Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-L1eiPn1MY9XBVa4J7tmBpyR1GI.roa
File: 1-L1eiPn1MY9XBVa4J7tmBpyR1GI.roa (raw, json)
Hash identifier: hSDfNv70MiQfhPYGEr9/X5j8oyjU048ObExChiRUTeA=
Subject key identifier: F8:BD:5E:88:F9:F5:31:8F:57:05:56:B8:27:BB:66:06:9C:91:D4:62
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018681C85E837FD5E975DB101A57BF8122FC
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-L1eiPn1MY9XBVa4J7tmBpyR1GI.roa
Signing time: Fri 24 Feb 2023 04:57:17 +0000
ROA not before: Fri 24 Feb 2023 04:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
212.192.211.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:81:c8:5e:83:7f:d5:e9:75:db:10:1a:57:bf:81:22:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 24 04:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8bd5e88f9f5318f570556b827bb66069c91d462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:71:ef:61:60:40:6a:ed:02:21:6b:40:20:57:
4e:1e:af:6a:ce:2a:4e:96:0d:1c:25:68:1c:73:18:
12:05:c7:90:73:20:69:6b:13:ac:97:03:4a:39:43:
ed:ff:d4:af:0a:70:d5:e4:a2:bc:cb:1e:4f:42:d8:
99:5b:09:cc:7c:f2:e8:ad:b0:d6:d8:0b:72:fa:19:
0c:90:57:62:7e:37:13:1b:1b:02:30:61:cf:07:50:
c0:60:40:c1:cd:32:71:f9:41:b8:bb:30:08:5f:65:
28:df:91:15:79:bd:e7:55:5d:ca:0d:d2:38:7b:9e:
17:99:01:cd:56:ef:24:66:7b:2b:76:df:e9:38:74:
ee:51:63:c3:c2:e7:ea:45:c9:01:b3:7c:61:78:81:
5d:2a:cd:9d:5c:b1:5f:03:38:b7:9d:94:1b:b6:32:
a4:10:7f:df:23:e6:78:04:6d:ad:34:b1:c6:7a:a9:
00:a8:99:48:5f:a1:c8:d7:f9:0f:fe:86:d3:27:1f:
0d:cf:03:27:a9:0c:ed:7f:b0:a7:f8:36:b4:b7:73:
8e:2b:53:f5:7c:51:fd:b2:bd:90:67:81:eb:e5:dd:
7c:4e:c1:3c:6d:b1:55:f3:dc:6f:b0:ad:26:96:a0:
41:59:9b:3b:2d:84:dc:cd:e1:0f:1b:ef:47:cd:82:
35:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BD:5E:88:F9:F5:31:8F:57:05:56:B8:27:BB:66:06:9C:91:D4:62
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-L1eiPn1MY9XBVa4J7tmBpyR1GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.172.0/24
192.124.182.0/23
193.124.8.0/24
193.124.133.0/24
193.124.203.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.87.6.0/24
194.87.22.0/24
194.87.27.0/24
194.87.82.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.165.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.55.0/24
195.133.94.0/24
195.133.193.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.192.211.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
93:30:e7:fb:cd:7f:82:f2:b7:da:3a:eb:8a:e2:dc:92:00:21:
4f:39:b3:9b:76:52:c1:2b:4a:44:98:0f:41:91:42:13:eb:c8:
65:56:66:cf:b9:e0:34:f0:02:4c:e0:6d:2f:7f:40:0d:da:ea:
53:b7:8f:e3:1a:1f:16:7f:e0:fb:2e:b4:f1:7c:30:3c:23:8b:
28:fd:f4:85:35:69:ef:03:77:8c:75:a6:2e:a3:7f:a8:a4:03:
dc:0d:04:fb:1a:1a:25:83:27:9a:87:3a:15:22:71:b3:db:13:
3a:9f:30:e6:81:a5:b9:76:1c:c2:d7:ac:2f:57:e5:77:0b:10:
4f:da:06:cd:65:3f:50:72:0b:5d:95:40:a8:69:22:95:4f:51:
47:15:28:cf:e0:db:88:54:d9:68:99:05:61:75:e3:17:5e:92:
06:d1:0f:2c:a2:3d:14:22:2a:d1:74:a2:66:f3:aa:a4:ab:fa:
92:26:19:3a:ce:31:7e:d4:92:be:26:77:ce:13:4c:57:e5:8a:
bb:07:b8:34:99:af:76:d9:b7:69:50:1b:ba:4c:a2:6c:63:51:
14:0a:3c:e3:8e:9e:86:68:9d:11:b2:c3:65:db:0a:08:2d:24:
cd:11:aa:9a:79:a3:7c:b0:e8:a0:68:cd:e6:e6:78:62:a6:70:
d7:25:83:62
-----BEGIN CERTIFICATE-----
MIIF4jCCBMqgAwIBAgISAYaByF6Df9XpddsQGle/gSL8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMjI0MDQ1NzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGJkNWU4OGY5ZjUzMThmNTcwNTU2YjgyN2JiNjYwNjljOTFkNDYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnHvYWBAau0CIWtAIFdOHq9qzipO
lg0cJWgccxgSBceQcyBpaxOslwNKOUPt/9SvCnDV5KK8yx5PQtiZWwnMfPLorbDW
2Aty+hkMkFdifjcTGxsCMGHPB1DAYEDBzTJx+UG4uzAIX2Uo35EVeb3nVV3KDdI4
e54XmQHNVu8kZnsrdt/pOHTuUWPDwufqRckBs3xheIFdKs2dXLFfAzi3nZQbtjKk
EH/fI+Z4BG2tNLHGeqkAqJlIX6HI1/kP/obTJx8NzwMnqQztf7Cn+Da0t3OOK1P1
fFH9sr2QZ4Hr5d18TsE8bbFV89xvsK0mlqBBWZs7LYTczeEPG+9HzYI1vwIDAQAB
o4IC7jCCAuowHQYDVR0OBBYEFPi9Xoj59TGPVwVWuCe7ZgackdRiMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMS1MMWVpUG4xTVk5WEJWYTRKN3RtQnB5UjFHSS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0
My8xL05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCCAQEGCCsGAQUFBwEHAQH/BIHxMIHuMIHrBAIAATCB5AME
AMB8rAMEAcB8tgMEAMF8CAMEAMF8hQMEAMF8ywMEAMI6KjAMAwQAwjotAwQEwjog
AwQAwlcGAwQAwlcWAwQAwlcbAwQAwldSMAwDBAHCV3IDBADCV3QDBADCV3YDBADC
V3sDBADCV34DBADCV4gDBAHCV4oDBADCV6UDBADCV6sDBADCV8YDBAHCV9ADBAHC
V94DBADCV+kDBADDOjIwDAMEAsM6NAMEBsM6AAMEAMOFNwMEAMOFXgMEAMOFwQME
AMOFwwMEAdTAAAMEAdTA0AMEANTA0wMEANTBAAMEANTBDDANBgkqhkiG9w0BAQsF
AAOCAQEAkzDn+81/gvK32jrriuLckgAhTzmzm3ZSwStKRJgPQZFCE+vIZVZmz7ng
NPACTOBtL39ADdrqU7eP4xofFn/g+y608XwwPCOLKP30hTVp7wN3jHWmLqN/qKQD
3A0E+xoaJYMnmoc6FSJxs9sTOp8w5oGluXYcwtesL1fldwsQT9oGzWU/UHILXZVA
qGkilU9RRxUoz+DbiFTZaJkFYXXjF16SBtEPLKI9FCIq0XSiZvOqpKv6kiYZOs4x
ftSSviZ3zhNMV+WKuwe4NJmvdtm3aVAbukyibGNRFAo8446ehmidEbLDZdsKCC0k
zRGqmnmjfLDooGjN5uZ4YqZw1yWDYg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:54 2023 by rpki-client on console-fra.rpki-client.org