Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/aSuapmQvyurZCLe4_T3lZ7cNWhQ.roa
File: aSuapmQvyurZCLe4_T3lZ7cNWhQ.roa (raw, json)
Hash identifier: ysHyfwY11L1OShcplIaBUCaHNcEixqE1mnPmI492yc0=
Subject key identifier: 69:2B:9A:A6:64:2F:CA:EA:D9:08:B7:B8:FD:3D:E5:67:B7:0D:5A:14
Certificate issuer: /CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Certificate serial: 018CC94C2AFC13F00B02CFBDA05B1D548DC8
Authority key identifier: D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/aSuapmQvyurZCLe4_T3lZ7cNWhQ.roa
Signing time: Tue 02 Jan 2024 08:31:01 +0000
ROA not before: Tue 02 Jan 2024 08:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15580
IP address blocks: 194.127.64.0/24 maxlen: 24
194.127.67.0/24 maxlen: 24
194.127.65.0/24 maxlen: 24
194.127.66.0/24 maxlen: 24
194.127.74.0/24 maxlen: 24
194.127.75.0/24 maxlen: 24
194.127.72.0/24 maxlen: 24
194.127.73.0/24 maxlen: 24
194.127.76.0/24 maxlen: 24
194.127.80.0/20 maxlen: 20
194.127.81.0/24 maxlen: 24
194.127.88.0/24 maxlen: 24
194.127.89.0/24 maxlen: 24
194.127.9.224/27 maxlen: 27
193.194.10.0/23 maxlen: 23
193.194.10.0/24 maxlen: 24
193.194.11.0/24 maxlen: 24
193.194.6.0/23 maxlen: 23
193.194.12.0/22 maxlen: 22
194.127.4.0/24 maxlen: 24
194.127.3.0/24 maxlen: 24
194.127.1.0/24 maxlen: 24
194.127.2.0/24 maxlen: 24
194.127.0.0/18 maxlen: 18
194.127.0.0/24 maxlen: 24
194.127.5.0/24 maxlen: 24
194.127.9.0/24 maxlen: 24
194.127.11.0/24 maxlen: 24
194.127.10.0/24 maxlen: 24
194.127.17.0/24 maxlen: 24
194.127.12.0/24 maxlen: 24
194.127.15.0/24 maxlen: 24
194.127.16.0/24 maxlen: 24
194.127.13.0/24 maxlen: 24
194.127.14.0/24 maxlen: 24
194.127.24.0/23 maxlen: 23
194.127.19.0/24 maxlen: 24
194.127.22.0/24 maxlen: 24
194.127.23.0/24 maxlen: 24
194.127.20.0/24 maxlen: 24
194.127.21.0/24 maxlen: 24
194.127.30.0/24 maxlen: 24
194.127.31.0/24 maxlen: 24
194.127.26.0/24 maxlen: 24
194.127.26.0/23 maxlen: 23
194.127.29.0/24 maxlen: 24
194.127.27.0/24 maxlen: 24
194.127.28.0/24 maxlen: 24
194.127.32.0/22 maxlen: 24
91.206.86.0/24 maxlen: 24
194.127.9.64/27 maxlen: 27
193.58.216.0/24 maxlen: 24
193.58.222.0/24 maxlen: 24
193.58.222.0/23 maxlen: 23
193.58.223.0/24 maxlen: 24
2a01:6f8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 12 Feb 2024 13:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:2a:fc:13:f0:0b:02:cf:bd:a0:5b:1d:54:8d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Validity
Not Before: Jan 2 08:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=692b9aa6642fcaead908b7b8fd3de567b70d5a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dc:41:73:63:90:ec:cb:d7:32:c0:94:dc:f8:
87:cb:77:15:d1:7f:22:bf:3f:b2:15:62:06:a4:80:
d7:a0:2e:2b:b3:60:6a:06:65:d1:30:a3:7e:ec:54:
47:d7:2a:5e:4d:ab:ce:dd:b8:06:ee:60:a7:b0:07:
6a:7f:38:31:b4:3d:29:f6:ba:70:b5:42:dc:9c:71:
23:18:4d:64:fd:47:4f:bb:4b:04:b9:b4:0a:e1:dd:
1f:4b:73:f6:19:15:b5:13:23:3d:e2:17:52:1b:28:
43:b1:64:5a:2e:15:66:a0:7d:24:7c:d0:52:3b:4c:
73:eb:b9:f9:ce:23:69:2f:e4:b1:17:44:e5:1b:61:
19:5e:39:24:35:fa:94:4b:bb:7a:ea:ba:69:40:a2:
a5:ff:df:98:54:35:aa:80:0e:c5:51:59:ff:90:2a:
77:f3:ed:6c:e1:6e:d0:ca:21:e7:b9:09:01:7c:06:
06:77:19:6f:0b:0b:7b:62:72:86:1a:e9:6d:98:83:
ac:98:5a:e3:ba:30:60:0e:e3:38:5e:8b:90:ec:fa:
18:89:b2:c7:85:19:29:3e:ca:ee:6f:e9:ca:16:cd:
e3:6e:0c:1f:12:8d:4c:1e:71:8b:17:19:d3:de:35:
87:88:3d:dd:b1:26:22:01:e2:24:46:ba:57:06:af:
e3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2B:9A:A6:64:2F:CA:EA:D9:08:B7:B8:FD:3D:E5:67:B7:0D:5A:14
X509v3 Authority Key Identifier:
keyid:D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/aSuapmQvyurZCLe4_T3lZ7cNWhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.86.0/24
193.58.216.0/24
193.58.222.0/23
193.194.6.0/23
193.194.10.0-193.194.15.255
194.127.0.0-194.127.67.255
194.127.72.0-194.127.76.255
194.127.80.0/20
IPv6:
2a01:6f8::/32
Signature Algorithm: sha256WithRSAEncryption
93:cc:4d:a0:e3:cf:3b:a6:6c:af:9e:f0:dc:96:ea:95:12:58:
3d:dd:e5:c1:06:b9:6b:29:e1:08:e8:c7:c9:ed:a9:37:84:22:
47:f6:fb:0c:8b:c7:4e:28:3b:db:cf:ef:22:c2:b3:12:ab:56:
b1:b1:23:42:25:72:14:25:62:6b:53:6d:dc:f4:03:a3:6b:b5:
eb:86:70:99:69:21:d0:f8:f8:cd:9d:43:ce:77:5a:1b:0a:b7:
30:17:7e:c9:32:48:21:1c:6f:b3:f4:8f:b8:fc:a1:8e:11:ed:
b8:14:96:71:71:db:e7:47:bb:2b:09:e2:c7:96:94:96:cd:70:
4b:9a:b0:27:db:e6:45:1c:33:12:b3:02:96:d5:a6:98:a0:7d:
17:09:3e:3b:8f:9d:b0:90:93:92:4a:7e:a6:ca:0a:80:1f:d8:
63:fd:d9:7e:b8:dc:bf:8e:b2:dc:9e:4d:64:fa:21:97:95:e3:
33:ee:1c:79:6e:cb:ef:2c:25:65:10:c8:ee:b7:12:20:88:ab:
9e:90:c4:bb:73:d8:56:c3:e4:00:e3:a4:2e:6a:5f:d3:3a:64:
55:83:86:3c:5e:69:2f:2e:40:f0:71:55:42:34:6b:5a:51:1e:
aa:e6:07:d4:48:7d:27:af:2b:53:10:53:50:55:fa:23:01:33:
04:7a:00:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 18:24:49 2024 by rpki-client on console-ams.rpki-client.org