Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AEip5Qgga868HAinJbpnPb_wxOE.roa
File: AEip5Qgga868HAinJbpnPb_wxOE.roa (raw, json)
Hash identifier: AqYqMqtrtlwTpnwLlIJ45ridboZkLn5Zkp+mEZKnlR0=
Subject key identifier: 00:48:A9:E5:08:20:6B:CE:BC:1C:08:A7:25:BA:67:3D:BF:F0:C4:E1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01881DAC4689AF177EC2985BF929A7076398
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AEip5Qgga868HAinJbpnPb_wxOE.roa
Signing time: Mon 15 May 2023 04:30:09 +0000
ROA not before: Mon 15 May 2023 04:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.67.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.79.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.84.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.41.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.53.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.209.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1d:ac:46:89:af:17:7e:c2:98:5b:f9:29:a7:07:63:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 15 04:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0048a9e508206bcebc1c08a725ba673dbff0c4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:46:b6:61:36:9b:61:f6:d6:e7:60:0a:a6:08:
69:b3:5e:8f:c3:17:50:b4:02:45:1f:59:5a:9c:62:
87:1d:4d:af:3a:ec:66:9f:ea:a2:25:46:c9:83:3b:
42:af:49:0f:56:f3:bf:3d:72:39:eb:61:de:14:b4:
0e:eb:56:10:31:e2:3f:0f:dd:3a:f2:46:d5:30:c6:
e1:d0:e3:bd:a2:e5:1e:91:a1:a5:95:67:08:88:56:
0e:a6:76:26:b0:d5:7e:86:f8:6e:1c:36:03:5d:50:
71:81:8c:db:4a:99:e0:d3:04:fa:0a:ed:05:83:bf:
4a:4e:54:87:41:0e:76:af:96:5a:7f:39:22:e2:34:
be:6d:75:82:06:c9:91:cf:0d:6a:b3:25:88:5f:bb:
5e:7c:49:a2:df:34:8f:11:25:d1:19:d7:62:dc:df:
87:5c:bb:e1:0a:be:26:3d:2f:bd:d0:3c:0e:cb:97:
46:f0:c8:6e:92:8c:ac:e9:25:2d:59:c8:51:f3:69:
9b:bf:99:20:ab:1d:cb:20:6f:6f:4c:61:13:7c:ec:
73:9d:43:97:ee:41:ea:5e:c1:67:4b:96:7d:0c:15:
13:09:b6:cd:a3:1a:de:45:f2:c4:50:79:40:8a:cd:
5f:43:bd:eb:96:bd:b9:16:ea:bd:65:3f:63:c0:d2:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:48:A9:E5:08:20:6B:CE:BC:1C:08:A7:25:BA:67:3D:BF:F0:C4:E1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AEip5Qgga868HAinJbpnPb_wxOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0-192.124.191.255
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.36.0/24
193.124.44.0/24
193.124.49.0/24
193.124.80.0/24
193.124.90.0/24
193.124.93.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0-193.124.202.255
193.124.204.0/24
193.124.226.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.6.0/23
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0-194.87.27.255
194.87.36.0/23
194.87.43.0-194.87.44.255
194.87.51.0/24
194.87.56.0/24
194.87.67.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.104.0/23
194.87.114.0/23
194.87.119.0/24
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/23
194.87.179.0/24
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.209.0/24
194.87.221.0-194.87.222.255
194.87.227.0/24
194.87.240.0/24
194.87.243.0/24
194.135.18.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.35.0-195.58.36.255
195.58.51.0/24
195.58.53.0-195.58.54.255
195.58.56.0/24
195.58.58.0/23
195.58.61.0-195.58.63.255
195.133.0.0/24
195.133.19.0/24
195.133.22.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.41.0/24
195.133.74.0/24
195.133.79.0/24
195.133.84.0/23
195.133.194.0/23
212.192.1.0/24
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
65:96:85:0d:de:21:15:52:c4:11:4a:97:91:c1:76:21:69:97:
86:81:32:47:8f:53:26:13:7c:c4:05:74:7b:c2:41:45:4d:34:
23:02:d7:bc:e7:d3:bb:6d:a1:c1:62:ba:76:c4:20:b1:4f:75:
e7:55:ba:69:7b:1f:8e:59:12:7f:35:49:2b:04:a8:0a:c7:63:
96:84:92:93:23:49:9c:7b:de:30:74:36:2a:02:21:08:88:fc:
05:74:56:06:41:a6:e4:27:7b:2c:b5:bd:6a:eb:92:ba:df:74:
a3:20:e0:ec:59:65:66:10:1a:be:3b:c1:8c:f6:fa:79:10:96:
3b:c8:8e:9c:b7:25:a7:86:59:89:42:7b:f9:c9:9d:a6:7e:7c:
1d:c0:f4:4b:3e:3a:41:4d:09:d7:9d:ae:fb:0f:4d:48:e7:ad:
b8:bf:4b:ba:70:51:e7:48:dc:da:63:de:d4:ad:cf:65:f1:0f:
ef:15:62:61:25:bc:d7:15:b5:4c:4d:ec:e0:fd:b3:d2:4f:b8:
6c:9a:83:c8:42:ac:46:27:aa:e4:9f:25:3c:1c:ad:c0:91:dd:
7e:c5:d4:b2:e2:88:45:d3:4c:6c:ca:c4:c8:d6:c3:9e:6a:10:
d6:5c:4d:c1:ab:b9:9c:39:ab:a8:b8:b9:8d:1e:b7:d2:0d:bc:
aa:fd:58:38
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:57 2023 by rpki-client on console-fra.rpki-client.org