Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G1O38m2v5LXKk7jnGW7rMnIt0QA.roa
File: G1O38m2v5LXKk7jnGW7rMnIt0QA.roa (raw, json)
Hash identifier: 2NVtmZOEDJo7XEqM2NCmflCbeIK3JoHjjsEQOvTMXp0=
Subject key identifier: 1B:53:B7:F2:6D:AF:E4:B5:CA:93:B8:E7:19:6E:EB:32:72:2D:D1:00
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186F330CE23BC052D0A308BC4D40582A05B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G1O38m2v5LXKk7jnGW7rMnIt0QA.roa
Signing time: Sat 18 Mar 2023 05:28:27 +0000
ROA not before: Sat 18 Mar 2023 05:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:30:ce:23:bc:05:2d:0a:30:8b:c4:d4:05:82:a0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 18 05:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b53b7f26dafe4b5ca93b8e7196eeb32722dd100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:10:77:97:dd:a7:df:16:2b:f3:74:95:15:09:
c7:77:2a:0b:27:6c:7b:6e:91:d3:c8:ec:b6:e0:97:
ed:9b:45:c4:82:c8:34:16:01:01:b9:98:14:78:73:
84:ab:ca:5b:b9:9d:fd:40:e2:75:5f:0b:05:d1:0d:
89:d0:42:e3:68:5e:88:94:78:4b:81:99:8a:c6:52:
7e:42:30:f1:1a:d2:b0:b2:8d:32:61:3d:30:8f:ff:
ab:6b:56:b2:91:25:cf:fe:1b:d8:a4:60:15:e5:03:
a7:00:3c:f1:30:d0:95:20:fb:b8:41:01:47:38:ad:
21:dd:af:5e:0b:b1:e6:e0:47:40:94:a9:c6:65:dd:
e7:9b:d8:00:67:ee:cd:62:d1:2f:fa:31:2a:e8:eb:
60:c9:09:77:8a:02:0d:59:aa:35:52:a9:ac:3f:35:
d5:00:5b:64:8d:ed:cf:0f:0d:6d:33:85:51:8a:9d:
25:b7:70:72:96:e3:43:79:61:b1:68:e6:b9:6f:75:
4e:e4:bb:f1:7d:e9:86:51:55:c1:82:11:9a:a1:89:
f6:22:d6:8c:d9:41:32:e7:49:01:d2:7a:5a:41:8d:
ac:25:fb:e7:b5:f8:69:0c:e1:46:a8:e3:09:7c:dc:
95:a5:ae:0c:40:ad:61:39:ff:8f:c8:2e:49:ed:f4:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:53:B7:F2:6D:AF:E4:B5:CA:93:B8:E7:19:6E:EB:32:72:2D:D1:00
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G1O38m2v5LXKk7jnGW7rMnIt0QA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0-194.58.40.255
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.36.0/23
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
54:55:25:b7:1e:4c:86:81:2a:ab:eb:21:bd:00:bb:e6:0b:db:
32:9c:72:ab:d8:54:1d:4f:70:67:da:3a:45:82:a7:71:64:44:
ab:f1:f9:0d:a2:ca:a6:9a:ef:8f:27:08:ad:f9:f5:6c:b9:2f:
76:3c:4e:b1:f7:a5:dc:dd:63:e9:6c:1d:89:b7:e4:56:12:9b:
e2:5f:10:80:1b:69:d6:fb:fb:25:0e:55:5e:f4:44:5d:ac:15:
57:b2:7b:71:d4:e9:a1:25:d7:49:e1:a6:71:a3:79:82:06:68:
fb:af:8e:ca:4d:bc:0f:9b:60:dd:66:54:29:86:c0:73:ce:29:
