Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/84PmqzGueBp5aim3kzSILZBMFcQ.roa
File: 84PmqzGueBp5aim3kzSILZBMFcQ.roa (raw, json)
Hash identifier: 7aup7ar/aEqw+DMjM45ZFP0rMvrYK7SRH+EnrwL48Rw=
Subject key identifier: F3:83:E6:AB:31:AE:78:1A:79:6A:29:B7:93:34:88:2D:90:4C:15:C4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01875B410C6D15DB7A769959842A22278C98
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/84PmqzGueBp5aim3kzSILZBMFcQ.roa
Signing time: Fri 07 Apr 2023 10:26:42 +0000
ROA not before: Fri 07 Apr 2023 10:26:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213035
IP address blocks: 212.193.31.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
212.193.29.0/24 maxlen: 24
212.193.28.0/24 maxlen: 24
195.133.16.0/24 maxlen: 24
212.192.218.0/24 maxlen: 24
212.192.216.0/24 maxlen: 24
195.133.17.0/24 maxlen: 24
195.133.13.0/24 maxlen: 24
212.192.219.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
195.133.37.0/24 maxlen: 24
212.192.240.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
212.192.243.0/24 maxlen: 24
195.133.42.0/24 maxlen: 24
195.133.43.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5b:41:0c:6d:15:db:7a:76:99:59:84:2a:22:27:8c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 7 10:26:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f383e6ab31ae781a796a29b79334882d904c15c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:53:19:b2:76:af:a1:e9:66:40:48:18:8a:80:
85:3f:36:3c:8f:f8:f7:ee:5c:77:f5:33:ea:67:51:
99:94:b4:bb:b8:0c:4b:72:ca:b9:12:91:2f:5a:5a:
1a:5a:28:b5:1a:ae:18:9e:de:65:1b:69:13:76:da:
6f:bd:3f:f5:52:a2:a0:81:db:e9:cd:69:bc:7c:49:
02:52:20:39:0e:62:64:44:27:85:76:bd:aa:64:c8:
76:8f:7a:67:13:80:b4:f6:d7:cb:0b:c5:66:22:45:
50:ac:ea:8e:5b:c2:45:ea:ec:90:2c:00:e6:3e:d3:
a7:55:51:e8:d9:1c:b9:70:6d:f1:da:1f:cb:af:49:
dd:8d:7b:9e:fb:a2:d2:66:b4:b6:50:2f:9d:14:fb:
4d:6f:c0:89:96:3c:dd:03:a5:77:ee:36:1c:b2:ab:
95:2e:85:2c:c4:94:f4:3a:4a:d5:c1:39:16:b2:69:
cf:a8:54:e0:03:f8:63:87:4d:a8:52:d5:77:24:b5:
3b:a9:c7:7b:d3:5d:6d:70:0b:7a:03:8e:1c:d1:3e:
59:9d:8e:19:62:ae:ac:67:ad:31:f3:06:92:2f:04:
52:35:f7:45:81:42:6d:22:ab:f5:fb:00:c9:9a:41:
d0:7f:48:f5:0c:37:2b:63:83:2a:53:2d:6e:04:36:
78:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:83:E6:AB:31:AE:78:1A:79:6A:29:B7:93:34:88:2D:90:4C:15:C4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/84PmqzGueBp5aim3kzSILZBMFcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.188.0/24
193.124.227.0/24
194.87.84.0/24
194.87.86.0/24
194.87.187.0/24
195.133.13.0/24
195.133.16.0/23
195.133.37.0/24
195.133.42.0/23
212.192.216.0/22
212.192.240.0/24
212.192.243.0/24
212.193.28.0/23
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:7a:2c:5a:49:b2:af:13:f1:b0:d3:8f:dd:c8:c1:66:1b:76:
2c:46:a6:18:1a:6e:03:a1:44:60:dc:e9:5c:1c:8a:34:4e:35:
8c:1b:9c:22:e8:de:51:94:a4:e3:07:45:78:7d:5b:99:6b:f8:
8c:c9:42:59:b5:54:fc:e6:f1:d5:3b:47:7a:8d:c2:5f:43:87:
99:9d:28:b6:2e:2e:3e:2e:15:05:61:e2:f2:82:24:d0:2e:7d:
55:b2:d2:21:59:0e:63:80:bb:fb:fa:8f:8c:e1:06:16:01:3b:
97:0f:68:18:ae:32:69:0d:9e:34:e4:ed:29:10:c3:bf:f5:a0:
65:22:db:df:32:9c:26:f1:50:8c:44:c1:ec:66:7b:ed:8a:43:
83:88:d1:de:84:3a:70:f8:4a:b6:7a:2e:88:9b:26:3c:61:c7:
73:84:af:95:5e:20:51:dd:e4:4f:45:15:99:3b:6d:0c:69:23:
f5:9a:25:1b:01:f6:31:10:0d:12:04:93:81:9b:b3:db:1a:6f:
d7:ca:fc:70:e6:30:03:dd:18:96:9d:1f:6f:16:fc:0c:93:2f:
39:df:3a:99:f0:66:61:21:3d:d4:12:e6:fc:8c:87:a2:fb:06:
94:ce:97:6d:af:ad:6e:12:98:76:9f:26:ee:12:fb:fe:c3:5e:
d7:d9:f0:84
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYdbQQxtFdt6dplZhCoiJ4yYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNDA3MTAyNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzgzZTZhYjMxYWU3ODFhNzk2YTI5Yjc5MzM0ODgyZDkwNGMxNWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1MZsnavoelmQEgYioCFPzY8j/j3
7lx39TPqZ1GZlLS7uAxLcsq5EpEvWloaWii1Gq4Ynt5lG2kTdtpvvT/1UqKggdvp
zWm8fEkCUiA5DmJkRCeFdr2qZMh2j3pnE4C09tfLC8VmIkVQrOqOW8JF6uyQLADm
PtOnVVHo2Ry5cG3x2h/Lr0ndjXue+6LSZrS2UC+dFPtNb8CJljzdA6V37jYcsquV
LoUsxJT0OkrVwTkWsmnPqFTgA/hjh02oUtV3JLU7qcd7011tcAt6A44c0T5ZnY4Z
Yq6sZ60x8waSLwRSNfdFgUJtIqv1+wDJmkHQf0j1DDcrY4MqUy1uBDZ4NQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFPOD5qsxrngaeWopt5M0iC2QTBXEMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvODRQbXF6R3VlQnA1YWltM2t6U0lMWkJNRmNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAwHy8AwQA
wXzjAwQAwldUAwQAwldWAwQAwle7AwQAw4UNAwQBw4UQAwQAw4UlAwQBw4UqAwQC
1MDYAwQA1MDwAwQA1MDzAwQB1MEcAwQA1MEfMA0GCSqGSIb3DQEBCwUAA4IBAQAP
eixaSbKvE/Gw04/dyMFmG3YsRqYYGm4DoURg3OlcHIo0TjWMG5wi6N5RlKTjB0V4
fVuZa/iMyUJZtVT85vHVO0d6jcJfQ4eZnSi2Li4+LhUFYeLygiTQLn1VstIhWQ5j
gLv7+o+M4QYWATuXD2gYrjJpDZ405O0pEMO/9aBlItvfMpwm8VCMRMHsZnvtikOD
iNHehDpw+Eq2ei6ImyY8YcdzhK+VXiBR3eRPRRWZO20MaSP1miUbAfYxEA0SBJOB
m7PbGm/Xyvxw5jAD3RiWnR9vFvwMky853zqZ8GZhIT3UEub8jIei+waUzpdtr61u
Eph2nybuEvv+w17X2fCE
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org