Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/EopQ_Fj16s-OCIWOMB0eHiIVz5k.roa
File: EopQ_Fj16s-OCIWOMB0eHiIVz5k.roa (raw, json)
Hash identifier: l76IJ8xaFfBYCMpNhmyeZuIzH3+8XQ9tvwlpnY4LinI=
Subject key identifier: 12:8A:50:FC:58:F5:EA:CF:8E:08:85:8E:30:1D:1E:1E:22:15:CF:99
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 018E31A38B2CFCFF4548CCE1A3B2CDD7DD7C
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/EopQ_Fj16s-OCIWOMB0eHiIVz5k.roa
Signing time: Tue 12 Mar 2024 07:49:45 +0000
ROA not before: Tue 12 Mar 2024 07:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8359
IP address blocks: 62.118.0.0/16 maxlen: 24
62.168.224.0/19 maxlen: 19
80.83.237.0/24 maxlen: 24
81.91.32.0/19 maxlen: 19
81.91.41.0/24 maxlen: 24
81.195.0.0/16 maxlen: 24
82.96.192.0/18 maxlen: 18
83.237.0.0/16 maxlen: 16
85.140.0.0/15 maxlen: 24
85.235.32.0/19 maxlen: 19
89.175.0.0/16 maxlen: 16
89.175.248.0/21 maxlen: 21
91.76.0.0/14 maxlen: 14
93.90.224.0/20 maxlen: 20
93.90.224.0/22 maxlen: 22
94.140.128.0/19 maxlen: 19
95.169.128.0/19 maxlen: 19
109.198.224.0/19 maxlen: 19
141.105.24.0/21 maxlen: 21
176.222.17.0/24 maxlen: 24
178.141.0.0/16 maxlen: 16
178.155.0.0/17 maxlen: 17
185.168.236.0/22 maxlen: 22
193.104.128.0/24 maxlen: 24
195.34.0.0/19 maxlen: 19
195.34.15.0/24 maxlen: 24
195.34.32.0/19 maxlen: 19
195.34.36.0/24 maxlen: 24
195.34.38.0/24 maxlen: 24
195.34.42.0/24 maxlen: 24
212.188.0.0/17 maxlen: 17
213.87.0.0/16 maxlen: 16
213.87.64.0/22 maxlen: 22
213.87.70.0/23 maxlen: 23
213.87.76.0/23 maxlen: 23
213.87.80.0/20 maxlen: 20
213.87.100.0/24 maxlen: 24
213.87.104.0/24 maxlen: 24
213.87.105.0/24 maxlen: 24
213.87.106.0/23 maxlen: 23
213.87.128.0/19 maxlen: 19
213.87.160.0/22 maxlen: 22
213.87.200.0/22 maxlen: 22
213.87.204.0/22 maxlen: 22
213.87.208.0/23 maxlen: 23
213.87.240.0/22 maxlen: 22
213.87.244.0/23 maxlen: 23
213.87.246.0/24 maxlen: 24
213.87.248.0/22 maxlen: 22
213.147.32.0/19 maxlen: 19
213.176.228.0/22 maxlen: 22
217.74.244.0/22 maxlen: 22
217.74.248.0/21 maxlen: 21
2a00:1fa0::/29 maxlen: 29
2a00:1fa0::/33 maxlen: 33
2a00:1fa0:8000::/33 maxlen: 33
2a00:1fa2::/33 maxlen: 33
2a00:1fa3::/33 maxlen: 33
2a00:1fa3:8000::/40 maxlen: 40
2a02:28::/29 maxlen: 29
2a02:28::/32 maxlen: 32
2a02:28:1::/48 maxlen: 48
2a02:28:a::/48 maxlen: 48
2a02:29::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 13 Mar 2024 13:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:31:a3:8b:2c:fc:ff:45:48:cc:e1:a3:b2:cd:d7:dd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Mar 12 07:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=128a50fc58f5eacf8e08858e301d1e1e2215cf99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:25:e0:29:4d:8e:c9:2d:80:ac:c8:38:63:23:
