Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/289-VeyYdpR5om0P6xVrF6wNgmM.roa
File: 289-VeyYdpR5om0P6xVrF6wNgmM.roa (raw, json)
Hash identifier: pJcLTVREykFNa3SpKiRu454LUdQ9G3n1wc8VrKZf+kk=
Subject key identifier: DB:CF:7E:55:EC:98:76:94:79:A2:6D:0F:EB:15:6B:17:AC:0D:82:63
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A28A11804E076D9CA9E55FFA94CB7358C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/289-VeyYdpR5om0P6xVrF6wNgmM.roa
Signing time: Thu 24 Aug 2023 17:39:20 +0000
ROA not before: Thu 24 Aug 2023 17:39:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
195.58.36.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
194.87.108.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
194.87.222.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:28:a1:18:04:e0:76:d9:ca:9e:55:ff:a9:4c:b7:35:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 24 17:39:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbcf7e55ec98769479a26d0feb156b17ac0d8263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:51:e5:f3:12:64:e4:f5:2a:ec:f3:05:ed:91:
b9:5b:ec:58:87:90:99:18:53:4e:33:88:fd:e4:2c:
d7:02:de:7f:eb:5b:03:f5:b2:71:98:d5:20:85:45:
14:bc:f0:76:4a:c3:e4:15:bb:51:cc:53:4d:a8:78:
d0:aa:36:3b:53:5d:2b:8d:d9:09:fb:7f:2d:e5:df:
25:4a:a4:77:37:be:16:88:e9:0c:2a:b0:3e:e3:5c:
47:b1:f4:bc:43:4f:cf:39:8f:fc:ff:80:48:f7:b1:
07:ff:d5:9b:08:4e:5a:9f:81:ed:48:aa:2c:12:e1:
cf:d0:66:95:d0:5e:7c:78:aa:39:a0:a4:d0:68:17:
48:52:67:47:36:ec:55:8a:43:ea:fc:23:e4:c9:e5:
0d:b8:9a:f7:34:7c:e8:66:d5:71:62:97:13:16:4b:
36:ac:93:42:92:34:16:de:36:4a:8f:1f:58:0b:12:
d5:84:29:a7:cc:e9:ef:0c:69:e3:b2:f4:d5:22:19:
9a:21:67:62:c2:ac:11:0b:5a:e7:d2:ef:d1:13:46:
68:d7:d1:9e:37:c0:b1:31:d9:a1:45:ab:a6:5b:bc:
c7:32:8b:53:b1:3d:9c:d9:c5:ff:9d:35:3c:16:34:
1f:2a:6f:ef:61:70:c7:f1:c5:60:54:07:19:fa:b7:
c2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CF:7E:55:EC:98:76:94:79:A2:6D:0F:EB:15:6B:17:AC:0D:82:63
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/289-VeyYdpR5om0P6xVrF6wNgmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.178.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
193.124.200.0/24
194.58.47.0/24
194.58.154.0/24
194.87.1.0/24
194.87.11.0-194.87.12.255
194.87.24.0/22
194.87.40.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/24
194.87.134.0/23
194.87.151.0/24
194.87.168.0/24
194.87.177.0/24
194.87.179.0/24
194.87.190.0/24
194.87.200.0/24
194.87.222.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.30.0/24
195.133.73.0/24
195.133.84.0/23
