:cf:32:96:25:b6:97:d3:c1:58:0c:
9c:82:8a:96:5e:30:8f:98:fb:9d:32:96:91:a9:58:1c:35:7c:
f9:57:68:83:95:ec:24:66:ff:7f:9e:6f:84:45:76:38:6c:45:
25:e1:c8:2c:14:97:eb:b3:38:1b:47:48:df:97:9f:85:83:88:
ff:6e:22:16
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jul 14 18:05:55 2024 by rpki-client on console-ams.rpki-client.org