Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AaEPS6NOUiRXKIQ348lVVAZREbQ.roa
File: AaEPS6NOUiRXKIQ348lVVAZREbQ.roa (raw, json)
Hash identifier: RdqOsMQSIVK0ymsKsQcqMvPDSrT+Sfr8MpfhyUxvU2k=
Subject key identifier: 01:A1:0F:4B:A3:4E:52:24:57:28:84:37:E3:C9:55:54:06:51:11:B4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018682C6D95A02A01CD5232575FE136E7ABF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AaEPS6NOUiRXKIQ348lVVAZREbQ.roa
Signing time: Fri 24 Feb 2023 09:35:15 +0000
ROA not before: Fri 24 Feb 2023 09:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 23
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:c6:d9:5a:02:a0:1c:d5:23:25:75:fe:13:6e:7a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 24 09:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a10f4ba34e522457288437e3c95554065111b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:09:a0:73:9c:f4:a7:4a:c0:c7:67:68:46:f6:
0e:25:38:5d:b3:9a:a6:8c:e2:a6:ae:6d:13:8a:b8:
fe:2d:8a:48:53:21:e3:f8:50:0c:f3:6e:13:8e:dd:
2f:ae:29:d1:52:34:f0:15:19:5a:2c:9b:51:fd:8f:
53:fc:1c:88:85:d6:44:1f:22:bd:89:96:79:aa:f6:
95:a1:ec:f6:a5:29:a0:67:10:18:d5:d8:81:06:fb:
03:56:ff:7a:c6:31:b9:45:f5:19:39:ce:b7:83:04:
5a:dc:ff:60:60:00:e0:fe:a7:8d:08:8f:ad:af:39:
42:72:6c:21:8c:04:b3:e4:09:fc:e7:b1:60:c3:bb:
18:d0:9e:c1:9a:25:61:d3:2c:4c:3b:f5:86:58:24:
c6:c3:a9:9b:78:cc:f9:95:9a:06:8b:c5:e2:bf:ef:
eb:b0:65:98:e7:63:28:59:9b:4e:40:ce:5a:2b:29:
d5:aa:9d:d7:0a:07:da:c4:ac:e5:bc:57:9e:2f:6f:
c4:43:ed:d1:0b:43:8e:49:e5:62:54:dc:cd:52:95:
63:e6:a5:69:51:9d:9b:7e:66:2d:65:09:a2:e0:e2:
34:ee:5d:f8:18:90:e2:9a:9d:bd:fe:1e:d6:1f:5b:
fa:c5:85:d1:a4:a2:56:ad:69:d3:69:8e:39:dc:22:
d0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:0F:4B:A3:4E:52:24:57:28:84:37:E3:C9:55:54:06:51:11:B4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/AaEPS6NOUiRXKIQ348lVVAZREbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.36.0/23
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.76.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:4e:cb:17:80:78:18:a4:30:d8:25:b7:fa:02:a0:06:2e:96:
ce:10:15:2d:f5:86:92:96:08:7c:14:cf:b0:dd:69:0e:0d:4c:
91:d1:89:b8:a1:11:45:40:db:68:c1:18:de:2a:4e:54:51:7b:
c8:2f:b3:a6:06:cf:86:cb:23:80:d0:14:44:2b:5d:e6:12:64:
58:04:24:e4:f4:8b:ef:d9:76:8e:98:71:de:fa:b1:73:e2:22:
