Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MaW1nApc-42OY0WLoRDwVwJPtg.roa
File: 0MaW1nApc-42OY0WLoRDwVwJPtg.roa (raw, json)
Hash identifier: Rmmhu5en6/J7QeQqH2bEKNTjtMLl3bA0pcxF6y/Ak64=
Subject key identifier: D0:C6:96:D6:70:29:73:EE:36:39:8D:16:2E:84:43:C1:5C:09:3E:D8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186B54061961C9D0056F270AE8BC936F619
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MaW1nApc-42OY0WLoRDwVwJPtg.roa
Signing time: Mon 06 Mar 2023 04:49:00 +0000
ROA not before: Mon 06 Mar 2023 04:49:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b5:40:61:96:1c:9d:00:56:f2:70:ae:8b:c9:36:f6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 6 04:49:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0c696d6702973ee36398d162e8443c15c093ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ed:9e:4f:8b:88:b2:9d:d3:b1:64:ba:72:9b:
60:2a:e8:3e:5d:db:6a:95:66:7d:45:15:a9:75:61:
0e:0d:df:a9:df:44:81:ef:a9:7c:d3:af:90:7e:83:
35:12:b9:13:07:3b:f6:de:92:30:a2:2c:f0:85:66:
d8:aa:8b:4f:5c:e2:14:6c:40:97:15:0b:23:7d:45:
66:c8:02:82:be:5c:0c:67:4b:9b:35:e7:da:d7:5c:
40:79:fa:e5:08:ef:0e:10:8e:71:2d:5e:c6:8d:78:
6a:54:b0:09:8c:ba:ae:db:33:0f:8d:87:a7:a6:5f:
df:8d:b2:fd:7d:48:f3:b8:70:06:a0:48:20:37:a1:
4a:51:75:8b:99:b6:cf:b8:4f:89:7e:c1:00:08:dd:
20:49:d7:df:52:11:71:ee:c4:d3:07:ef:32:5f:c6:
1f:31:1b:08:43:94:ea:6c:fb:b0:b6:b8:21:d6:59:
c2:40:3e:08:26:b7:7e:ab:8d:10:10:f6:da:9b:e5:
af:1b:fe:06:7a:64:6b:4c:e4:9d:d9:c8:78:61:03:
04:4b:f9:1b:08:09:0f:89:c7:f1:5c:8d:2f:79:95:
bf:d1:f0:14:29:ca:b6:cc:7f:6b:13:5d:aa:90:70:
8e:d6:56:10:a1:50:3d:69:70:5d:ef:6f:8e:5d:df:
fe:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C6:96:D6:70:29:73:EE:36:39:8D:16:2E:84:43:C1:5C:09:3E:D8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MaW1nApc-42OY0WLoRDwVwJPtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.36.0/23
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
61:a4:60:7c:34:09:c7:3b:b5:a3:14:f4:c8:b6:0c:00:ac:5c:
af:51:c5:fd:84:a2:81:63:ae:75:92:b9:5d:b8:21:bd:be:df:
7a:8a:72:28:fb:59:2e:77:29:f1:5d:5a:8e:52:48:95:48:dd:
ff:e4:29:87:f0:8d:76:bf:95:db:58:f1:9a:13:8f:4e:a0:d8:
7c:53:44:c7:87:74:2d:0f:fe:05:d2:1e:ff:61:ff:5a:53:82:
f1:8f:97:9e:68:5d:8c:a0:77:96:ed:f3:c7:30:5e:87:ae:1e:
dd:81:35:67:66:9a:51:74:0d:d6:27:e5:50:eb:0d:5e:27:eb:
c3:a4:cb:5b:24:84:22:46:92:bd:83:01:2e:83:17:d3:9c:15:
06:44:bf:76:07:27:58:6e:a4:0d:ae:9e:2b:dc:52:66:5a:9f:
64:cd:a2:0f:af:79:11:53:ed:a7:9a:c4:fb:1e:36:c7:09:dd:
1d:09:d4:5a:0a:51:38:0f:e5:4f:e9:2a:f9:ee:d4:74:58:64:
55:f6:c4:21:a6:d8:83:58:fa:90:e8:9a:0b:f4:1f:93:dd:cc:
11:f5:7e:02:26:d1:4f:24:8c:8b:9f:f0:b0:87:57:1d:56:f7:
6b:52:8d:a3:95:53:4c:ad:c9:13:fd:6a:80:ca:bb:a4:38:6d:
3a:e8:f3:9d
-----BEGIN CERTIFICATE-----
MIIGfTCCBWWgAwIBAgISAYa1QGGWHJ0AVvJwrovJNvYZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzA2MDQ0OTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGM2OTZkNjcwMjk3M2VlMzYzOThkMTYyZTg0NDNjMTVjMDkzZWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0u2eT4uIsp3TsWS6cptgKug+Xdtq
lWZ9RRWpdWEODd+p30SB76l806+QfoM1ErkTBzv23pIwoizwhWbYqotPXOIUbECX
FQsjfUVmyAKCvlwMZ0ubNefa11xAefrlCO8OEI5xLV7GjXhqVLAJjLqu2zMPjYen
pl/fjbL9fUjzuHAGoEggN6FKUXWLmbbPuE+JfsEACN0gSdffUhFx7sTTB+8yX8Yf
MRsIQ5TqbPuwtrgh1lnCQD4IJrd+q40QEPbam+WvG/4GemRrTOSd2ch4YQMES/kb
CAkPicfxXI0veZW/0fAUKcq2zH9rE12qkHCO1lYQoVA9aXBd72+OXd/+gwIDAQAB
o4IDiTCCA4UwHQYDVR0OBBYEFNDGltZwKXPuNjmNFi6EQ8FcCT7YMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvME1hVzFuQXBjLTQyT1kwV0xvUkR3VndKUHRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBnQYIKwYBBQUHAQcBAf8EggGMMIIBiDCCAYQEAgABMIIB
fAMEAD5M4QMEAT5M5gMEAD5M6QMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8BgMEAMF8
CQMEAMF8EAMEAMF8LAMEAMF8UAMEAMF8XQMEAMF8yQMEAMF8zwMEAcI6JgMEAMI6
LwMEAMI6OwMEAMI6QwMEAMJXATAMAwQAwlcDAwQAwlcEAwQAwlcHMAwDBADCVwsD
BADCVwwDBADCVxADBALCVxgDBAHCVyQDBADCVyoDBADCVzgDBADCV0kDBADCV1MD
BADCV2gDBAHCV3IDBADCV3oDBAHCV4IDBADCV5UDBADCV6YDBADCV6gwDAMEAcJX
qgMEAMJXrAMEAsJXsAMEAMJXtgMEAMJXuwMEAMJXvgMEAMJXyAMEAMJXygMEAMJX
3gMEAMJX8AMEAMKHEgMEAMKHFzAMAwQAwzojAwQAwzokAwQAwzoyAwQAwzo2AwQA
wzo4AwQAw4UAAwQAw4UaAwQAw4UeAwQAw4UjAwQBw4XCAwQA1MABAwQA1MAKMA0G
CSqGSIb3DQEBCwUAA4IBAQBhpGB8NAnHO7WjFPTItgwArFyvUcX9hKKBY651krld
uCG9vt96inIo+1kudynxXVqOUkiVSN3/5CmH8I12v5XbWPGaE49OoNh8U0THh3Qt
D/4F0h7/Yf9aU4Lxj5eeaF2MoHeW7fPHMF6Hrh7dgTVnZppRdA3WJ+VQ6w1eJ+vD
pMtbJIQiRpK9gwEugxfTnBUGRL92BydYbqQNrp4r3FJmWp9kzaIPr3kRU+2nmsT7
HjbHCd0dCdRaClE4D+VP6Sr57tR0WGRV9sQhptiDWPqQ6JoL9B+T3cwR9X4CJtFP
JIyLn/Cwh1cdVvdrUo2jlVNMrckT/WqAyrukOG066POd
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org