Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/A7gW57lMBpOZYyegR0EZUSdQUh8.roa
File: A7gW57lMBpOZYyegR0EZUSdQUh8.roa (raw, json)
Hash identifier: UarTaKIk1rOnsNOogGUlw13JTw0Y1imlaeAu0FnQHtk=
Subject key identifier: 03:B8:16:E7:B9:4C:06:93:99:63:27:A0:47:41:19:51:27:50:52:1F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01891F23DCDBF844B1534E57AEF35C39FCC2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/A7gW57lMBpOZYyegR0EZUSdQUh8.roa
Signing time: Tue 04 Jul 2023 04:23:11 +0000
ROA not before: Tue 04 Jul 2023 04:23:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.22.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:23:dc:db:f8:44:b1:53:4e:57:ae:f3:5c:39:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 4 04:23:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03b816e7b94c0693996327a0474119512750521f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:94:63:ff:d2:40:6a:b5:8b:08:b8:b7:cb:70:
b6:0c:57:01:a4:7f:44:ac:86:18:e3:20:04:56:b5:
f5:a5:12:dd:3a:0d:ce:84:27:99:bc:5d:7a:2b:0e:
51:0f:d7:fa:14:1a:97:9a:e6:92:1b:9c:f7:3a:d7:
11:71:07:61:db:5b:44:5a:fa:d1:3b:55:b3:32:94:
7a:85:d6:e8:29:2d:5c:48:77:71:eb:e5:cb:cd:a9:
6b:9b:8d:0c:5d:ac:7c:49:49:c7:01:7d:98:33:29:
a4:2e:de:0c:9a:7e:c9:ee:54:f6:07:ea:9c:94:00:
49:37:bd:e3:ac:ac:b4:ae:33:73:7c:8f:5f:bb:d9:
08:5e:56:bb:d0:77:55:b5:52:f5:07:c1:a2:4a:b2:
17:2a:4c:61:ab:41:ea:58:69:b4:b8:ce:f2:10:02:
4a:a2:cc:b2:35:37:3d:2a:c4:d7:f0:cb:45:b6:fb:
3d:83:c5:69:af:cb:0e:2c:67:88:17:97:e1:50:bf:
ce:02:9b:92:1c:85:17:79:21:e2:d5:2f:76:5f:bb:
1b:78:6c:73:33:a6:96:6f:49:b6:3f:06:61:fa:ce:
7e:31:0a:cb:fb:a9:76:fd:f7:0a:59:c5:fb:f3:0f:
16:0e:b9:59:b4:59:80:ad:c0:8d:94:35:7b:0a:a3:
63:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B8:16:E7:B9:4C:06:93:99:63:27:A0:47:41:19:51:27:50:52:1F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/A7gW57lMBpOZYyegR0EZUSdQUh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.3.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.42.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
194.135.46.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.22.0/24
195.133.30.0/24
195.133.35.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.223.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
85:a6:c6:c2:64:68:84:62:97:19:16:20:54:2b:6d:91:99:4a:
33:ce:ff:eb:cf:89:2b:9f:15:2f:92:ee:1a:01:03:9c:81:e6:
09:42:0c:71:d2:3e:be:aa:de:5f:2a:de:df:b5:4d:7e:e9:ce:
1f:2a:ca:f0:0f:db:1b:f1:4c:ce:b0:ac:de:df:24:1e:9f:3d:
2a:4e:cf:9e:9d:98:6f:1a:c9:95:3a:36:49:6a:47:2a:47:97:
8a:b2:e8:3e:3d:ad:f7:9f:50:d2:f0:83:b6:4f:43:4f:ea:5e:
42:56:10:45:fa:77:3a:3c:5d:aa:dc:d0:9c:81:18:3e:ec:72:
e7:40:c4:ce:7f:7d:b9:ac:d2:e0:66:c0:42:4b:b9:ea:87:af:
3d:00:c1:14:0e:2b:f6:58:e7:1b:8d:e4:99:cc:c4:e3:e1:a2:
b0:00:cf:f9:12:8c:0d:cf:16:cc:d0:bc:b2:b8:fa:6f:a7:cf:
cf:17:a0:b5:1d:2e:ac:ed:9d:da:1d:ac:a6:d3:bc:ea:51:63:
f1:25:cc:9d:39:64:58:51:36:6a:fe:fe:b7:50:f8:5e:c1:2c:
09:a0:33:59:e8:af:bf:83:8a:48:ab:87:5e:86:b5:15:bf:f1:
70:a4:e3:95:c5:58:a1:fa:de:3b:20:f5:d6:81:8b:12:bd:6e:
99:f8:40:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org