212.192.241.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:28:75:d7:d3:fa:2c:eb:8d:81:e8:8e:27:d1:c0:73:f1:2a:
74:5d:a5:44:82:51:42:2b:11:30:ed:c0:a2:9a:25:ef:8b:37:
a5:cb:c2:bf:9a:93:da:00:4c:0b:4f:13:b9:b6:6d:84:f8:f4:
7c:ab:0d:15:f0:50:07:9f:d0:99:8a:e8:7b:4d:f8:b2:05:a1:
9d:5a:c7:72:f1:c4:97:90:7a:39:9f:c4:a8:ce:33:63:69:93:
f0:1d:16:61:82:cb:b5:a7:52:76:c6:bd:46:a6:20:de:04:71:
68:ab:54:42:4a:d0:09:54:73:0c:87:3c:80:df:96:25:9f:cc:
d0:85:d0:75:2d:24:45:55:d5:f5:ed:fe:8d:67:a1:12:0f:7c:
c9:d2:1c:04:44:52:96:6b:dd:4f:ee:33:9f:07:ca:d6:91:8e:
6d:a2:a3:5c:cb:95:17:68:c2:e7:ab:45:55:e2:a4:11:57:98:
41:e9:ca:2e:db:76:3a:07:fb:4d:4c:ec:d4:82:1e:aa:b9:e8:
f6:0f:44:c2:b0:ec:1d:bf:53:94:45:8c:14:8a:b5:57:20:4a:
70:be:b0:2d:e0:bb:95:1c:d0:80:cf:b9:11:8c:70:87:f3:86:
16:df:de:7c:12:f3:d2:a0:b7:de:2d:b5:7e:a4:28:ca:1b:54:
3a:38:ee:86
-----BEGIN CERTIFICATE-----
MIIF4zCCBMugAwIBAgISAYoooRgE4HbZyp5V/6lMtzWMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwODI0MTczOTIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmNmN2U1NWVjOTg3Njk0NzlhMjZkMGZlYjE1NmIxN2FjMGQ4MjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1Hl8xJk5PUq7PMF7ZG5W+xYh5CZ
GFNOM4j95CzXAt5/61sD9bJxmNUghUUUvPB2SsPkFbtRzFNNqHjQqjY7U10rjdkJ
+38t5d8lSqR3N74WiOkMKrA+41xHsfS8Q0/POY/8/4BI97EH/9WbCE5an4HtSKos
EuHP0GaV0F58eKo5oKTQaBdIUmdHNuxVikPq/CPkyeUNuJr3NHzoZtVxYpcTFks2
rJNCkjQW3jZKjx9YCxLVhCmnzOnvDGnjsvTVIhmaIWdiwqwRC1rn0u/RE0Zo19Ge
N8CxMdmhRaumW7zHMotTsT2c2cX/nTU8FjQfKm/vYXDH8cVgVAcZ+rfCpQIDAQAB
o4IC7zCCAuswHQYDVR0OBBYEFNvPflXsmHaUeaJtD+sVaxesDYJjMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMjg5LVZleVlkcFI1b20wUDZ4VnJGNndOZ21NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBAwYIKwYBBQUHAQcBAf8EgfMwgfAwge0EAgABMIHmAwQA
wHyyAwQAwXwQAwQAwXxQAwQAwXyFAwQAwXzIAwQAwjovAwQAwjqaAwQAwlcBMAwD
BADCVwsDBADCVwwDBALCVxgDBADCVygDBADCVzgDBADCV0kDBADCV1MDBADCV2wD
BAHCV3IDBADCV3oDBADCV3wDBADCV4IDBAHCV4YDBADCV5cDBADCV6gDBADCV7ED
BADCV7MDBADCV74DBADCV8gDBADCV94DBADDOiQDBADDOjYDBAHDOjoDBAHDOj4D
BADDhQADBAHDhQYDBADDhR4DBADDhUkDBAHDhVQDBADUwPEwDQYJKoZIhvcNAQEL
BQADggEBAE0oddfT+izrjYHojifRwHPxKnRdpUSCUUIrETDtwKKaJe+LN6XLwr+a
k9oATAtPE7m2bYT49HyrDRXwUAef0JmK6HtN+LIFoZ1ax3LxxJeQejmfxKjOM2Np
k/AdFmGCy7WnUnbGvUamIN4EcWirVEJK0AlUcwyHPIDfliWfzNCF0HUtJEVV1fXt
/o1noRIPfMnSHAREUpZr3U/uM58HytaRjm2io1zLlRdowuerRVXipBFXmEHpyi7b
djoH+01M7NSCHqq56PYPRMKw7B2/U5RFjBSKtVcgSnC+sC3gu5Uc0IDPuRGMcIfz
hhbf3nwS89Kgt94ttX6kKMobVDo47oY=
-----END CERTIFICATE-----
Generated at Fri Aug 25 10:58:29 2023 by rpki-client on console-fra.rpki-client.org