Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0yv5kGtk4EfSVEc9QrGGeXQnyvo.roa
File: 0yv5kGtk4EfSVEc9QrGGeXQnyvo.roa (raw, json)
Hash identifier: x0+azzEwFjYwBuNYT+rVgCZvG/jHIHst2Lv6stzsIAo=
Subject key identifier: D3:2B:F9:90:6B:64:E0:47:D2:54:47:3D:42:B1:86:79:74:27:CA:FA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019175A5742BF354DCFCBADA13DE55B41ED5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0yv5kGtk4EfSVEc9QrGGeXQnyvo.roa
Signing time: Wed 21 Aug 2024 15:54:22 +0000
ROA not before: Wed 21 Aug 2024 15:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 14:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:75:a5:74:2b:f3:54:dc:fc:ba:da:13:de:55:b4:1e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 21 15:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d32bf9906b64e047d254473d42b186797427cafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:ed:4b:79:1d:b1:e7:e7:a4:1c:7c:cd:fc:
61:af:1c:f1:8f:2f:0b:80:42:20:44:a7:6d:c2:88:
0f:72:e6:38:c0:65:84:e8:7d:c9:f9:d3:6b:95:c4:
65:2d:10:5d:b6:b4:3d:f4:a3:88:e3:63:a5:83:08:
b8:7c:6c:f5:c7:1b:2c:0f:93:25:39:af:a5:0b:f4:
5d:91:35:cc:a2:d2:13:62:31:a6:51:96:79:69:8e:
13:4d:ae:76:94:b2:ae:14:74:55:fc:fa:b5:c1:73:
62:58:b6:61:67:59:4c:e2:fd:00:16:ec:ca:db:4b:
36:83:af:ed:c2:36:96:1a:24:83:90:40:7d:f3:7c:
6b:b6:44:ef:c4:32:9d:39:b2:0b:b3:da:49:49:11:
c4:c5:3f:e0:85:a5:02:f2:83:b5:36:e2:04:b3:ad:
51:7a:a2:c3:36:17:64:37:31:7c:25:31:8d:a0:58:
6b:bc:c4:3d:c6:65:0f:e3:fa:cb:3e:6d:ac:d4:d3:
e0:99:e5:ed:f4:f1:20:4c:07:1c:6d:ce:e1:48:b9:
0f:bb:44:1b:f1:dc:fa:b1:93:b5:86:37:4c:56:d0:
b9:9d:00:c3:14:3a:df:ad:78:4f:d2:54:92:0b:a8:
c0:fe:b0:7e:61:aa:78:7c:6a:f9:56:5c:ee:fd:e4:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:2B:F9:90:6B:64:E0:47:D2:54:47:3D:42:B1:86:79:74:27:CA:FA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0yv5kGtk4EfSVEc9QrGGeXQnyvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.108.115.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/23
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.85.0/24
194.87.105.0/24
194.87.116.0-194.87.121.255
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.26.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d9:64:ca:bd:b1:82:22:10:f8:da:a0:36:8e:4d:19:cf:85:
f3:e1:a5:1d:eb:f9:fd:94:5d:5b:da:f5:92:96:78:dd:90:ce:
ce:b6:d5:1e:8f:0c:ac:a3:e9:93:8e:67:73:4b:92:6c:f3:6d:
07:4d:c7:f7:87:60:35:f0:43:6a:14:ff:17:01:ef:18:b3:93:
89:d4:d8:1d:79:fc:e8:bb:04:e5:15:ba:c8:10:c5:28:69:a8:
