Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zBDX2niI5Mul6Lc9Clqs4Tdv23M.roa
File: zBDX2niI5Mul6Lc9Clqs4Tdv23M.roa (raw, json)
Hash identifier: MJWar/AjkKsGNllc90fwwWMGhZKKBCNYoCx8mHFk6Bg=
Subject key identifier: CC:10:D7:DA:78:88:E4:CB:A5:E8:B7:3D:0A:5A:AC:E1:37:6F:DB:73
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01918E1C92C28D2559A0791D28C6E0D44ED6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zBDX2niI5Mul6Lc9Clqs4Tdv23M.roa
Signing time: Mon 26 Aug 2024 09:55:22 +0000
ROA not before: Mon 26 Aug 2024 09:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.76.233.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
194.58.57.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.209.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 26 Aug 2024 13:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:1c:92:c2:8d:25:59:a0:79:1d:28:c6:e0:d4:4e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 26 09:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc10d7da7888e4cba5e8b73d0a5aace1376fdb73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:70:45:eb:e8:8d:08:d4:55:6e:a6:62:b2:
5e:7a:f1:21:6b:b9:69:23:b8:3e:53:2e:27:cf:1e:
a5:fc:0f:dd:9b:45:33:3f:b6:8c:58:87:b5:37:d7:
2b:bf:80:73:6a:aa:d0:64:1b:d6:93:31:f2:00:cb:
66:bb:ac:cd:b8:42:c4:c9:95:07:45:1b:bf:36:6e:
f1:19:a8:cd:f2:a1:80:5f:de:3f:d6:ab:89:38:d2:
7a:b6:1f:bc:3f:3a:23:29:36:42:ab:dc:78:76:ea:
4a:49:e4:0d:13:a5:ff:8f:97:32:f1:43:b5:e2:d6:
db:ed:94:c6:fc:4a:08:8b:de:eb:a9:95:14:ef:7e:
14:b1:d4:88:f4:6f:46:df:48:0f:37:75:42:61:27:
df:1e:dc:9e:b2:c4:dd:74:90:ac:9e:06:74:45:d8:
20:fd:c4:68:e2:0a:8a:c9:93:22:71:97:c2:fe:af:
62:c8:79:2b:33:c1:7b:bb:35:43:17:04:07:93:ff:
f7:79:82:91:b4:c4:14:bc:05:f9:b1:88:05:81:62:
2c:42:56:20:f7:8e:a5:16:e2:79:4c:f4:bf:9f:b3:
85:08:d5:ac:b7:c8:c6:b9:d6:37:9d:a7:bf:dd:ce:
75:62:fe:41:dc:49:72:0c:5f:77:48:f8:df:05:e8:
2c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:10:D7:DA:78:88:E4:CB:A5:E8:B7:3D:0A:5A:AC:E1:37:6F:DB:73
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zBDX2niI5Mul6Lc9Clqs4Tdv23M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.124.47.0/24
194.58.57.0/24
194.58.155.0/24
194.87.26.0/23
194.87.44.0/24
194.87.49.0/24
194.87.76.0/24
194.87.82.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/23
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/23
195.133.14.0/23
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.217.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
85:7c:1d:ab:9e:21:2c:c8:be:bb:c9:96:9a:f9:5d:58:b1:a5:
18:de:66:74:86:8b:c7:5c:58:51:42:c6:d8:db:ca:c7:9e:79:
78:c5:ba:1c:7a:73:61:79:27:01:55:c3:87:19:45:2b:f6:6b:
ce:ba:c1:3a:e6:90:c5:f2:38:e5:d6:d2:33:cc:05:4b:28:77:
2b:17:f7:f0:48:60:d9:bf:52:d9:21:e8:f5:7e:6a:ca:5a:18:
a0:35:f9:57:00:48:28:d2:f7:fa:99:05:c4:4f:75:67:5f:3f:
4c:59:00:1d:9a:c2:09:76:ad:2e:71:b4:05:fc:24:52:3e:e4:
5a:a1:a1:e3:30:ee:d5:c3:ff:4e:32:ca:e9:bd:86:69:f5:49:
c4:5a:80:a5:1d:75:2a:9c:54:9e:63:9b:ae:8f:4c:32:9d:e6:
ec:03:d6:ce:1f:a5:60:18:e8:dc:75:ed:a9:6d:da:d0:95:8b:
ba:db:e2:55:f1:37:54:1f:ee:b7:96:b2:d6:83:cd:a8:69:63:
5f:e9:f4:7e:36:3c:90:36:6e:6a:d6:87:ab:e0:45:16:09:34:
96:58:66:05:6f:48:79:00:70:c2:f3:64:c1:fe:41:e8:07:4a:
7c:5a:d8:8a:71:92:60:eb:9d:3f:4a:2b:cd:62:54:b7:3f:5f:
7e:84:14:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 18:04:20 2024 by rpki-client on console-ams.rpki-client.org