f3:e9:03:ab:79:57:42:54:29:02:b5:c9:ff:bd:ec:32:c7:93:
38:d6:95:7a:1a:f1:66:8c:8c:6b:1e:a2:84:58:41:82:41:fd:
19:38:ad:d5:84:4f:aa:f3:8f:9a:43:7b:25:bf:89:f7:7d:fb:
b0:71:de:1a:ad:80:8c:1d:03:f9:de:dd:a9:10:76:6e:2a:d7:
54:d1:8b:1b:02:ea:60:78:72:1a:6b:a3:e1:2e:cd:e3:e0:41:
1c:f5:4e:02:e7:d9:b8:4b:7a:b5:7e:46:36:5e:1a:3a:81:c5:
b0:de:0f:0a:5c:2b:49:6c:a7:32:59:73:58:6c:d3:9e:0a:12:
9d:7f:a8:b7:c0:b2:7a:4d:c5:3f:5c:a1:76:37:1d:83:c3:c7:
65:98:4f:07:08:88:09:cc:dc:30:ae:8b:0d:df:a5:ef:a6:fb:
54:19:c1:77
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgISAYaCxtlaAqAc1SMldf4Tbnq/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMjI0MDkzNTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWExMGY0YmEzNGU1MjI0NTcyODg0MzdlM2M5NTU1NDA2NTExMWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwmgc5z0p0rAx2doRvYOJThds5qm
jOKmrm0Tirj+LYpIUyHj+FAM824Tjt0vrinRUjTwFRlaLJtR/Y9T/ByIhdZEHyK9
iZZ5qvaVoez2pSmgZxAY1diBBvsDVv96xjG5RfUZOc63gwRa3P9gYADg/qeNCI+t
rzlCcmwhjASz5An857Fgw7sY0J7BmiVh0yxMO/WGWCTGw6mbeMz5lZoGi8Xiv+/r
sGWY52MoWZtOQM5aKynVqp3XCgfaxKzlvFeeL2/EQ+3RC0OOSeViVNzNUpVj5qVp
UZ2bfmYtZQmi4OI07l34GJDimp29/h7WH1v6xYXRpKJWrWnTaY453CLQeQIDAQAB
o4IDjzCCA4swHQYDVR0OBBYEFAGhD0ujTlIkVyiEN+PJVVQGURG0MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvQWFFUFM2Tk9VaVJYS0lRMzQ4bFZWQVpSRWJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAYoEAgABMIIB
ggMEAD5M4QMEAT5M5gMEAD5M6QMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8BgMEAMF8
CQMEAMF8EAMEAMF8LAMEAMF8UAMEAMF8XQMEAMF8yQMEAMF8zwMEAcI6JgMEAMI6
LwMEAMI6OwMEAMI6QwMEAMJXATAMAwQAwlcDAwQAwlcEAwQAwlcHMAwDBADCVwsD
BADCVwwDBADCVxADBALCVxgDBAHCVyQDBADCVyoDBADCVzgDBADCV0kDBADCV0wD
BADCV1MDBADCV2gDBAHCV3IDBADCV3oDBAHCV4IDBADCV5UDBADCV6YDBADCV6gw
DAMEAcJXqgMEAMJXrAMEAsJXsAMEAMJXtgMEAMJXuwMEAMJXvgMEAMJXyAMEAMJX
ygMEAMJX3gMEAMJX8AMEAMKHEgMEAMKHFzAMAwQAwzojAwQAwzokAwQAwzoyAwQA
wzo2AwQAwzo4AwQAw4UAAwQAw4UaAwQAw4UeAwQAw4UjAwQBw4XCAwQA1MABAwQA
1MAKMA0GCSqGSIb3DQEBCwUAA4IBAQAaTssXgHgYpDDYJbf6AqAGLpbOEBUt9YaS
lgh8FM+w3WkODUyR0Ym4oRFFQNtowRjeKk5UUXvIL7OmBs+GyyOA0BREK13mEmRY
BCTk9Ivv2XaOmHHe+rFz4iLz6QOreVdCVCkCtcn/vewyx5M41pV6GvFmjIxrHqKE
WEGCQf0ZOK3VhE+q84+aQ3slv4n3ffuwcd4arYCMHQP53t2pEHZuKtdU0YsbAupg
eHIaa6PhLs3j4EEc9U4C59m4S3q1fkY2Xho6gcWw3g8KXCtJbKcyWXNYbNOeChKd
f6i3wLJ6TcU/XKF2Nx2Dw8dlmE8HCIgJzNwwrosN36XvpvtUGcF3
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org