Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/NyzBoGTusCxAikZgTIlXeLiPrjQ.roa
File: NyzBoGTusCxAikZgTIlXeLiPrjQ.roa (raw, json)
Hash identifier: JSHkqW7t8oqDh3g5l5fXqIiCJqlET+hqsK2fKvsI10Q=
Subject key identifier: 37:2C:C1:A0:64:EE:B0:2C:40:8A:46:60:4C:89:57:78:B8:8F:AE:34
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0191BCE3AADA80DFB8122B7F2870D6DF0EDB
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/NyzBoGTusCxAikZgTIlXeLiPrjQ.roa
Signing time: Wed 04 Sep 2024 11:55:22 +0000
ROA not before: Wed 04 Sep 2024 11:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 62.205.128.0/19 maxlen: 20
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
94.131.0.0/23 maxlen: 23
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
94.131.124.0/24 maxlen: 24
94.131.125.0/24 maxlen: 24
94.131.127.0/24 maxlen: 24
95.164.12.0/23 maxlen: 23
95.164.15.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
95.164.52.0/22 maxlen: 22
95.164.56.0/22 maxlen: 22
95.164.72.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.90.0/24 maxlen: 24
95.164.92.0/24 maxlen: 24
95.164.120.0/24 maxlen: 24
95.164.121.0/24 maxlen: 24
95.164.122.0/24 maxlen: 24
95.164.123.0/24 maxlen: 24
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
95.164.248.0/23 maxlen: 23
95.164.251.0/24 maxlen: 24
195.214.208.0/21 maxlen: 21
195.214.208.0/22 maxlen: 22
195.214.210.0/24 maxlen: 24
195.214.212.0/22 maxlen: 22
2a01:d0::/32 maxlen: 32
2a01:d0:4::/48 maxlen: 48
2a01:d0:a::/48 maxlen: 48
2a01:d0:28::/48 maxlen: 48
2a01:d0:3b::/48 maxlen: 48
2a01:d0:43::/48 maxlen: 48
2a01:d0:105::/48 maxlen: 48
2a01:d0:303::/48 maxlen: 48
2a01:d0:305::/48 maxlen: 48
2a01:d0:308::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
2a01:d0:31d::/48 maxlen: 48
2a01:d0:333::/48 maxlen: 48
2a01:d0:962::/48 maxlen: 48
2a01:d0:1657::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:8000::/33 maxlen: 33
2a01:d0:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 27 Sep 2024 16:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bc:e3:aa:da:80:df:b8:12:2b:7f:28:70:d6:df:0e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Sep 4 11:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=372cc1a064eeb02c408a46604c895778b88fae34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:05:01:51:0e:56:a5:e1:e2:d4:88:5a:ea:9f:
f1:ac:ed:57:44:aa:84:d7:52:9c:82:23:f4:9f:bd:
58:a7:5f:67:84:43:9a:d4:33:cc:56:61:86:c2:0c:
9a:e6:85:2f:c9:56:95:87:3a:4f:94:76:16:28:4c:
ee:9e:47:95:57:ae:b9:a3:e9:c8:ca:5f:40:05:07:
ef:60:a1:81:25:1f:79:5d:cc:dd:ab:9a:69:fd:b0:
27:af:e8:38:4b:e5:ef:0c:51:97:0f:d9:19:f0:d0:
b1:51:94:74:c0:9d:bf:f0:b8:ec:f6:cc:b8:e9:67:
9a:48:4b:1d:9a:7f:68:8a:bd:23:e4:c2:92:be:27:
18:be:b8:0c:a9:a7:b8:81:d8:47:63:9e:eb:c8:d9:
cb:64:e4:12:c8:81:81:67:6c:b0:b4:87:d5:97:04:
d6:f8:14:47:c2:8d:e8:de:0b:3c:ce:2c:c3:65:b2:
c9:8b:39:8f:84:97:79:03:f3:9c:f0:de:b2:11:76:
e6:e7:a2:91:51:6d:8c:e4:3c:33:bf:ca:dd:58:36:
41:b5:95:56:5b:69:9c:ee:ee:e7:02:f0:0d:7d:1d:
40:2e:94:b9:30:01:20:a1:8e:de:7e:24:80:01:a8:
77:5f:db:2e:50:ad:39:ac:3b:40:82:46:e8:45:e9:
e0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2C:C1:A0:64:EE:B0:2C:40:8A:46:60:4C:89:57:78:B8:8F:AE:34
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/NyzBoGTusCxAikZgTIlXeLiPrjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
94.131.124.0/23
94.131.127.0/24
95.164.12.0/23
95.164.15.0/24
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.90.0/24
95.164.92.0/24
95.164.120.0/22
95.164.170.0-95.164.175.255
95.164.248.0/23
95.164.251.0/24
195.214.208.0/21
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
13:82:1d:eb:65:9a:c5:9c:c7:2d:75:8d:8f:82:8a:52:09:fd:
8c:3d:9f:c6:c7:9d:95:e1:68:39:bd:62:e7:72:96:8a:ee:57:
fb:df:75:4c:b6:03:24:8a:83:c4:73:6e:05:58:a6:e7:29:46:
70:23:8c:d5:ff:d3:ed:48:80:ae:ba:c4:c8:44:f2:be:81:31:
2b:11:5e:7c:d4:df:fd:1a:d0:72:6a:fb:c0:a0:a3:c0:1d:b1:
f6:a2:a7:59:82:b6:e4:e6:3f:46:e8:8f:12:28:ff:29:cd:29:
6c:e3:46:16:52:b8:b9:23:b7:4b:bc:eb:c7:2d:5f:7d:0b:b7:
0d:66:a2:32:24:ab:37:7f:06:a7:6d:fb:93:ca:7b:08:59:30:
cd:6f:75:57:99:2e:f1:fb:85:f3:1f:1c:7c:5e:91:8f:fa:f0:
b1:a4:55:f3:0e:a3:3e:ba:0a:77:44:4e:1a:d7:64:8c:f2:4b:
d9:86:51:6d:92:91:f9:90:f0:f4:eb:8d:b8:9f:aa:8e:01:da:
d3:1a:1e:2a:66:9f:ea:bd:9f:99:94:ee:33:cc:b5:4f:a8:c6:
ed:d5:86:48:45:dd:63:f6:17:b6:26:45:80:87:65:54:8e:95:
0b:c6:90:a1:35:d5:68:b0:0b:b3:dc:2e:aa:16:ad:e8:2f:90:
f6:10:c7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 19:42:22 2024 by rpki-client on console-ams.rpki-client.org