Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AXdTDsC1asK5lptQISczva5t6W8.roa
File: AXdTDsC1asK5lptQISczva5t6W8.roa (raw, json)
Hash identifier: Jh1wUNVimaj7HhVo4p7laHrkajCntLMLc+aRDNGBy1A=
Subject key identifier: 01:77:53:0E:C0:B5:6A:C2:B9:96:9B:50:21:27:33:BD:AE:6D:E9:6F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0187851078B9A90BD84DE0116E8B26FD8B81
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AXdTDsC1asK5lptQISczva5t6W8.roa
Signing time: Sat 15 Apr 2023 13:17:41 +0000
ROA not before: Sat 15 Apr 2023 13:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:85:10:78:b9:a9:0b:d8:4d:e0:11:6e:8b:26:fd:8b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 15 13:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0177530ec0b56ac2b9969b50212733bdae6de96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:5f:d1:4f:e5:f2:9e:8d:b0:ab:f4:26:23:
7f:af:bc:5a:e4:f9:e4:f8:bc:de:14:58:25:2e:d7:
9c:69:a9:26:fc:ec:a2:47:54:73:ed:7a:6b:a2:3b:
50:61:a6:03:65:b4:31:08:2a:03:9e:ad:22:70:9c:
46:30:ee:6b:b5:c1:c8:49:c7:97:9f:d1:09:6d:29:
30:c0:a0:d9:9a:a5:05:4b:0c:b3:26:49:e9:39:26:
c8:09:45:39:0d:b6:a1:bc:9d:78:90:8a:6e:e9:7e:
64:18:ba:5e:b1:69:cd:4f:1c:87:63:2d:88:30:d4:
c5:58:5a:af:f4:5d:f3:fe:5f:09:c5:cf:dc:23:5c:
e0:44:1f:1a:9a:7f:0f:8a:91:ab:51:97:fe:db:d0:
91:b8:9b:75:1e:0d:3e:73:8a:96:e2:2f:d4:50:90:
ca:74:e1:50:ee:a3:71:a1:59:5e:c6:4a:8d:c8:02:
8b:20:c0:00:7d:06:c5:92:41:e3:c5:dc:d6:c6:58:
6f:20:cd:5c:a8:ed:9d:ad:67:6a:38:82:99:5d:d3:
bf:87:fe:3a:cf:9d:fc:bc:23:1e:b6:3a:a2:22:6a:
f7:43:d4:e4:b2:af:cb:b6:4c:1a:62:05:80:bc:52:
ab:ef:31:e3:40:f7:df:da:b2:4f:48:f5:ba:e3:bc:
4d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:77:53:0E:C0:B5:6A:C2:B9:96:9B:50:21:27:33:BD:AE:6D:E9:6F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AXdTDsC1asK5lptQISczva5t6W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.178.0/24
192.124.180.0/22
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.90.0/24
193.124.93.0/24
193.124.133.0/24
193.124.201.0/24
194.58.38.0/24
194.58.40.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.37.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
31:39:37:b5:d8:be:b9:b2:6f:23:79:c1:3e:99:1b:dd:45:b9:
e0:dd:39:86:3f:07:cd:34:59:61:15:c6:b4:96:52:c0:ef:9f:
18:2b:9b:7f:0c:67:06:b5:7a:b1:ee:5c:11:ea:89:7c:8e:8c:
39:53:fa:a3:c4:8f:ed:e0:23:6e:4d:02:5a:88:f4:c5:01:9f:
a6:ab:35:47:7a:5a:eb:24:8c:4e:57:cd:70:b4:44:62:30:9b:
31:1d:e4:4a:c4:68:62:75:b0:4d:78:61:68:63:c1:b7:51:a5:
c2:46:18:59:d5:d8:fe:26:b8:46:74:16:ab:34:5a:09:c7:46:
62:fa:89:bb:ea:8d:16:58:0e:c7:dd:1f:12:83:36:3c:a2:db:
a9:d2:10:56:79:f2:60:55:59:16:85:e2:4f:41:b4:9f:62:c9:
3e:ca:da:66:e4:34:dc:5a:d5:b5:12:c9:8a:22:e9:79:7a:f3:
3b:d1:92:28:ed:5d:b8:44:f1:c1:f2:90:fa:0f:57:b9:7d:3a:
93:45:60:16:7f:09:c4:89:75:84:1d:7d:1c:8d:f8:94:97:b6:
3f:08:5b:1c:8d:f4:8a:f7:ad:66:cc:50:a4:65:1c:20:da:0a:
37:2f:6c:b3:82:b4:4d:66:b7:86:79:00:81:ea:dc:44:c1:0c:
91:f2:24:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org