Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/NN2omXVTXRAeGtM8wJkjmgZUI0I.roa
File: NN2omXVTXRAeGtM8wJkjmgZUI0I.roa (raw, json)
Hash identifier: YzdW0FmiQcHJZ3MAjDlC5lB2NZ/GKLhbR3/AZ9z+EfE=
Subject key identifier: 34:DD:A8:99:75:53:5D:10:1E:1A:D3:3C:C0:99:23:9A:06:54:23:42
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674C3D919B14C83A6E5CE163BBE162040
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/NN2omXVTXRAeGtM8wJkjmgZUI0I.roa
Signing time: Tue 21 Feb 2023 16:17:17 +0000
ROA not before: Tue 21 Feb 2023 16:17:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 62.132.114.0/23 maxlen: 23
62.132.116.0/23 maxlen: 23
62.132.132.0/23 maxlen: 23
62.41.160.0/24 maxlen: 24
46.33.64.0/19 maxlen: 24
62.41.80.0/22 maxlen: 24
62.41.84.0/23 maxlen: 24
62.41.102.0/24 maxlen: 24
212.115.128.0/18 maxlen: 24
213.200.64.0/18 maxlen: 18
195.143.0.0/16 maxlen: 24
192.16.202.0/24 maxlen: 24
141.136.96.0/20 maxlen: 20
194.121.52.0/22 maxlen: 22
89.149.128.0/18 maxlen: 24
77.67.0.0/17 maxlen: 24
87.119.64.0/18 maxlen: 24
134.222.0.0/16 maxlen: 16
212.222.0.0/16 maxlen: 24
92.71.0.0/17 maxlen: 17
212.221.0.0/17 maxlen: 24
192.67.190.0/23 maxlen: 23
192.67.192.0/22 maxlen: 22
192.67.196.0/24 maxlen: 24
77.77.128.0/18 maxlen: 24
213.251.0.0/18 maxlen: 24
185.160.40.0/22 maxlen: 22
62.41.16.0/21 maxlen: 24
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 24
62.132.16.0/22 maxlen: 22
62.132.24.0/23 maxlen: 23
62.41.32.0/24 maxlen: 24
62.41.37.0/24 maxlen: 24
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 24
62.41.64.0/20 maxlen: 24
213.254.192.0/18 maxlen: 24
192.54.104.0/24 maxlen: 24
62.41.0.0/20 maxlen: 24
2a00:1750::/32 maxlen: 32
2001:668::/29 maxlen: 64
Validation: Failed, certificate revoked on Fri 14 Apr 2023 14:52:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:c3:d9:19:b1:4c:83:a6:e5:ce:16:3b:be:16:20:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 16:17:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34dda89975535d101e1ad33cc099239a06542342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:e2:69:68:59:43:e4:8f:69:1b:30:68:5c:
92:83:77:03:64:ce:9d:d7:67:ad:95:94:25:8c:ec:
ea:88:9a:97:de:d8:23:72:f6:25:05:47:6f:ea:b9:
8b:c4:4e:28:84:63:fd:6b:08:98:a3:f1:56:b8:b7:
0f:a0:4a:c1:f3:e3:c7:f7:61:d7:3e:84:20:27:7d:
4a:18:8f:3b:de:14:26:4c:1b:27:dd:5c:97:cb:e9:
4d:95:96:1b:d8:af:6f:7c:23:e3:24:8a:51:b6:2d:
6c:be:f4:51:bc:f0:4d:03:82:bd:30:72:4e:7f:40:
4a:b5:56:e5:46:5f:3e:03:6f:46:01:f8:20:e7:78:
af:66:b2:8f:6f:7f:78:2d:07:09:10:cd:ed:16:5e:
14:8a:7f:fc:5b:d2:3e:c5:33:b8:87:aa:2f:1e:07:
f8:2d:71:d5:d9:ef:c0:5d:57:f9:73:b0:3c:03:cb:
3d:c2:65:75:07:46:ab:00:68:73:f9:96:cf:62:5b:
8d:73:b6:18:08:67:f1:62:44:93:47:71:9d:8d:93:
01:0b:27:61:67:d4:6f:51:3d:07:bb:f9:5b:b6:c5:
d2:2c:f3:0b:a1:2b:35:18:1c:9a:db:7e:09:f7:fe:
ed:87:0b:1c:24:bb:e0:3c:fd:7f:8f:d2:43:f3:7f:
7a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DD:A8:99:75:53:5D:10:1E:1A:D3:3C:C0:99:23:9A:06:54:23:42
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/NN2omXVTXRAeGtM8wJkjmgZUI0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.64.0/19
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
77.67.0.0/17
77.77.128.0/18
87.119.64.0/18
89.149.128.0/18
92.71.0.0-92.71.191.255
134.222.0.0/16
141.136.96.0/20
185.160.40.0/22
192.16.202.0/24
192.54.104.0/24
192.67.190.0-192.67.196.255
194.121.52.0/22
195.143.0.0/16
212.115.128.0/18
212.221.0.0/17
212.222.0.0/16
213.200.64.0/18
213.251.0.0/18
213.254.192.0/18
IPv6:
2001:668::/29
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
02:5c:86:4c:c2:60:bb:f8:db:5d:94:e4:95:77:11:ff:3b:29:
bd:0a:01:dd:93:40:43:1c:c7:87:1f:8c:ce:41:13:89:98:e8:
47:b0:16:7d:ae:67:68:96:55:30:d3:8a:2f:e7:dc:85:c4:11:
6b:b9:32:d4:40:78:49:f3:13:87:8e:d7:f2:81:25:9d:52:a3:
fc:97:a3:e8:72:3b:dd:4f:fc:4d:ae:26:3c:ac:ed:0a:32:c5:
a8:5a:4e:30:c7:ae:23:d2:90:7a:e5:d2:e5:f2:db:66:bf:2b:
ba:74:24:50:5a:1b:83:ad:bf:34:74:79:a8:1e:40:f8:6d:b5:
da:fe:12:0d:2c:b1:84:da:5d:46:9a:62:8a:a6:3c:c8:b1:a3:
4a:bd:d5:0c:22:da:52:eb:30:40:f6:f7:fe:6e:ba:18:68:d2:
13:f8:88:22:3c:81:e9:9a:8a:71:d1:4c:d9:33:93:ac:48:1c:
58:cf:5f:af:44:74:50:46:fa:45:31:44:70:ef:d0:a0:37:50:
82:1a:82:1f:fd:1f:9c:ae:3d:f3:9a:7c:83:48:b0:fd:9c:65:
1e:40:8d:78:0d:17:05:f6:3f:2c:3b:7f:ca:23:9e:b4:6f:87:
7a:76:d5:c7:ef:7a:a9:fc:9a:e0:b3:ab:c3:7c:86:be:45:03:
5d:63:f1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:34 2024 by rpki-client on console-ams.rpki-client.org