Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0Q3ELrVuxepu80WvPviQN4TCM1Y.roa
File: 0Q3ELrVuxepu80WvPviQN4TCM1Y.roa (raw, json)
Hash identifier: 066UioXVM1kZtWkbr9PVm6spewFJXXZ+Br1KB7MvAoA=
Subject key identifier: D1:0D:C4:2E:B5:6E:C5:EA:6E:F3:45:AF:3E:F8:90:37:84:C2:33:56
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018608938CBA1C3AFB6AEF7C38E7299C7B37
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0Q3ELrVuxepu80WvPviQN4TCM1Y.roa
Signing time: Tue 31 Jan 2023 16:05:32 +0000
ROA not before: Tue 31 Jan 2023 16:05:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 23
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:93:8c:ba:1c:3a:fb:6a:ef:7c:38:e7:29:9c:7b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 31 16:05:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d10dc42eb56ec5ea6ef345af3ef8903784c23356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:93:32:46:8a:87:f2:9f:d2:74:8a:b0:aa:
e1:38:51:22:cb:38:ae:12:65:cd:ce:ed:e5:46:96:
88:5c:59:e3:16:88:ae:b6:08:f2:e0:ee:8d:c8:e0:
e3:80:db:c7:87:72:bd:b0:84:af:94:74:28:70:a2:
71:b8:05:1e:b8:18:c7:ba:dd:c0:0e:7b:f3:af:df:
40:7d:dc:f0:02:bb:21:33:2a:ad:66:41:69:b0:6a:
08:0d:40:96:47:b7:73:1c:9f:2b:3e:02:8c:e6:62:
ea:af:c5:5d:4b:55:21:01:91:95:40:42:b8:bf:cf:
de:58:4c:d0:dc:a3:58:4c:bc:90:4e:59:e5:54:ea:
fb:9a:3c:fb:1f:f9:4b:10:93:c7:5d:97:3d:5d:3d:
3c:b8:56:37:df:55:b5:8a:22:c3:f0:61:2d:2f:56:
d7:b7:9c:71:15:4e:f6:a0:6b:32:83:a4:c7:a4:6c:
d2:8c:fc:b5:e0:c9:3a:20:c2:be:c1:3d:0b:a0:88:
98:ec:0a:0f:d1:44:f1:b5:ce:ac:fc:47:00:cd:d7:
df:27:80:44:3b:46:2d:23:79:d1:7b:1d:36:67:26:
e7:14:89:fd:7c:ed:e6:8e:fc:18:3e:3a:f8:41:61:
44:cc:04:c5:45:c6:5f:af:be:10:31:f0:db:5d:18:
f0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0D:C4:2E:B5:6E:C5:EA:6E:F3:45:AF:3E:F8:90:37:84:C2:33:56
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0Q3ELrVuxepu80WvPviQN4TCM1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.76.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:0e:75:b9:ab:6c:63:08:ec:dd:c4:68:5c:d5:0c:69:17:33:
72:18:a2:38:cb:f9:9c:5f:ac:7e:47:6b:08:f9:d2:ac:a3:3a:
6e:ed:59:d8:7a:9a:7e:84:25:c4:bd:78:cf:ed:b4:23:e6:e5:
d2:cb:dc:86:de:96:f5:59:4a:93:91:3f:3f:be:7f:6a:1f:20:
52:ea:ac:f0:d8:81:cc:87:b4:1b:ec:00:26:d4:e9:c0:6b:8d:
9e:6f:60:72:f2:ac:ab:fd:64:b1:a8:02:84:02:be:f3:09:c4:
04:56:6b:9e:72:92:11:b2:1f:13:bb:98:a0:44:4c:d9:4b:41:
3d:a2:25:e8:cf:dc:da:19:00:c4:eb:1b:c1:2c:e1:7d:3e:19:
77:1e:f3:96:1b:0e:48:34:9c:7e:5b:5e:c6:28:c4:d8:c7:b4:
8a:72:2c:2e:60:86:4f:7e:6b:fd:a8:de:de:5b:50:fa:de:28:
1f:93:3c:f8:fe:2a:50:15:29:23:2a:82:3f:0f:0c:1f:fc:84:
2c:10:25:83:a4:d8:1c:66:59:99:c9:ee:b4:83:12:aa:0d:06:
06:58:69:ce:4b:93:b3:6b:8e:9f:2e:48:4a:22:3c:c7:ad:c2:
11:72:94:0a:73:5d:ba:8a:1b:35:67:df:cd:de:bd:50:04:c9:
cc:7a:df:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org