42:0f:ae:6f:31:43:e3:09:97:c8:c5:9a:53:9a:3b:6d:ca:44:
e5:58:ca:d1:30:54:c7:a7:bc:4a:21:fc:50:82:46:27:f5:96:
80:fe:43:f2:ae:be:37:3c:9a:73:2b:57:22:98:16:08:7c:12:
a6:79:5e:ff:47:39:22:72:bd:3e:de:71:94:ef:87:c0:4b:0c:
b1:76:07:31:94:d1:29:dc:b3:8c:bc:d6:10:c2:59:ce:6e:1c:
1b:07:dd:2f:9e:b0:38:3c:33:10:3b:73:ad:b5:d3:f1:3a:b4:
88:57:d8:80:02:05:80:89:97:e5:b8:75:ac:b0:f3:12:c0:48:
cd:72:7a:2c
-----BEGIN CERTIFICATE-----
MIIGlzCCBX+gAwIBAgISAYbzMM4jvAUtCjCLxNQFgqBbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzE4MDUyODI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjUzYjdmMjZkYWZlNGI1Y2E5M2I4ZTcxOTZlZWIzMjcyMmRkMTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAghB3l92n3xYr83SVFQnHdyoLJ2x7
bpHTyOy24Jftm0XEgsg0FgEBuZgUeHOEq8pbuZ39QOJ1XwsF0Q2J0ELjaF6IlHhL
gZmKxlJ+QjDxGtKwso0yYT0wj/+ra1aykSXP/hvYpGAV5QOnADzxMNCVIPu4QQFH
OK0h3a9eC7Hm4EdAlKnGZd3nm9gAZ+7NYtEv+jEq6OtgyQl3igINWao1UqmsPzXV
AFtkje3PDw1tM4VRip0lt3ByluNDeWGxaOa5b3VO5LvxfemGUVXBghGaoYn2ItaM
2UEy50kB0npaQY2sJfvntfhpDOFGqOMJfNyVpa4MQK1hOf+PyC5J7fQGGQIDAQAB
o4IDozCCA58wHQYDVR0OBBYEFBtTt/Jtr+S1ypO45xlu6zJyLdEAMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvRzFPMzhtMnY1TFhLazdqbkdXN3JNbkl0MFFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBtwYIKwYBBQUHAQcBAf8EggGmMIIBojCCAZ4EAgABMIIB
lgMEAD5M4QMEAT5M5gMEAD5M6QMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8BgMEAcF8
CAMEAMF8EAMEAMF8LAMEAMF8UAMEAMF8XQMEAMF8yQMEAMF8zzAMAwQBwjomAwQA
wjooAwQAwjovAwQAwjo7AwQAwjpDMAwDBADCVwEDBALCVwADBADCVwcwDAMEAcJX
CgMEAMJXDAMEAMJXEAMEAMJXFgMEAsJXGAMEAcJXJAMEAMJXOAMEAMJXSQMEAMJX
UwMEAMJXaAMEAcJXcgMEAMJXegMEAcJXggMEAMJXigMEAMJXlQMEAMJXoAMEAMJX
pgMEAMJXqDAMAwQBwleqAwQAwlesAwQCwlewAwQAwle2AwQAwle7AwQAwle+AwQA
wlfIAwQAwlfKAwQAwlfeAwQAwlfwAwQAwocSAwQAwocXMAwDBADDOiMDBADDOiQD
BAHDOjIDBADDOjYDBADDOjgDBADDhQADBADDhRoDBADDhR4DBADDhSADBADDhSMD
BADDhUwDBAHDhcIDBADUwAEDBADUwAowDQYJKoZIhvcNAQELBQADggEBAFRVJbce
TIaBKqvrIb0Au+YL2zKccqvYVB1PcGfaOkWCp3FkRKvx+Q2iyqaa748nCK359Wy5
L3Y8TrH3pdzdY+lsHYm35FYSm+JfEIAbadb7+yUOVV70RF2sFVeye3HU6aEl10nh
pnGjeYIGaPuvjspNvA+bYN1mVCmGwHPOKUIPrm8xQ+MJl8jFmlOaO23KROVYytEw
VMenvEoh/FCCRif1loD+Q/Kuvjc8mnMrVyKYFgh8EqZ5Xv9HOSJyvT7ecZTvh8BL
DLF2BzGU0Sncs4y81hDCWc5uHBsH3S+esDg8MxA7c6210/E6tIhX2IACBYCJl+W4
dayw8xLASM1yeiw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:59 2023 by rpki-client on console-fra.rpki-client.org