Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xaw7-7SBHnU1kw8ozlsXUpurKwI.roa
File: Xaw7-7SBHnU1kw8ozlsXUpurKwI.roa (raw, json)
Hash identifier: YAwzgi48LCHbRc3Sln2ponXM1mPpy2sLVIQmpFHfvOM=
Subject key identifier: 5D:AC:3B:FB:B4:81:1E:75:35:93:0F:28:CE:5B:17:52:9B:AB:2B:02
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0187806A4A07D9D36E45AB90E2CE60202B8C
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xaw7-7SBHnU1kw8ozlsXUpurKwI.roa
Signing time: Fri 14 Apr 2023 15:37:42 +0000
ROA not before: Fri 14 Apr 2023 15:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 193.141.0.0/23 maxlen: 23
193.141.2.0/24 maxlen: 24
46.33.64.0/19 maxlen: 24
194.120.112.0/22 maxlen: 22
194.120.120.0/22 maxlen: 22
193.242.80.0/20 maxlen: 20
194.121.52.0/22 maxlen: 22
192.16.202.0/24 maxlen: 24
77.67.0.0/17 maxlen: 24
193.141.40.0/22 maxlen: 22
193.141.44.0/23 maxlen: 23
134.222.0.0/16 maxlen: 16
212.222.0.0/16 maxlen: 24
194.45.182.0/23 maxlen: 23
212.221.0.0/17 maxlen: 24
213.251.0.0/18 maxlen: 24
185.160.40.0/22 maxlen: 22
194.123.164.0/24 maxlen: 24
194.120.0.0/24 maxlen: 24
213.254.192.0/18 maxlen: 24
194.123.122.0/24 maxlen: 24
194.120.43.0/24 maxlen: 24
62.132.114.0/23 maxlen: 23
62.132.116.0/23 maxlen: 23
192.129.36.0/24 maxlen: 24
62.132.132.0/23 maxlen: 23
192.129.32.0/23 maxlen: 23
192.129.43.0/24 maxlen: 24
192.129.44.0/24 maxlen: 24
192.129.46.0/23 maxlen: 23
192.129.48.0/23 maxlen: 23
194.45.4.0/23 maxlen: 23
192.129.54.0/24 maxlen: 24
62.41.160.0/24 maxlen: 24
192.129.56.0/23 maxlen: 24
62.41.80.0/22 maxlen: 24
62.41.84.0/23 maxlen: 24
62.41.102.0/24 maxlen: 24
212.115.128.0/18 maxlen: 24
212.1.0.0/19 maxlen: 19
213.200.64.0/18 maxlen: 18
195.143.0.0/16 maxlen: 24
194.45.98.0/23 maxlen: 23
141.136.96.0/20 maxlen: 20
194.45.12.0/23 maxlen: 23
89.149.128.0/18 maxlen: 24
87.119.64.0/18 maxlen: 24
194.45.47.0/24 maxlen: 24
92.71.0.0/17 maxlen: 17
192.67.190.0/23 maxlen: 23
192.67.192.0/22 maxlen: 22
212.189.0.0/17 maxlen: 17
192.67.196.0/24 maxlen: 24
77.77.128.0/18 maxlen: 24
193.141.140.0/23 maxlen: 23
62.41.16.0/21 maxlen: 24
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 24
62.132.16.0/22 maxlen: 22
62.132.24.0/23 maxlen: 23
62.41.32.0/24 maxlen: 24
62.41.37.0/24 maxlen: 24
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.41.56.0/21 maxlen: 24
62.132.42.0/23 maxlen: 23
194.41.62.0/24 maxlen: 24
62.41.64.0/20 maxlen: 24
192.54.104.0/24 maxlen: 24
62.41.0.0/20 maxlen: 24
2a00:1750::/32 maxlen: 32
2001:680:12::/48 maxlen: 48
2001:680:19::/48 maxlen: 48
2001:680::/32 maxlen: 32
2001:680:20::/48 maxlen: 48
2001:680:16::/48 maxlen: 48
2001:668::/29 maxlen: 64
Validation: Failed, certificate revoked on Thu 20 Apr 2023 14:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:6a:4a:07:d9:d3:6e:45:ab:90:e2:ce:60:20:2b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Apr 14 15:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dac3bfbb4811e7535930f28ce5b17529bab2b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:11:33:a7:78:c8:a1:d9:d6:0d:cf:26:0b:
