Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G01k9UFOr1638lhVp6veOO6q25k.roa
File: G01k9UFOr1638lhVp6veOO6q25k.roa (raw, json)
Hash identifier: APOb1KCjzv+IN8356pAWr6NsRNAcHFDMhQVVcdbq/2Y=
Subject key identifier: 1B:4D:64:F5:41:4E:AF:5E:B7:F2:58:55:A7:AB:DE:38:EE:AA:DB:99
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189D4A82B4853B7868D08619A6F99343DC4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G01k9UFOr1638lhVp6veOO6q25k.roa
Signing time: Tue 08 Aug 2023 10:18:58 +0000
ROA not before: Tue 08 Aug 2023 10:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
195.58.36.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
194.87.108.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
194.87.222.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:a8:2b:48:53:b7:86:8d:08:61:9a:6f:99:34:3d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 8 10:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b4d64f5414eaf5eb7f25855a7abde38eeaadb99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:c5:b6:27:a9:7b:45:f3:a8:1d:1b:7a:28:
4b:2c:e3:57:a2:d2:9b:3b:06:e6:b8:0d:28:3e:61:
7b:e9:9e:88:1b:ff:36:aa:0f:69:13:c6:50:ac:d7:
b6:d5:b2:8c:f9:0b:b4:92:a6:c6:35:4b:41:21:15:
83:4a:3f:3c:11:19:2f:2e:fa:f5:3c:88:b9:a2:23:
95:43:52:30:86:18:44:c4:84:f8:0d:08:28:c3:20:
b6:2c:95:e5:75:66:18:62:28:1b:e7:83:46:7f:13:
e8:77:7b:94:23:55:d5:b7:02:f5:e1:05:9a:27:1e:
7d:7a:4e:55:42:0b:84:4e:3c:98:d9:b4:5a:89:7c:
e1:c0:ae:4d:5c:1a:38:bf:49:14:06:8b:69:3b:51:
3b:26:28:38:77:02:76:90:08:af:61:46:2c:da:7f:
52:bd:6e:5b:81:4d:a1:a8:56:72:df:bb:33:0f:5c:
83:6e:48:bb:58:23:0b:07:5f:b2:e0:fb:52:76:1d:
c5:2c:f4:e2:3b:e5:c0:f3:66:b9:1d:bd:20:9f:ac:
fb:ab:36:bf:a1:04:7a:12:dd:8d:51:4d:cd:e4:71:
e5:4b:fb:0c:c3:26:a7:ec:7c:0d:07:f1:0f:d3:11:
94:ee:12:04:8e:8b:d8:3f:1d:8e:59:f6:a9:74:50:
0f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4D:64:F5:41:4E:AF:5E:B7:F2:58:55:A7:AB:DE:38:EE:AA:DB:99
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G01k9UFOr1638lhVp6veOO6q25k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.178.0/24
192.124.182.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
193.124.200.0/24
194.58.47.0/24
194.58.154.0/24
194.87.1.0/24
194.87.11.0-194.87.12.255
194.87.24.0/22
194.87.40.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.151.0/24
194.87.168.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.222.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.30.0/24
195.133.73.0/24
195.133.84.0/23
195.133.194.0/24
212.192.241.0/24
Signature Algorithm: sha256WithRSAEncryption
58:cf:a9:c9:b5:04:ac:3f:64:a3:04:31:fb:20:5a:93:86:fa:
fa:d9:d9:19:39:bd:6f:9f:ae:9a:8c:5a:0d:dd:e0:1c:95:9b:
8f:e3:d7:6c:3a:94:96:68:31:0b:65:76:c4:e4:43:09:b0:24:
db:56:b7:ad:c7:e7:cc:df:13:f7:d8:32:03:22:f2:bf:46:9f:
89:d9:8b:1c:cc:13:cb:87:9b:83:41:c5:3f:3b:9f:1c:d5:43:
66:93:8e:a5:b3:45:98:d1:3d:59:11:91:1e:a2:d8:06:ad:bb:
45:20:f7:b8:39:b6:d3:cb:c4:a3:cc:21:83:7b:74:e4:72:2c:
64:b9:e8:fa:4e:f7:c5:15:ba:62:7f:c3:04:2b:9f:fc:4c:bc:
9d:08:67:8d:a1:5a:d1:01:2d:27:36:a7:a6:bd:8a:1a:9a:a9:
d9:78:1a:22:36:c6:8c:fd:14:e3:10:c0:3b:98:4f:a9:8a:b8:
d3:74:c0:42:4b:a8:b0:17:49:d9:cd:c4:c7:bc:01:59:1e:e1:
73:6c:d6:13:6a:ad:dd:1e:26:64:ec:57:9b:a3:88:40:a8:4c:
30:70:8e:28:b5:36:85:a4:d7:a4:98:cd:a8:3b:7e:4c:f4:6f:
da:96:c0:73:00:21:a8:39:9c:f3:ae:c0:d0:1d:22:b7:c3:b7:
24:b9:09:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 14:34:21 2023 by rpki-client on console-ams.rpki-client.org