Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cevsbgJwhh-iVJe6tzV2EEcQm_4.roa
File: cevsbgJwhh-iVJe6tzV2EEcQm_4.roa (raw, json)
Hash identifier: GHD2OiEjAPuP6UrXm6DzQ6t18l86teoL/F9Jz7CXRCs=
Subject key identifier: 71:EB:EC:6E:02:70:86:1F:A2:54:97:BA:B7:35:76:10:47:10:9B:FE
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018CC7943CABC3CBEE19CF10D13A83DF128A
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cevsbgJwhh-iVJe6tzV2EEcQm_4.roa
Signing time: Tue 02 Jan 2024 00:30:29 +0000
ROA not before: Tue 02 Jan 2024 00:30:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 286
IP address blocks: 193.141.0.0/23 maxlen: 23
193.141.2.0/24 maxlen: 24
194.120.112.0/22 maxlen: 22
194.120.120.0/22 maxlen: 22
193.242.80.0/20 maxlen: 20
192.16.202.0/24 maxlen: 24
194.121.52.0/22 maxlen: 22
193.141.44.0/23 maxlen: 23
193.141.40.0/22 maxlen: 22
194.45.182.0/23 maxlen: 23
194.122.248.0/22 maxlen: 22
194.123.164.0/24 maxlen: 24
194.120.0.0/24 maxlen: 24
194.123.122.0/24 maxlen: 24
194.120.43.0/24 maxlen: 24
194.122.80.0/21 maxlen: 21
62.132.116.0/23 maxlen: 23
62.132.114.0/23 maxlen: 23
192.129.32.0/23 maxlen: 24
192.129.36.0/24 maxlen: 24
62.132.132.0/23 maxlen: 23
192.129.43.0/24 maxlen: 24
192.129.44.0/24 maxlen: 24
192.129.46.0/24 maxlen: 24
192.129.48.0/24 maxlen: 24
62.41.160.0/24 maxlen: 24
194.45.4.0/23 maxlen: 23
192.129.56.0/24 maxlen: 24
192.129.54.0/24 maxlen: 24
194.122.120.0/21 maxlen: 21
62.41.80.0/22 maxlen: 22
62.41.84.0/23 maxlen: 23
62.41.102.0/24 maxlen: 24
212.1.0.0/19 maxlen: 19
194.122.76.0/22 maxlen: 22
194.45.98.0/23 maxlen: 23
194.122.224.0/20 maxlen: 20
194.45.12.0/23 maxlen: 23
194.45.47.0/24 maxlen: 24
194.121.123.0/24 maxlen: 24
92.71.0.0/17 maxlen: 17
192.67.190.0/23 maxlen: 23
212.189.0.0/17 maxlen: 17
192.67.192.0/22 maxlen: 22
192.67.196.0/24 maxlen: 24
193.141.140.0/23 maxlen: 23
194.121.104.0/23 maxlen: 23
62.41.16.0/21 maxlen: 21
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 22
62.132.16.0/22 maxlen: 22
62.41.37.0/24 maxlen: 24
62.41.32.0/24 maxlen: 24
62.132.24.0/23 maxlen: 23
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 21
194.41.62.0/24 maxlen: 24
62.41.64.0/20 maxlen: 20
192.54.104.0/24 maxlen: 24
194.121.203.0/24 maxlen: 24
62.41.0.0/20 maxlen: 20
194.121.220.0/22 maxlen: 22
2a00:1750::/32 maxlen: 32
2001:680:12::/48 maxlen: 48
2001:680:19::/48 maxlen: 48
2001:680::/32 maxlen: 32
2001:680:20::/48 maxlen: 48
2001:680:16::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 21:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:3c:ab:c3:cb:ee:19:cf:10:d1:3a:83:df:12:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 00:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71ebec6e0270861fa25497bab735761047109bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:aa:e9:f8:1a:de:48:fa:cb:82:3e:f4:d8:25:
06:a2:df:59:15:e0:31:8c:d2:d5:a2:ab:58:9b:3b:
c2:6e:54:a5:a8:65:06:d7:d9:48:df:36:90:6c:40:
ad:fb:45:42:ad:08:7d:b7:71:24:2d:45:1f:b0:61:
20:2c:aa:1c:d9:36:da:0e:bf:77:55:a7:70:22:03:
16:60:b0:08:0e:0a:3b:a7:dd:d1:1f:6d:b7:77:c9:
45:25:17:d1:6c:a9:bb:54:5b:0c:4b:dc:96:bf:24:
b7:ed:53:bf:d8:1e:c3:e5:1c:ed:8d:65:e4:43:2f:
3d:eb:09:c6:48:f4:77:02:be:6a:57:9c:c5:c4:37:
07:33:f4:ab:08:28:3d:6e:43:2a:11:00:ba:7c:08:
88:ee:23:21:32:70:fe:e7:ce:b0:d4:ae:08:4c:8a:
54:8e:b3:c0:df:d9:5f:7b:b5:fc:09:b9:b0:17:63:
88:2d:df:df:a2:bd:ba:6e:c6:41:af:28:ba:c7:cd:
68:f3:d2:ff:e6:c1:07:1d:a7:11:98:39:b3:84:7f:
6f:5e:5c:78:47:2d:0e:fc:ee:81:45:02:21:ec:6a:
32:59:d7:bf:fa:6f:fb:0b:8c:04:aa:14:a6:12:35:
cd:3e:31:d6:7f:cb:57:44:bf:b7:2d:78:9a:b2:28:
6a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EB:EC:6E:02:70:86:1F:A2:54:97:BA:B7:35:76:10:47:10:9B:FE
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/cevsbgJwhh-iVJe6tzV2EEcQm_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
92.71.0.0-92.71.191.255
192.16.202.0/24
192.54.104.0/24
192.67.190.0-192.67.196.255
192.129.32.0/23
192.129.36.0/24
192.129.43.0-192.129.44.255
192.129.46.0/24
192.129.48.0/24
192.129.54.0/24
192.129.56.0/24
193.141.0.0-193.141.2.255
193.141.40.0-193.141.45.255
193.141.140.0/23
193.242.80.0/20
194.41.62.0/24
194.45.4.0/23
194.45.12.0/23
194.45.47.0/24
194.45.98.0/23
194.45.182.0/23
194.120.0.0/24
194.120.43.0/24
194.120.112.0/22
194.120.120.0/22
194.121.52.0/22
194.121.104.0/23
194.121.123.0/24
194.121.203.0/24
194.121.220.0/22
194.122.76.0-194.122.87.255
194.122.120.0/21
194.122.224.0/20
194.122.248.0/22
194.123.122.0/24
194.123.164.0/24
212.1.0.0/19
212.189.0.0/17
IPv6:
2001:680::/32
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
13:0a:b8:e2:b7:69:f1:f9:5d:30:cf:9a:c8:5a:b5:0c:6b:c7:
d8:d8:5e:63:f8:95:9c:0a:75:da:c0:0a:68:6d:cd:eb:65:ab:
c6:cf:6c:95:08:dc:49:d6:e6:25:94:04:e4:f3:2d:a3:c6:b1:
74:d6:1d:4a:57:30:88:37:12:f6:f2:3a:69:cc:bb:b2:98:55:
7a:31:c7:1c:28:90:c6:41:c9:db:27:57:6a:9b:b8:98:18:a3:
49:8a:9c:73:ec:9a:ad:24:9b:8f:a2:7f:a3:b2:73:c6:a9:19:
b1:3d:0f:35:6e:5a:22:f5:e6:54:87:18:2a:6c:98:9f:24:3c:
3f:23:22:32:78:f0:f8:8d:d7:93:92:7d:23:53:05:97:ae:13:
28:5e:29:8e:bf:3a:3d:25:1c:73:be:5f:85:bb:60:c9:db:45:
3c:c6:fb:d4:ea:bb:f1:dd:33:4f:f3:cf:fd:d9:1c:fe:b5:17:
02:a5:b3:e1:ec:b4:38:4f:99:62:49:4c:8f:58:ed:ff:c8:d7:
37:65:6a:fb:cc:4f:3b:a1:f9:b4:9b:1a:8e:52:fa:80:4c:50:
f9:6c:9b:db:95:3e:cc:b0:53:99:2b:b4:9d:25:31:77:06:a3:
0a:f1:b6:39:41:d5:52:cd:b3:dd:c8:3d:3e:6e:b1:11:19:f9:
12:ce:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 02:53:50 2024 by rpki-client on console-fra.rpki-client.org