06:1d:43:37:02:93:5a:e7:ca:64:e3:89:e4:92:63:
0b:f6:a4:c7:fc:37:c2:72:d6:16:84:91:05:47:f4:
01:b4:23:21:89:1a:02:d0:8c:1b:91:64:01:41:e9:
40:19:80:1c:b1:06:57:ee:e0:cc:ec:92:5d:ec:8b:
c9:46:85:45:89:9e:6e:7d:09:ed:c4:e6:50:d2:21:
69:9e:f2:14:eb:6a:b0:7e:aa:5d:86:26:a5:d5:ac:
dc:dc:f9:44:b0:ef:12:60:9e:cf:2a:13:a0:d4:a4:
3b:8f:0c:16:4c:30:dd:a7:13:c2:09:cf:9a:d2:06:
b2:02:19:eb:c3:99:28:ac:71:f6:9f:30:58:c3:3d:
03:9c:7f:39:f5:2a:e7:74:73:4d:67:7b:57:ff:7d:
54:2b:ee:ec:0a:9a:8b:72:61:48:89:db:07:0c:62:
41:9e:8e:e9:9d:87:a0:26:01:5e:d8:6e:39:86:d6:
70:29:3d:15:ad:48:ef:04:b4:4f:9d:f7:ab:b2:2b:
67:e7:70:41:b0:bd:1f:2f:00:5a:17:cb:3a:b1:32:
98:ab:7b:21:ed:7a:ea:6a:39:d7:53:6e:c7:7e:26:
fc:7a:c4:cf:3e:39:1d:a4:98:81:c1:c7:49:16:89:
af:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:AC:3B:FB:B4:81:1E:75:35:93:0F:28:CE:5B:17:52:9B:AB:2B:02
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Xaw7-7SBHnU1kw8ozlsXUpurKwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.64.0/19
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
77.67.0.0/17
77.77.128.0/18
87.119.64.0/18
89.149.128.0/18
92.71.0.0-92.71.191.255
134.222.0.0/16
141.136.96.0/20
185.160.40.0/22
192.16.202.0/24
192.54.104.0/24
192.67.190.0-192.67.196.255
192.129.32.0/23
192.129.36.0/24
192.129.43.0-192.129.44.255
192.129.46.0-192.129.49.255
192.129.54.0/24
192.129.56.0/23
193.141.0.0-193.141.2.255
193.141.40.0-193.141.45.255
193.141.140.0/23
193.242.80.0/20
194.41.62.0/24
194.45.4.0/23
194.45.12.0/23
194.45.47.0/24
194.45.98.0/23
194.45.182.0/23
194.120.0.0/24
194.120.43.0/24
194.120.112.0/22
194.120.120.0/22
194.121.52.0/22
194.123.122.0/24
194.123.164.0/24
195.143.0.0/16
212.1.0.0/19
212.115.128.0/18
212.189.0.0/17
212.221.0.0/17
212.222.0.0/16
213.200.64.0/18
213.251.0.0/18
213.254.192.0/18
IPv6:
2001:668::/29
2001:680::/32
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
0e:1b:0f:d8:1f:ea:27:b6:30:24:30:b5:84:26:ae:94:36:9b:
e0:87:85:62:17:44:1b:10:c5:a5:74:28:1a:7d:b9:8a:15:6b:
fd:a0:27:1e:ba:cc:ef:ec:0c:09:cd:33:d9:a8:d8:8d:f6:d5:
6e:18:9d:84:6c:f7:19:73:cd:a9:60:0a:bb:38:46:49:4a:50:
a0:cb:d7:e9:eb:48:84:d9:a0:32:65:fd:de:4b:c1:f8:6d:5f:
2a:d6:a5:68:ee:6c:f5:ab:9d:3f:d7:42:2b:bd:26:1d:c1:21:
6c:1c:cb:a3:d9:ed:2c:dc:ab:e0:7a:1a:31:37:5e:07:bc:a6:
c0:81:a9:a0:6d:5c:86:16:d8:ee:19:da:68:0b:f0:e2:cf:66:
51:4c:b3:23:97:fe:e8:b6:22:f8:70:02:40:2d:e4:76:8e:b9:
b5:fd:6a:28:76:ae:d4:40:fc:d8:21:7c:4c:a1:27:bf:a2:19:
d0:ad:1f:40:11:d3:37:31:51:5f:93:5c:d9:e4:52:f6:32:91:
46:61:b3:5f:ef:1f:dd:6c:c2:67:05:71:59:1d:9c:13:90:0e:
ed:8a:a0:bb:b1:ac:2a:0c:34:bb:51:e8:6d:4d:59:42:b8:f8:
86:94:cf:06:04:55:81:5f:fa:b5:a2:14:1b:fc:1a:3e:91:0a:
3d:d7:5e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:34 2024 by rpki-client on console-ams.rpki-client.org