Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C3SrPkcIPYMfREvZpq8AfieOC6o.roa
File: C3SrPkcIPYMfREvZpq8AfieOC6o.roa (raw, json)
Hash identifier: FQc4y/46PycHbLiFaJz8Z2pFULRX4dBjRPY/NjvPVig=
Subject key identifier: 0B:74:AB:3E:47:08:3D:83:1F:44:4B:D9:A6:AF:00:7E:27:8E:0B:AA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185A5D6F02780516C739B429580CB57CCA3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C3SrPkcIPYMfREvZpq8AfieOC6o.roa
Signing time: Thu 12 Jan 2023 11:56:44 +0000
ROA not before: Thu 12 Jan 2023 11:56:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jan 2023 18:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:d6:f0:27:80:51:6c:73:9b:42:95:80:cb:57:cc:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 12 11:56:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b74ab3e47083d831f444bd9a6af007e278e0baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:a4:08:2f:b0:d8:e5:97:80:f7:d0:2f:82:
94:c3:8f:00:6c:d5:99:e7:55:71:b7:47:79:e4:b7:
62:e2:dc:81:cd:6e:8f:f0:47:e8:a6:9c:f5:bf:53:
f1:08:b1:65:13:94:38:8e:de:fc:ed:94:b9:71:73:
57:31:b2:02:39:f7:9d:04:f1:90:24:a7:bd:4b:af:
86:b8:16:60:62:e1:87:4b:36:ca:bb:d0:ba:77:2d:
30:fa:68:fc:ae:c4:2f:be:41:c3:50:ab:99:02:c2:
f2:aa:f6:30:31:98:70:b6:54:72:6b:58:6b:94:cb:
67:06:51:6a:8a:ba:82:5a:39:ff:74:f8:47:b3:af:
29:79:b8:38:68:57:b0:ea:bc:97:a1:5f:17:d5:53:
5d:f6:c7:47:9b:7f:24:71:2e:20:16:9d:5f:dc:11:
1f:53:bd:ea:99:0b:26:aa:c6:b2:c1:41:d7:08:b5:
43:ff:83:b0:45:d4:a8:7c:21:50:fd:69:ef:24:52:
8f:3b:0e:34:aa:d0:d4:08:4d:87:4a:27:3a:0d:f8:
45:84:13:c0:90:75:0e:11:16:c6:85:5a:24:c7:e2:
ad:3c:07:94:c9:87:11:ce:3a:92:8d:70:88:e1:57:
2c:07:5f:1b:8e:b8:9b:e4:0b:20:48:5b:73:e6:b9:
df:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:74:AB:3E:47:08:3D:83:1F:44:4B:D9:A6:AF:00:7E:27:8E:0B:AA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/C3SrPkcIPYMfREvZpq8AfieOC6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.58.155.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0/24
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.194.0/23
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8b:96:14:cc:3c:72:03:b5:2c:4b:e8:2b:c3:ea:01:4b:c2:
22:6f:98:a7:a4:04:6e:ea:13:4a:01:09:12:d7:7d:52:4b:6e:
6e:8b:b0:42:5c:f7:64:64:3c:9e:40:14:03:3d:51:67:44:89:
29:8a:bc:65:da:de:de:b7:10:e7:71:b6:bc:82:e3:19:7b:dc:
4d:ce:a7:11:7c:e5:fb:cb:9f:b3:ee:5c:d4:a2:0c:87:5a:9e:
0a:62:ab:34:60:8e:56:24:57:cf:0b:77:ca:bf:cd:cc:c6:7c:
e3:bb:05:67:80:98:ea:aa:02:90:6e:f1:ff:30:23:22:8b:01:
d1:47:17:da:6a:ca:be:1b:e5:25:08:76:52:75:08:36:66:d8:
17:7b:6e:b6:56:a9:75:cd:7c:c5:9f:56:09:34:37:5e:ae:5c:
b2:e8:62:84:0f:c5:91:89:18:9c:9a:51:83:17:b3:fb:60:81:
36:22:b1:09:02:11:bc:ed:03:b3:b9:99:9d:b6:ce:10:a9:f9:
a7:53:04:50:db:77:14:90:c8:5c:fd:eb:ac:dd:6c:55:aa:b9:
83:d3:55:a8:7a:d6:6a:64:e7:00:42:56:e3:69:e7:d7:6c:c4:
81:d8:80:b1:26:ed:5b:0f:87:53:bc:94:e7:a2:ff:80:80:5c:
dc:cc:09:1b
-----BEGIN CERTIFICATE-----
MIIGVzCCBT+gAwIBAgISAYWl1vAngFFsc5tClYDLV8yjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTEyMTE1NjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjc0YWIzZTQ3MDgzZDgzMWY0NDRiZDlhNmFmMDA3ZTI3OGUwYmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8P6kCC+w2OWXgPfQL4KUw48AbNWZ
51Vxt0d55Ldi4tyBzW6P8Efoppz1v1PxCLFlE5Q4jt787ZS5cXNXMbICOfedBPGQ
JKe9S6+GuBZgYuGHSzbKu9C6dy0w+mj8rsQvvkHDUKuZAsLyqvYwMZhwtlRya1hr
lMtnBlFqirqCWjn/dPhHs68pebg4aFew6ryXoV8X1VNd9sdHm38kcS4gFp1f3BEf
U73qmQsmqsaywUHXCLVD/4OwRdSofCFQ/WnvJFKPOw40qtDUCE2HSic6DfhFhBPA
kHUOERbGhVokx+KtPAeUyYcRzjqSjXCI4VcsB18bjrib5AsgSFtz5rnfyQIDAQAB
o4IDYzCCA18wHQYDVR0OBBYEFAt0qz5HCD2DH0RL2aavAH4njguqMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvQzNTclBrY0lQWU1mUkV2WnBxOEFmaWVPQzZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB
VgMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vgMEAMF8AwMEAMF8BgMEAMF8
CAMEAMF8EgMEAMF8hQMEAMF8yQMEAMF8ywMEAMF8zwMEAcI6JgMEAMI6KjAMAwQA
wjotAwQEwjogAwQAwjo7AwQAwjqbAwQBwlcGAwQCwlcYAwQAwlckAwQAwlc4AwQA
wldMAwQBwldSAwQAwldoMAwDBAHCV3IDBADCV3QDBADCV3YDBADCV3sDBADCV4gD
BAHCV4oDBADCV5UDBADCV6MDBADCV6UDBADCV6sDBADCV7ADBADCV74DBAHCV8YD
BADCV8oDBAHCV9ADBAHCV94DBADCV+kDBADDOjIwDAMEAsM6NAMEBsM6AAMEAMOF
DAMEAMOFNwMEAMOFVgMEAMOFXgMEAcOFwgMEAdTAAAMEANTAHgMEANTBAAMEANTB
CAMEANTBDDANBgkqhkiG9w0BAQsFAAOCAQEAY4uWFMw8cgO1LEvoK8PqAUvCIm+Y
p6QEbuoTSgEJEtd9UktubouwQlz3ZGQ8nkAUAz1RZ0SJKYq8Zdre3rcQ53G2vILj
GXvcTc6nEXzl+8ufs+5c1KIMh1qeCmKrNGCOViRXzwt3yr/NzMZ847sFZ4CY6qoC
kG7x/zAjIosB0UcX2mrKvhvlJQh2UnUINmbYF3tutlapdc18xZ9WCTQ3Xq5csuhi
hA/FkYkYnJpRgxez+2CBNiKxCQIRvO0Ds7mZnbbOEKn5p1MEUNt3FJDIXP3rrN1s
Vaq5g9NVqHrWamTnAEJW42nn12zEgdiAsSbtWw+HU7yU56L/gIBc3MwJGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:09 2024 by rpki-client on console-fra.rpki-client.org