Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/TuUWmPUYJKVa2Rrg78za78HjWvg.roa
File: TuUWmPUYJKVa2Rrg78za78HjWvg.roa (raw, json)
Hash identifier: CBSewIP4/75S8/djKw1KtHt0kqn0RftXPUH+5d2lWXQ=
Subject key identifier: 4E:E5:16:98:F5:18:24:A5:5A:D9:1A:E0:EF:CC:DA:EF:C1:E3:5A:F8
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 01879F2CBB341ABB3197164CC4C367D30DC9
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/TuUWmPUYJKVa2Rrg78za78HjWvg.roa
Signing time: Thu 20 Apr 2023 14:58:41 +0000
ROA not before: Thu 20 Apr 2023 14:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 193.141.0.0/23 maxlen: 23
193.141.2.0/24 maxlen: 24
194.120.112.0/22 maxlen: 22
194.120.120.0/22 maxlen: 22
193.242.80.0/20 maxlen: 20
192.16.202.0/24 maxlen: 24
194.121.52.0/22 maxlen: 22
193.141.44.0/23 maxlen: 23
193.141.40.0/22 maxlen: 22
194.45.182.0/23 maxlen: 23
194.122.248.0/22 maxlen: 22
194.123.164.0/24 maxlen: 24
194.120.0.0/24 maxlen: 24
194.123.122.0/24 maxlen: 24
194.120.43.0/24 maxlen: 24
194.122.80.0/21 maxlen: 21
62.132.116.0/23 maxlen: 23
62.132.114.0/23 maxlen: 23
192.129.32.0/23 maxlen: 24
192.129.36.0/24 maxlen: 24
62.132.132.0/23 maxlen: 23
192.129.43.0/24 maxlen: 24
192.129.44.0/24 maxlen: 24
192.129.46.0/24 maxlen: 24
192.129.48.0/24 maxlen: 24
62.41.160.0/24 maxlen: 24
194.45.4.0/23 maxlen: 23
192.129.56.0/24 maxlen: 24
192.129.54.0/24 maxlen: 24
194.122.120.0/21 maxlen: 21
62.41.80.0/22 maxlen: 22
62.41.84.0/23 maxlen: 23
62.41.102.0/24 maxlen: 24
212.1.0.0/19 maxlen: 19
194.122.76.0/22 maxlen: 22
194.45.98.0/23 maxlen: 23
194.122.224.0/20 maxlen: 20
194.45.12.0/23 maxlen: 23
194.45.47.0/24 maxlen: 24
194.121.123.0/24 maxlen: 24
92.71.0.0/17 maxlen: 17
192.67.190.0/23 maxlen: 23
212.189.0.0/17 maxlen: 17
192.67.192.0/22 maxlen: 22
192.67.196.0/24 maxlen: 24
193.141.140.0/23 maxlen: 23
194.121.104.0/23 maxlen: 23
62.41.16.0/21 maxlen: 21
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 22
62.132.16.0/22 maxlen: 22
62.41.37.0/24 maxlen: 24
62.41.32.0/24 maxlen: 24
62.132.24.0/23 maxlen: 23
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 21
194.41.62.0/24 maxlen: 24
62.41.64.0/20 maxlen: 20
192.54.104.0/24 maxlen: 24
194.121.203.0/24 maxlen: 24
62.41.0.0/20 maxlen: 20
194.121.220.0/22 maxlen: 22
2a00:1750::/32 maxlen: 32
2001:680:12::/48 maxlen: 48
2001:680:19::/48 maxlen: 48
2001:680::/32 maxlen: 32
2001:680:20::/48 maxlen: 48
2001:680:16::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:2c:bb:34:1a:bb:31:97:16:4c:c4:c3:67:d3:0d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Apr 20 14:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ee51698f51824a55ad91ae0efccdaefc1e35af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d2:04:b0:9c:08:59:f9:88:23:30:2f:2c:8d:
0b:65:8a:35:9a:b9:38:34:22:55:5e:ef:60:d4:df:
ce:23:8f:ee:4c:2b:cd:72:bd:3f:9e:e2:7e:5c:5e:
bc:37:fa:a0:fc:9f:d7:fe:61:28:43:15:a8:b7:78:
0e:40:9a:b7:37:9e:81:f5:61:d1:fb:cb:de:df:b3:
ac:1d:e5:0f:93:07:9a:21:83:4e:de:4a:05:b4:93:
8f:bc:70:24:56:9f:e8:86:01:cd:46:e7:a1:1a:50:
a6:eb:36:91:94:2a:fd:57:a9:69:5e:e8:86:a4:25:
ae:fd:7e:1e:90:d1:04:3e:1c:1b:0a:40:42:90:33:
53:91:52:4d:42:ed:5d:e5:8b:e1:21:5b:ec:92:91:
95:58:70:65:0f:8c:a4:18:62:6d:32:35:5c:05:09:
18:81:5b:f2:eb:8b:96:8b:b2:82:87:3b:97:7d:86:
68:9a:4b:ee:9d:2b:88:4c:a1:3f:e6:1e:9b:06:e7:
5b:cb:f4:fb:fe:c5:0d:bb:90:f8:d3:2f:48:a7:22:
2c:22:6d:d4:af:e2:c7:b0:9d:da:6c:d1:b3:91:d7:
74:fe:f9:92:5d:3b:43:33:38:bc:10:4b:d3:03:c3:
92:f1:95:79:99:0f:7a:6d:98:d0:a1:f4:27:24:97:
41:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E5:16:98:F5:18:24:A5:5A:D9:1A:E0:EF:CC:DA:EF:C1:E3:5A:F8
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/TuUWmPUYJKVa2Rrg78za78HjWvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
92.71.0.0-92.71.191.255
192.16.202.0/24
192.54.104.0/24
192.67.190.0-192.67.196.255
192.129.32.0/23
192.129.36.0/24
192.129.43.0-192.129.44.255
192.129.46.0/24
192.129.48.0/24
192.129.54.0/24
192.129.56.0/24
193.141.0.0-193.141.2.255
193.141.40.0-193.141.45.255
193.141.140.0/23
193.242.80.0/20
194.41.62.0/24
194.45.4.0/23
194.45.12.0/23
194.45.47.0/24
194.45.98.0/23
194.45.182.0/23
194.120.0.0/24
194.120.43.0/24
194.120.112.0/22
194.120.120.0/22
194.121.52.0/22
194.121.104.0/23
194.121.123.0/24
194.121.203.0/24
194.121.220.0/22
194.122.76.0-194.122.87.255
194.122.120.0/21
194.122.224.0/20
194.122.248.0/22
194.123.122.0/24
194.123.164.0/24
212.1.0.0/19
212.189.0.0/17
IPv6:
2001:680::/32
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
0c:73:34:4d:a3:af:d0:81:74:c9:4f:54:e3:e0:25:08:73:ed:
63:e5:aa:2d:7a:9a:11:8e:d9:75:45:96:da:49:cb:9d:d9:05:
4a:39:2c:ea:b2:27:5b:fd:bc:98:29:33:5d:55:c6:cb:2f:90:
df:0b:eb:85:ce:3e:d9:5a:ba:a0:2e:4a:4b:fd:d8:71:85:65:
c4:5d:79:13:4f:55:88:e7:33:fb:62:3e:7a:5a:3e:cb:38:a5:
e1:55:2d:1c:33:6f:bd:b4:db:54:45:36:93:10:af:14:01:c3:
02:82:84:c7:d9:60:eb:13:24:23:54:d8:e2:23:cb:89:c6:dc:
58:14:f9:1b:7e:8b:d0:62:f4:7f:09:12:ce:d3:d0:d3:c4:8f:
17:41:5e:67:0a:ab:b8:61:20:dc:cd:b1:3b:bf:f6:96:fe:e0:
c1:b0:4b:3c:b3:f1:32:60:cb:d4:b5:98:ae:81:9c:2a:41:fc:
60:88:19:b3:89:44:52:c1:77:ce:24:60:aa:4c:ff:4d:d2:e8:
1d:f9:5c:3c:86:d4:35:89:e7:c8:7a:30:34:6d:ea:e7:27:2a:
c4:8e:b5:a8:a0:39:80:48:f1:5c:0c:d4:16:5e:c9:94:2e:d4:
d5:27:12:ae:2f:32:bd:14:db:b8:9b:2f:bd:39:f5:3e:71:9c:
4d:bb:2c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:23 2024 by rpki-client on console-fra.rpki-client.org