Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/EFq_CvZggpfj-WrtkbXTalwWFME.roa
File: EFq_CvZggpfj-WrtkbXTalwWFME.roa (raw, json)
Hash identifier: u38ghXQ72wa7+SvHuzyLJwBN/OuhMOb/FeI9EvJ6rHo=
Subject key identifier: 10:5A:BF:0A:F6:60:82:97:E3:F9:6A:ED:91:B5:D3:6A:5C:16:14:C1
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0189772DA2C37E910803767F462EB3F50183
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/EFq_CvZggpfj-WrtkbXTalwWFME.roa
Signing time: Fri 21 Jul 2023 06:40:26 +0000
ROA not before: Fri 21 Jul 2023 06:40:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 195.208.52.0/24 maxlen: 24
195.208.55.0/24 maxlen: 24
195.208.54.0/24 maxlen: 24
195.208.53.0/24 maxlen: 24
195.208.61.0/24 maxlen: 24
195.208.60.0/24 maxlen: 24
195.208.3.0/24 maxlen: 24
195.208.2.0/24 maxlen: 24
195.208.169.0/24 maxlen: 24
195.208.168.0/24 maxlen: 24
195.208.181.0/24 maxlen: 24
195.208.189.0/24 maxlen: 24
195.19.209.0/24 maxlen: 24
195.19.213.0/24 maxlen: 24
195.208.118.0/24 maxlen: 24
195.208.122.0/24 maxlen: 24
195.208.121.0/24 maxlen: 24
195.208.120.0/24 maxlen: 24
195.208.125.0/24 maxlen: 24
195.208.124.0/24 maxlen: 24
195.208.123.0/24 maxlen: 24
195.208.119.0/24 maxlen: 24
195.208.127.0/24 maxlen: 24
195.208.126.0/24 maxlen: 24
193.232.42.0/24 maxlen: 24
193.232.41.0/24 maxlen: 24
193.232.40.0/24 maxlen: 24
193.232.43.0/24 maxlen: 24
194.190.171.0/24 maxlen: 24
194.190.170.0/24 maxlen: 24
194.190.179.0/24 maxlen: 24
194.190.178.0/24 maxlen: 24
194.190.91.0/24 maxlen: 24
194.190.90.0/24 maxlen: 24
212.193.182.0/24 maxlen: 24
212.193.181.0/24 maxlen: 24
212.193.180.0/24 maxlen: 24
212.193.183.0/24 maxlen: 24
194.190.112.0/24 maxlen: 24
62.76.147.0/24 maxlen: 24
62.76.146.0/24 maxlen: 24
62.76.153.0/24 maxlen: 24
194.190.190.0/24 maxlen: 24
195.19.1.0/24 maxlen: 24
195.19.0.0/24 maxlen: 24
195.19.2.0/24 maxlen: 24
195.19.7.0/24 maxlen: 24
195.209.179.0/24 maxlen: 24
195.209.178.0/24 maxlen: 24
194.226.142.0/24 maxlen: 24
194.226.160.0/24 maxlen: 24
194.226.185.0/24 maxlen: 24
212.193.136.0/21 maxlen: 24
193.232.145.0/24 maxlen: 24
212.192.36.0/22 maxlen: 24
193.232.144.0/24 maxlen: 24
195.209.132.0/24 maxlen: 24
195.209.133.0/24 maxlen: 24
212.192.201.0/24 maxlen: 24
212.192.200.0/24 maxlen: 24
193.232.228.0/24 maxlen: 24
195.209.102.0/24 maxlen: 24
195.209.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:2d:a2:c3:7e:91:08:03:76:7f:46:2e:b3:f5:01:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 21 06:40:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=105abf0af6608297e3f96aed91b5d36a5c1614c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4e:d3:c8:ed:12:0b:07:d9:83:50:55:a8:1b:
