Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2xYdl_qExbp0KMoCNVdev-USMJg.roa
File: 2xYdl_qExbp0KMoCNVdev-USMJg.roa (raw, json)
Hash identifier: Dnp3gi6WLuWJW9J02+ReSzlkKqcgF1JQv85SYtR+mzw=
Subject key identifier: DB:16:1D:97:FA:84:C5:BA:74:28:CA:02:35:57:5E:BF:E5:12:30:98
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186033EBADFE473685FFC5F3EB16C0110C8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2xYdl_qExbp0KMoCNVdev-USMJg.roa
Signing time: Mon 30 Jan 2023 15:14:47 +0000
ROA not before: Mon 30 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 23
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:3e:ba:df:e4:73:68:5f:fc:5f:3e:b1:6c:01:10:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 30 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db161d97fa84c5ba7428ca0235575ebfe5123098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cf:87:08:df:5f:dd:59:24:2b:f3:5a:fb:2d:
04:af:6d:91:37:66:5e:e2:31:26:03:21:d4:8d:73:
38:67:ee:d1:32:d7:c7:f9:6e:c1:8c:d3:f7:7d:11:
7b:ab:42:52:57:97:d9:06:93:37:21:51:7d:59:f2:
91:14:b2:ab:85:99:00:87:b2:b2:c7:4c:8e:6e:aa:
d2:25:f4:c4:cb:ff:55:67:cb:39:1d:b4:f9:2c:b8:
7e:a5:0b:5f:c3:9a:6b:c0:6f:4d:ed:19:67:a9:c8:
df:5c:4d:2f:19:40:36:67:4a:1c:9a:3b:9d:e7:d3:
19:05:7b:d9:e8:59:b5:af:2d:bd:4f:34:a3:92:52:
93:88:b3:80:3c:ef:73:4c:e6:45:23:50:aa:2c:87:
29:30:09:e3:76:fa:26:2f:18:d0:7f:a8:f1:dc:71:
33:10:8d:0f:49:af:bd:da:cb:1b:a0:04:90:80:8d:
bc:7e:86:e4:4f:62:5c:5e:a7:8c:7d:a4:a3:9b:ac:
78:b1:48:95:e3:55:8f:f5:06:34:e7:59:77:ba:a4:
af:8e:12:b4:e3:f8:39:4b:a3:78:16:6c:73:da:cd:
35:b1:30:0d:db:cd:78:82:85:4b:b2:51:9e:9f:a0:
af:0b:42:9c:dc:57:69:97:df:3b:e0:1c:ac:b0:74:
2a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:16:1D:97:FA:84:C5:BA:74:28:CA:02:35:57:5E:BF:E5:12:30:98
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2xYdl_qExbp0KMoCNVdev-USMJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.76.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:bc:9b:ac:fb:b2:54:b9:96:0b:6c:ea:a3:7e:d7:2f:a5:de:
0f:82:cf:bf:26:55:02:97:fe:29:64:8b:81:00:ca:05:bf:77:
cb:a1:94:6a:14:39:ec:1f:68:3e:4a:2f:0a:c9:4b:5b:c8:51:
2f:bc:34:d1:0a:fa:97:e5:fd:43:c0:40:22:64:46:b5:92:5e:
c6:04:76:7a:31:50:d3:d6:92:3c:bb:cd:a3:47:62:b8:65:32:
c2:17:67:40:40:8c:50:f0:55:d7:bd:d5:fc:15:52:f8:e2:37:
e3:4e:19:5b:1e:05:2a:7c:69:65:6a:8b:2f:0b:e9:c9:e9:53:
1c:b5:ef:5c:32:96:f9:d0:1d:91:15:6c:57:50:69:12:17:14:
ac:ec:d9:28:3a:47:ea:f4:69:0d:9b:a7:bb:ef:6c:c1:e2:0f:
b5:37:72:2c:da:46:3a:21:d3:bb:c1:06:9b:f7:bf:d4:05:34:
66:1d:a4:f2:3e:72:ff:ac:6e:3a:74:d9:e1:8b:a4:34:52:95:
49:6e:49:2d:de:d6:09:b5:bd:7d:2a:0d:57:c2:6a:12:50:f4:
c4:2c:04:85:a6:07:30:3e:ab:7e:9c:56:40:02:69:96:b8:4e:
db:ed:e3:f8:0c:65:2a:19:d7:5d:dd:ba:a8:93:c9:7a:79:ad:
c9:9d:61:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:54 2023 by rpki-client on console-fra.rpki-client.org