a1:d6:6d:71:11:b5:74:e4:cf:a8:f7:76:c8:36:13:
fc:b6:ab:be:65:ba:d2:26:3b:2c:fb:00:25:d2:bd:
5a:fa:70:70:05:c6:e5:28:bc:89:fb:05:93:79:d0:
fb:84:ab:8b:83:8c:1e:61:97:46:75:91:12:9f:0a:
82:cf:08:08:db:e1:b4:af:c6:28:17:2c:27:cf:f4:
73:f2:33:ac:27:5c:0b:c1:7d:7e:dc:8d:c2:76:17:
07:aa:bb:f4:69:50:00:26:6f:10:37:32:76:3c:25:
cc:8e:bd:d2:42:11:5d:7c:61:b3:9e:f2:db:51:51:
72:20:0a:39:fe:64:46:1f:2b:cc:b9:14:56:ac:f9:
1c:a3:96:0a:46:4e:1c:89:24:3c:af:9e:5b:8a:ca:
85:fc:2c:e0:a6:06:d4:90:b2:eb:0d:32:54:c8:af:
da:dc:ed:e9:d1:c0:54:79:36:e0:21:52:87:f0:0a:
50:e3:6b:12:a6:98:1c:40:c9:90:3c:8e:ea:70:22:
31:99:a4:73:db:59:4a:d3:3e:ae:cd:30:ff:a1:91:
14:5d:93:3f:83:59:d8:42:d9:47:70:a1:f9:9d:41:
77:76:f4:97:04:05:cd:a6:73:4b:3c:54:20:f9:13:
a5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8A:50:FC:58:F5:EA:CF:8E:08:85:8E:30:1D:1E:1E:22:15:CF:99
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/EopQ_Fj16s-OCIWOMB0eHiIVz5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.118.0.0/16
62.168.224.0/19
80.83.237.0/24
81.91.32.0/19
81.195.0.0/16
82.96.192.0/18
83.237.0.0/16
85.140.0.0/15
85.235.32.0/19
89.175.0.0/16
91.76.0.0/14
93.90.224.0/20
94.140.128.0/19
95.169.128.0/19
109.198.224.0/19
141.105.24.0/21
176.222.17.0/24
178.141.0.0/16
178.155.0.0/17
185.168.236.0/22
193.104.128.0/24
195.34.0.0/18
212.188.0.0/17
213.87.0.0/16
213.147.32.0/19
213.176.228.0/22
217.74.244.0-217.74.255.255
IPv6:
2a00:1fa0::/29
2a02:28::/29
Signature Algorithm: sha256WithRSAEncryption
72:a6:a8:7b:44:3b:9e:0f:0a:58:05:6f:9e:5b:34:0c:a1:9d:
09:71:88:6e:4c:46:15:7f:42:be:a1:f8:1b:4e:c8:de:cf:69:
1d:f8:52:0d:c9:27:5b:1f:2c:91:68:ab:91:5d:ac:6d:3d:e9:
28:fc:21:da:e8:ac:0a:16:9b:83:78:4a:9c:fe:43:0b:e3:e7:
15:8d:6a:b5:46:46:57:91:b0:d2:5a:27:07:15:1a:90:b1:63:
1b:fd:9a:7a:91:b7:c9:15:24:51:68:7e:2e:5b:2d:e4:6c:2b:
31:db:8d:b0:12:65:a0:28:70:cd:01:c5:ec:9f:58:9c:78:c6:
75:a3:0a:3b:61:d1:4b:f8:7e:3c:e0:d5:b1:50:71:5f:21:c2:
73:d5:27:3a:ef:14:b9:4c:a0:e5:8c:4e:ec:e7:85:77:14:c5:
6d:c5:e0:dc:e3:d1:be:05:fb:db:02:53:06:c6:9c:73:d9:4a:
9c:55:d5:5d:df:c0:fc:53:94:0e:29:0f:32:01:38:27:8a:b7:
0b:1e:8a:53:24:55:5d:bd:1b:08:4c:e9:7b:04:d7:b8:68:25:
f6:61:22:0f:64:e8:97:3b:95:02:64:c6:39:6e:2d:17:29:b7:
a0:5e:21:2e:d7:7e:f6:c4:bd:6a:65:4f:4e:9a:d2:64:e8:9b:
c4:8b:73:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 17:00:29 2024 by rpki-client on console-ams.rpki-client.org