Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8YCTmxHKJUyrb5804dhn4xKLo0g.roa
File: 8YCTmxHKJUyrb5804dhn4xKLo0g.roa (raw, json)
Hash identifier: YoxBTCcJWx3kmxcn+UdfZuLDV7TP3wpup2h8vyhj5zA=
Subject key identifier: F1:80:93:9B:11:CA:25:4C:AB:6F:9F:34:E1:D8:67:E3:12:8B:A3:48
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018726A0FA7106037BF8B61386D309761C7B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8YCTmxHKJUyrb5804dhn4xKLo0g.roa
Signing time: Tue 28 Mar 2023 05:11:36 +0000
ROA not before: Tue 28 Mar 2023 05:11:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:26:a0:fa:71:06:03:7b:f8:b6:13:86:d3:09:76:1c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 28 05:11:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f180939b11ca254cab6f9f34e1d867e3128ba348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:d6:4e:a9:fa:16:4b:ba:f7:65:04:63:64:
54:79:63:e2:da:21:bf:85:1d:4e:70:24:06:15:85:
52:2a:46:f5:b5:f5:49:6d:99:a8:6c:0b:3f:88:c3:
0b:de:98:6a:43:19:e8:85:13:f9:c6:7c:ec:f2:40:
db:fd:33:50:24:8e:60:c1:60:ed:c9:d8:c7:9e:82:
02:ed:d9:76:65:2f:1b:7a:bf:b0:ff:8a:f8:d7:fb:
39:32:9a:4d:ca:5b:b5:92:b5:cd:dc:e3:fe:b0:6c:
70:53:c8:48:a4:73:6f:2f:14:c2:16:22:71:5e:54:
86:9a:a0:3a:39:7a:10:4c:cf:d1:3f:ae:ef:6a:b8:
00:9b:0d:5e:8b:33:9c:f3:83:43:9c:66:19:63:51:
af:42:1f:23:8d:75:62:36:6e:76:29:0e:0d:94:9b:
9c:8a:fd:b9:cf:69:fd:77:69:56:8a:a7:a1:6b:03:
11:78:69:f6:f3:fd:bd:7f:f7:aa:6b:aa:1b:a3:9b:
4e:63:15:70:f7:45:7c:de:fd:72:cb:f1:41:48:3a:
6a:c5:91:9e:d8:a3:a3:bc:81:b9:39:79:a9:75:17:
02:02:fe:bc:5c:67:7d:cf:70:08:88:b3:c9:93:69:
03:d6:0c:ec:df:4f:ef:66:d8:bf:fc:2e:4e:db:ea:
59:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:80:93:9B:11:CA:25:4C:AB:6F:9F:34:E1:D8:67:E3:12:8B:A3:48
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8YCTmxHKJUyrb5804dhn4xKLo0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0-194.58.40.255
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.36.0/23
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
86:7c:b4:8c:87:75:1e:97:2d:b8:0d:00:e4:84:29:44:2a:c6:
b1:75:59:1e:8b:5c:53:0e:ba:4e:30:10:4f:41:0d:98:f9:0c:
91:d3:f4:23:b2:c0:83:23:f6:80:82:35:3c:3b:b4:f7:74:7b:
4a:f0:f7:be:bb:22:e3:93:af:ac:f6:84:7f:4e:69:1c:56:d4:
3a:4f:c6:a7:f5:d7:9c:21:7e:49:d5:8e:39:fc:4e:54:61:68:
a1:a8:fa:dd:9a:ce:e4:9f:14:5b:dc:34:e3:f1:b2:23:f9:94:
09:43:25:1e:03:17:d9:92:27:58:3c:21:e0:83:7b:f1:87:71:
25:2d:62:f5:4d:93:80:17:b9:38:c2:e4:8c:5c:76:34:dc:04:
34:12:2d:d3:0b:ef:c1:5c:de:31:a9:26:a2:2b:67:e9:75:4a:
5c:23:a2:d8:27:43:90:76:4e:74:78:6b:85:ad:f0:2a:40:24:
b4:09:b5:2e:5d:8d:01:6a:e0:46:96:84:a4:09:9e:5c:13:ce:
3b:16:31:1e:05:db:fd:21:b9:57:48:88:40:46:3a:8c:a7:0a:
54:ed:3b:8e:c5:c3:c1:2b:0a:d7:6e:9f:6a:e4:45:81:9f:d2:
aa:2f:6d:33:58:f1:bf:75:75:33:d4:4b:98:b8:5a:44:85:dd:
47:4f:fe:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:56 2023 by rpki-client on console-fra.rpki-client.org