a0:78:cd:58:5c:0e:19:59:bf:82:3f:8d:11:89:16:7a:59:ca:
03:0c:2b:50:c7:13:b7:76:df:d1:de:ce:86:44:df:a0:cd:96:
13:fe:57:7d:6c:63:76:a6:25:ea:c6:dd:3c:b5:db:0f:5f:c2:
90:b7:09:4c:b1:74:9a:d9:aa:9d:d9:61:1c:d9:c1:ab:00:7c:
e5:83:6a:8f:8a:33:e5:1c:c4:13:5f:54:61:5c:72:ee:e1:39:
af:31:a6:b1:3e:58:2a:53:3b:41:61:f7:2d:6f:44:1a:69:57:
8f:e8:4e:31:19:7d:a9:1c:f5:a3:47:f1:a3:8f:df:be:95:72:
f1:43:2d:1d:78:66:91:73:2b:49:4f:31:d6:c8:b0:6a:1a:99:
84:fc:bd:27:12:af:7d:3e:04:d0:39:68:f8:b1:f5:d6:d0:09:
39:18:ad:18
-----BEGIN CERTIFICATE-----
MIIGpTCCBY2gAwIBAgISAZF1pXQr81Tc/LraE95VtB7VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwODIxMTU1NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzJiZjk5MDZiNjRlMDQ3ZDI1NDQ3M2Q0MmIxODY3OTc0MjdjYWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2btS3kdsefnpBx8zfxhrxzxjy8L
gEIgRKdtwogPcuY4wGWE6H3J+dNrlcRlLRBdtrQ99KOI42Olgwi4fGz1xxssD5Ml
Oa+lC/RdkTXMotITYjGmUZZ5aY4TTa52lLKuFHRV/Pq1wXNiWLZhZ1lM4v0AFuzK
20s2g6/twjaWGiSDkEB983xrtkTvxDKdObILs9pJSRHExT/ghaUC8oO1NuIEs61R
eqLDNhdkNzF8JTGNoFhrvMQ9xmUP4/rLPm2s1NPgmeXt9PEgTAccbc7hSLkPu0Qb
8dz6sZO1hjdMVtC5nQDDFDrfrXhP0lSSC6jA/rB+Yap4fGr5Vlzu/eQDGQIDAQAB
o4IDsTCCA60wHQYDVR0OBBYEFNMr+ZBrZOBH0lRHPUKxhnl0J8r6MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMHl2NWtHdGs0RWZTVkVjOVFyR0dlWFFueXZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBxQYIKwYBBQUHAQcBAf8EggG0MIIBsDCCAawEAgABMIIB
pAMEAD5M4gMEAD5M5wMEAD5M6wMEAMFscwMEAcF8AgMEAMF8BgMEAMF8CAMEAMF8
EgMEAMF8MQMEAMF8WwMEAMF8XgMEAMF8yQMEAcF84gMEAMI6JgMEAMI6KwMEAMI6
LjAMAwQBwjo6AwQAwjo8AwQAwjpDAwQAwlcDAwQBwlcGAwQAwlcQAwQAwlcXAwQA
wlciAwQAwlckAwQBwlcqAwQAwlc1AwQAwlc/AwQAwldOAwQAwldVAwQAwldpMAwD
BALCV3QDBAHCV3gDBADCV6ADBADCV6MwDAMEAMJXpQMEAMJXpgMEAcJXsDAMAwQC
wle0AwQAwle2AwQAwlfNAwQAwlfwAwQAwlfzMAwDBADChxcDBADChxgDBADChy4w
DAMEAMM6NwMEAMM6OAMEAMM6OwMEAMM6PgMEAMOFDAMEAMOFEwMEAMOFFgMEAMOF
GgMEAcOFOgMEAMOFUAMEAMOFUgMEAMOFwwMEANTAAAMEANTABwMEANTACgMEANTA
HgMEAdTA0gMEANTA8QMEANTA9wMEANTBCgMEANTBDwMEANTBHzANBgkqhkiG9w0B
AQsFAAOCAQEAB9lkyr2xgiIQ+NqgNo5NGc+F8+GlHev5/ZRdW9r1kpZ43ZDOzrbV
Ho8MrKPpk45nc0uSbPNtB03H94dgNfBDahT/FwHvGLOTidTYHXn86LsE5RW6yBDF
KGmooHjNWFwOGVm/gj+NEYkWelnKAwwrUMcTt3bf0d7OhkTfoM2WE/5XfWxjdqYl
6sbdPLXbD1/CkLcJTLF0mtmqndlhHNnBqwB85YNqj4oz5RzEE19UYVxy7uE5rzGm
sT5YKlM7QWH3LW9EGmlXj+hOMRl9qRz1o0fxo4/fvpVy8UMtHXhmkXMrSU8x1siw
ahqZhPy9JxKvfT4E0Dlo+LH11tAJORitGA==
-----END CERTIFICATE-----
Generated at Fri Aug 30 17:28:47 2024 by rpki-client on console-fra.rpki-client.org