Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0dAOtKxnefDQdjLdZQYA7WgMEGM.roa
File: 0dAOtKxnefDQdjLdZQYA7WgMEGM.roa (raw, json)
Hash identifier: KYZSOaW+x2nOJB0wA8jMuzfh+q3lkRUC4IAQjmu5Ccc=
Subject key identifier: D1:D0:0E:B4:AC:67:79:F0:D0:76:32:DD:65:06:00:ED:68:0C:10:63
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01858DB40512AB2C36F3FB1092DF0E689281
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0dAOtKxnefDQdjLdZQYA7WgMEGM.roa
Signing time: Sat 07 Jan 2023 19:27:43 +0000
ROA not before: Sat 07 Jan 2023 19:27:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:8d:b4:05:12:ab:2c:36:f3:fb:10:92:df:0e:68:92:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 7 19:27:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1d00eb4ac6779f0d07632dd650600ed680c1063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:18:4c:03:44:67:a7:6d:00:da:88:c0:ca:
86:69:f2:65:af:93:62:56:83:96:de:ef:8d:15:34:
14:1a:68:0a:f1:59:77:d9:c8:06:b7:22:86:6e:ab:
50:7a:1a:52:52:f5:74:0d:8f:e8:c4:6f:6c:7c:cd:
92:86:d9:9a:17:7e:30:ab:1f:0a:d6:c3:3e:f7:ef:
05:2c:a7:b6:2c:26:bc:04:88:41:fb:56:2c:bc:b9:
8a:b8:73:83:52:0e:e0:87:b2:95:44:74:fc:83:0c:
e3:e5:85:65:6b:1e:cf:6b:60:66:03:3c:ba:4d:b6:
03:bf:cb:1b:12:3c:fe:b7:28:3a:76:cf:51:38:a7:
53:41:61:e2:c6:41:77:6c:ed:2b:d3:0b:ba:bf:99:
9a:9d:0f:d2:35:6d:cb:36:6d:41:18:54:55:cb:a1:
43:4c:37:c8:8a:72:9d:e9:47:df:3c:1a:3b:84:68:
77:85:65:59:26:83:13:e9:37:7d:ca:6e:d2:5b:7c:
95:48:f0:68:f4:94:fa:f0:81:4d:a3:d2:b9:be:85:
ab:03:c0:67:62:3d:33:cf:00:79:63:a1:5c:88:2b:
42:9c:e7:42:8c:1e:4c:e5:7c:8f:63:0f:26:58:98:
69:ec:e3:e5:b3:75:f1:6b:9f:e5:62:21:a4:bf:e0:
9a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D0:0E:B4:AC:67:79:F0:D0:76:32:DD:65:06:00:ED:68:0C:10:63
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0dAOtKxnefDQdjLdZQYA7WgMEGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e7:23:cf:f3:df:5a:1a:e8:98:d1:d5:c1:88:2e:79:b5:61:
0c:94:b7:de:4a:2e:a2:84:8b:2d:f3:1d:7b:1f:de:0c:db:a7:
c5:19:42:ea:e9:79:b0:38:88:1e:f1:dc:ee:51:f2:85:cb:cf:
3e:b5:6d:a3:b1:24:0c:50:3c:98:dd:8d:18:11:a7:0c:b4:8d:
24:4b:dd:0b:4a:fc:ba:ec:ec:f5:9e:bf:f5:09:7a:90:87:65:
9b:3a:78:de:1c:8e:5a:c1:cd:95:78:b3:83:4f:f3:fc:77:f9:
1e:ad:3c:bf:26:11:a9:07:e9:a5:4d:ab:9a:2b:83:c8:ac:8d:
6a:b8:20:1e:55:b8:0d:3b:58:67:c6:cd:ed:28:85:88:fb:2e:
d2:60:54:f7:ab:81:d1:ba:49:55:75:d7:9d:55:74:67:2a:9e:
67:ba:20:97:64:69:9e:4b:56:86:54:f6:6b:06:75:db:39:b9:
17:79:e5:8b:ce:73:62:c4:16:54:ae:e9:77:bc:15:8f:e8:53:
cb:81:13:94:6a:e2:e6:15:97:1e:c4:2c:24:02:02:84:9e:48:
74:b1:13:f8:7b:b9:97:ac:1a:b7:47:b3:3e:fb:25:b7:4e:34:
9e:31:87:7d:46:b0:a4:b9:75:ea:27:7b:b9:59:b7:e2:3f:b2:
0f:75:57:45
-----BEGIN CERTIFICATE-----
MIIGXTCCBUWgAwIBAgISAYWNtAUSqyw28/sQkt8OaJKBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTA3MTkyNzQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWQwMGViNGFjNjc3OWYwZDA3NjMyZGQ2NTA2MDBlZDY4MGMxMDYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdEYTANEZ6dtANqIwMqGafJlr5Ni
VoOW3u+NFTQUGmgK8Vl32cgGtyKGbqtQehpSUvV0DY/oxG9sfM2ShtmaF34wqx8K
1sM+9+8FLKe2LCa8BIhB+1YsvLmKuHODUg7gh7KVRHT8gwzj5YVlax7Pa2BmAzy6
TbYDv8sbEjz+tyg6ds9ROKdTQWHixkF3bO0r0wu6v5manQ/SNW3LNm1BGFRVy6FD
TDfIinKd6UffPBo7hGh3hWVZJoMT6Td9ym7SW3yVSPBo9JT68IFNo9K5voWrA8Bn
Yj0zzwB5Y6FciCtCnOdCjB5M5XyPYw8mWJhp7OPls3Xxa5/lYiGkv+CacwIDAQAB
o4IDaTCCA2UwHQYDVR0OBBYEFNHQDrSsZ3nw0HYy3WUGAO1oDBBjMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMGRBT3RLeG5lZkRRZGpMZFpRWUE3V2dNRUdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBfQYIKwYBBQUHAQcBAf8EggFsMIIBaDCCAWQEAgABMIIB
XAMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vgMEAMF8AwMEAMF8BgMEAMF8
CAMEAMF8EgMEAMF8KQMEAMF8LQMEAMF8fQMEAMF8hQMEAMF8yQMEAMF8ywMEAMF8
zwMEAcI6JgMEAMI6KjAMAwQAwjotAwQEwjogAwQAwjo7AwQAwlcGAwQCwlcYAwQA
wlckAwQAwlc4AwQAwldMAwQBwldSAwQAwldoAwQAwld0AwQAwld2AwQAwld7AwQA
wleIAwQBwleKAwQAwleVAwQAwlejAwQAwlelMAwDBADCV6sDBADCV6wDBADCV7AD
BADCV74DBAHCV8YDBAHCV9ADBAHCV94DBADCV+kDBADDOjIwDAMEAsM6NAMEBsM6
AAMEAMOFDAMEAMOFNwMEAMOFXgMEAMOFwwMEAdTAAAMEANTACgMEANTAHgMEANTB
AAMEANTBCAMEANTBDDANBgkqhkiG9w0BAQsFAAOCAQEAYucjz/PfWhromNHVwYgu
ebVhDJS33kouooSLLfMdex/eDNunxRlC6ul5sDiIHvHc7lHyhcvPPrVto7EkDFA8
mN2NGBGnDLSNJEvdC0r8uuzs9Z6/9Ql6kIdlmzp43hyOWsHNlXizg0/z/Hf5Hq08
vyYRqQfppU2rmiuDyKyNarggHlW4DTtYZ8bN7SiFiPsu0mBU96uB0bpJVXXXnVV0
ZyqeZ7ogl2RpnktWhlT2awZ12zm5F3nli85zYsQWVK7pd7wVj+hTy4ETlGri5hWX
HsQsJAIChJ5IdLET+Hu5l6wat0ezPvslt040njGHfUawpLl16id7uVm34j+yD3VX
RQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org