Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zVjgqSAOcpKS14wHq8wpORMkc4.roa
File: 5zVjgqSAOcpKS14wHq8wpORMkc4.roa (raw, json)
Hash identifier: legiJqw9lHU2Ep9ONb4I6z3LQh6+sWpJVnZUs/Y62Vo=
Subject key identifier: E7:35:63:82:A4:80:39:CA:4A:4B:5E:30:1E:AF:30:A4:E4:4C:91:CE
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018952965A2A97E16ED3674ED57400B8EDC5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zVjgqSAOcpKS14wHq8wpORMkc4.roa
Signing time: Fri 14 Jul 2023 04:08:52 +0000
ROA not before: Fri 14 Jul 2023 04:08:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:52:96:5a:2a:97:e1:6e:d3:67:4e:d5:74:00:b8:ed:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 04:08:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7356382a48039ca4a4b5e301eaf30a4e44c91ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:87:45:55:03:02:a9:bd:d6:da:3d:34:fb:
32:c7:4d:9a:98:9b:59:4c:56:95:bc:7b:9e:95:1c:
ec:26:a8:3f:51:67:a1:4a:cf:9d:ab:b9:53:f7:72:
13:0f:bd:8e:85:73:af:ff:06:52:b4:58:79:61:25:
a9:74:52:8e:95:27:05:97:e0:e9:72:09:3b:20:37:
c2:e6:5c:20:e4:8b:bb:6a:b6:e8:56:5a:72:51:4b:
18:f1:7a:c2:d3:19:c6:fd:fe:24:29:b7:2f:79:80:
43:13:c5:53:c3:e4:ec:00:b9:a7:20:4b:48:09:b4:
5c:cb:1d:1e:49:7c:96:78:29:41:f8:ff:09:82:92:
04:55:e6:ff:b0:a6:8f:11:68:c9:24:f2:cd:a2:3e:
92:ca:c6:38:f0:f5:38:e3:ab:0a:ac:69:4d:42:54:
cb:14:2f:df:35:35:db:f1:e2:2f:ea:35:17:c8:ff:
cd:4a:a3:f2:4d:45:0f:29:a6:10:90:04:52:4d:5f:
f8:6b:59:ca:f1:f6:42:87:d9:26:cc:3c:93:3b:5b:
b6:da:6a:c2:83:2c:88:61:a9:d0:0d:ca:99:30:c8:
e2:2e:53:a6:a2:27:68:c5:50:69:eb:65:05:8d:19:
3e:a1:4c:6e:f2:96:dc:0c:48:40:15:f2:12:d3:23:
c5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:35:63:82:A4:80:39:CA:4A:4B:5E:30:1E:AF:30:A4:E4:4C:91:CE
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zVjgqSAOcpKS14wHq8wpORMkc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.35.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
1e:3b:b6:b2:7c:eb:e1:cf:ac:12:1f:1e:1b:17:81:b5:e7:44:
f8:86:a8:4b:d9:43:ff:68:ab:e2:1f:00:70:59:10:af:b1:1f:
dd:d3:b0:a6:0b:8d:15:04:31:81:ed:27:c0:d1:47:8a:73:dc:
82:25:6b:c7:57:fd:2c:33:40:93:be:5b:2b:35:c6:25:e0:3b:
86:b7:49:03:e6:d6:21:4a:f0:77:50:a3:5d:a4:15:6b:61:6f:
14:20:c7:6e:4e:ad:a1:85:9d:c7:e9:5e:61:07:0a:fa:9c:c9:
a4:c1:25:5e:2e:e3:d3:c5:58:5e:b6:cb:09:47:9e:b0:21:68:
15:21:d1:d3:a8:94:86:eb:2f:66:88:e1:d8:cc:b1:f7:8b:e3:
46:1c:f0:b4:7d:c0:ca:3b:b0:53:f8:c2:28:94:a8:16:4c:9a:
e0:fa:4c:81:fa:c6:c5:43:33:bf:2f:54:63:5f:48:c7:22:03:
3b:ce:37:c9:09:65:c8:fb:50:eb:fb:90:aa:fb:19:7e:f1:ee:
b4:30:40:46:88:8c:04:cd:ac:42:28:b0:e1:d1:0a:50:26:9e:
03:66:dd:13:86:78:57:b0:75:35:bb:6a:6b:dc:71:a4:56:02:
ea:e9:18:be:94:0f:4d:2d:1f:4f:71:69:9c:4b:df:02:ce:83:
14:2e:4b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org