01:3a:10:0a:ae:13:28:69:c9:eb:7c:bf:e8:f4:a1:
33:fb:35:5a:57:e5:a2:6d:49:d5:08:77:4f:e5:3e:
f5:06:b7:ac:18:50:f1:89:ae:94:8c:90:96:e8:2c:
27:05:e5:1d:e6:e9:29:f2:3f:02:54:ab:a5:16:8b:
fa:04:7c:c2:12:0e:45:a4:00:17:20:a3:b3:38:c5:
56:4f:35:f3:e2:4f:51:3a:80:a1:dd:dd:77:26:62:
11:84:ae:49:72:4e:43:fe:6c:19:72:f0:70:b8:f8:
92:d5:cf:cf:39:4d:32:3b:38:82:0b:80:28:5a:bf:
7e:2b:ab:f8:4d:1a:d0:f9:6d:87:77:2e:c0:49:51:
db:5f:2e:5d:f6:00:88:61:a4:ca:d6:f1:f7:04:65:
a6:87:5a:d5:e5:33:7c:95:4e:dc:18:c8:05:4c:ae:
23:8e:0b:4a:5a:63:1c:3d:fb:cd:25:e2:4c:52:eb:
5b:f1:8f:6f:32:dc:26:e6:db:3d:22:4d:0f:91:bd:
a2:2c:f2:62:e2:9e:c5:b9:7f:af:af:01:19:7c:2a:
83:50:28:d1:76:25:cd:c1:6f:de:89:0c:59:e5:0a:
a0:2f:da:fe:65:58:75:c7:8c:56:9a:d8:ac:73:b4:
c3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5A:BF:0A:F6:60:82:97:E3:F9:6A:ED:91:B5:D3:6A:5C:16:14:C1
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/EFq_CvZggpfj-WrtkbXTalwWFME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.146.0/23
62.76.153.0/24
193.232.40.0/22
193.232.144.0/23
193.232.228.0/24
194.190.90.0/23
194.190.112.0/24
194.190.170.0/23
194.190.178.0/23
194.190.190.0/24
194.226.142.0/24
194.226.160.0/24
194.226.185.0/24
195.19.0.0-195.19.2.255
195.19.7.0/24
195.19.209.0/24
195.19.213.0/24
195.208.2.0/23
195.208.52.0/22
195.208.60.0/23
195.208.118.0-195.208.127.255
195.208.168.0/23
195.208.181.0/24
195.208.189.0/24
195.209.102.0/23
195.209.132.0/23
195.209.178.0/23
212.192.36.0/22
212.192.200.0/23
212.193.136.0/21
212.193.180.0/22
Signature Algorithm: sha256WithRSAEncryption
53:44:aa:50:d9:e0:d7:b6:91:86:7b:b8:27:f7:e5:e0:f9:7c:
d4:47:32:16:15:af:cb:15:f7:13:c5:18:25:e2:fd:ba:66:12:
1e:f1:96:f8:1a:bb:75:a9:30:21:8b:75:5d:ce:60:9b:22:5e:
71:09:0d:f2:1c:e9:28:3a:8f:76:ca:4f:0a:5f:2b:8a:e6:82:
ea:36:c7:4e:9a:1d:b6:55:8c:fb:b5:d9:9c:98:75:0f:b7:27:
be:62:e0:c4:1d:fb:70:79:f1:04:b9:e8:3c:4a:11:1a:2e:ac:
10:e8:f0:de:f2:07:19:f9:16:aa:28:d0:1a:2a:0a:1d:2b:83:
e8:65:98:7a:d1:55:7f:96:cd:e0:4e:0f:64:3e:38:6b:94:3d:
1f:fd:28:60:e2:a0:b7:1d:d6:cb:77:ad:ef:50:31:d3:42:a3:
c3:a9:33:d6:89:83:60:5f:2a:01:31:f8:1b:b6:7b:14:d2:e6:
ea:e2:b0:84:58:43:5f:50:9b:82:9a:2c:5d:ae:d3:f8:70:80:
df:d3:46:d5:08:5a:35:b0:7c:6f:17:2a:eb:da:36:77:c6:71:
aa:e2:22:5a:a5:87:6f:5a:94:2d:43:a0:c3:da:43:22:f9:7f:
16:c2:f8:e4:b8:04:d2:0a:f5:fb:c8:40:64:09:3a:f7:6f:9b:
93:49:ca:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org