Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G3KE_-O2U3na49J8VJhQkalImF4.roa
File: G3KE_-O2U3na49J8VJhQkalImF4.roa (raw, json)
Hash identifier: 8h9Xg2EJeFc/4f1UL8dqNjwkfkeFq9154QXOM119gpA=
Subject key identifier: 1B:72:84:FF:E3:B6:53:79:DA:E3:D2:7C:54:98:50:91:A9:48:98:5E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A42301F5F90FA36775231B54541C1A9E8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G3KE_-O2U3na49J8VJhQkalImF4.roa
Signing time: Tue 29 Aug 2023 16:46:04 +0000
ROA not before: Tue 29 Aug 2023 16:46:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
212.193.31.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:42:30:1f:5f:90:fa:36:77:52:31:b5:45:41:c1:a9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 29 16:46:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b7284ffe3b65379dae3d27c54985091a948985e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c2:48:f8:c6:14:54:d6:27:95:59:8c:ae:c9:
bb:e7:00:ad:8c:1e:37:51:78:82:cc:e3:0a:50:08:
1c:1c:c5:6f:cf:a1:df:9f:ca:62:46:00:63:10:b1:
cc:14:63:80:51:4b:22:28:ba:e1:76:ea:3d:bc:c4:
96:20:91:f8:83:22:91:da:55:de:8d:4b:f7:7d:3f:
40:d6:a9:4d:99:a1:e7:dd:2e:59:dd:30:cb:70:90:
c8:8b:a9:4e:ed:24:a6:83:ba:f1:66:21:0e:c2:bb:
20:80:d8:b0:43:9b:72:23:91:8b:87:04:5d:49:18:
15:0f:bb:8f:1d:c9:43:58:c7:74:79:82:d3:f0:97:
21:af:c0:5b:13:f4:44:3f:25:b1:b7:a7:20:13:9a:
cb:1d:f5:61:80:45:4b:69:ad:69:36:05:54:aa:5a:
09:d4:7a:94:72:92:18:5c:4f:01:8b:17:df:59:ae:
ae:aa:e7:40:bb:a4:89:9d:a5:05:d1:c8:c8:4a:67:
78:e9:c7:7a:85:2e:95:b9:41:79:21:07:aa:f4:9a:
36:36:c1:1a:a0:18:3c:22:2e:fd:b7:4b:c6:42:d5:
3e:78:61:1f:85:5d:57:2e:95:b0:c8:48:61:c2:8d:
62:60:06:55:7d:48:fb:bd:94:bc:40:af:a2:b3:fc:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:72:84:FF:E3:B6:53:79:DA:E3:D2:7C:54:98:50:91:A9:48:98:5E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/G3KE_-O2U3na49J8VJhQkalImF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
192.124.178.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
193.124.200.0/24
194.58.38.0/24
194.58.47.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0/24
194.87.3.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.34.0/24
194.87.36.0/24
194.87.40.0/24
194.87.56.0/24
194.87.63.0/24
194.87.73.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.118.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.151.0/24
194.87.168.0/24
194.87.176.0/24
194.87.179.0-194.87.180.255
194.87.190.0/24
194.87.200.0/24
194.87.222.0/24
195.58.36.0/24
195.58.54.0/23
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.26.0/24
195.133.30.0/24
195.133.73.0/24
195.133.84.0/23
212.192.8.0/24
212.192.241.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:bd:d5:ad:dc:86:a2:73:d1:6b:15:ff:e9:7c:4a:3f:d9:99:
a2:61:49:ea:25:b4:56:7d:b9:ba:96:19:83:b0:ea:f7:f7:73:
d5:42:fe:ad:13:c5:c1:48:b5:63:63:b0:bc:6e:f4:9e:3b:aa:
31:20:e1:eb:92:15:fd:ee:c3:90:58:78:36:1c:9b:dc:4d:23:
a1:9d:92:e7:b6:2e:d0:a1:60:df:66:dd:a9:ee:5b:b0:01:24:
45:82:6c:bc:fb:e1:cc:6c:21:ad:67:9a:95:a1:a1:86:e8:41:
2e:06:79:a0:c1:9b:32:b0:12:3a:1a:8b:d2:2e:0b:ac:75:c1:
db:88:67:82:05:64:d3:f6:0f:c2:6b:cd:fe:d9:17:79:18:6c:
70:99:c0:49:14:46:89:d9:b6:c0:e1:51:fd:bd:ec:da:d5:cc:
38:fe:45:7e:59:d5:06:a6:61:cd:bc:f8:83:b1:22:3a:e4:8b:
72:12:5f:e7:f4:63:c5:dc:13:1f:09:ec:12:23:a3:3f:99:0d:
e4:da:37:66:1c:a4:ee:75:ba:a5:c9:d6:4e:9d:1f:17:ae:ff:
73:ca:eb:d7:8f:09:bd:4b:14:ab:aa:93:03:77:7e:27:21:a3:
b1:b1:91:75:a0:78:6d:af:52:ce:0f:2d:a1:56:ce:38:bc:c5:
78:82:13:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 06:39:41 2023 by rpki-client on console-fra.rpki-client.org