Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KZPyILC54uXdglQ5I9838CdnuGk.roa
File: KZPyILC54uXdglQ5I9838CdnuGk.roa (raw, json)
Hash identifier: BsywxwSuP4+satGTtEmguqTNz9DUhsY7CRKBftZas20=
Subject key identifier: 29:93:F2:20:B0:B9:E2:E5:DD:82:54:39:23:DF:37:F0:27:67:B8:69
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01878A17B39083D2BA296D1E7926332E856B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KZPyILC54uXdglQ5I9838CdnuGk.roa
Signing time: Sun 16 Apr 2023 12:43:41 +0000
ROA not before: Sun 16 Apr 2023 12:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.4.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8a:17:b3:90:83:d2:ba:29:6d:1e:79:26:33:2e:85:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 16 12:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2993f220b0b9e2e5dd82543923df37f02767b869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2e:60:2c:92:59:45:b5:57:8a:f1:27:a7:7c:
28:db:0d:f1:a5:31:8e:d7:f7:db:41:bf:37:fe:7f:
72:7c:47:28:75:0f:6f:d9:db:6a:32:ae:f4:9f:aa:
46:f1:51:9e:c9:23:25:5d:77:4c:52:6b:fc:a4:28:
e5:2e:39:50:9c:1e:a1:3b:c5:55:79:e8:5e:38:cb:
12:6b:4f:d7:dc:39:26:b7:90:26:ad:10:bd:58:8e:
d7:26:99:1f:d0:e9:dd:0b:56:5f:de:46:ff:21:7f:
f5:22:a8:5a:d4:69:26:99:f3:9a:d7:dd:e9:a9:53:
b0:7a:29:fc:10:86:d5:69:72:51:7d:30:c2:2b:fd:
72:06:1d:6b:50:2d:dc:54:a9:0a:bf:37:a2:37:db:
c9:61:63:a0:16:42:f3:04:6c:f2:37:7c:a3:52:27:
86:99:cf:5c:6b:65:d6:e9:3f:84:77:08:94:fc:b5:
72:6e:5d:b2:d3:62:da:4f:2e:6c:83:25:c8:19:c6:
ea:aa:a4:52:df:c7:29:d3:08:46:a9:04:b9:0b:dd:
cd:5d:db:2c:55:91:f9:3d:e1:54:c8:1f:ad:1e:70:
9d:16:71:4a:9e:b1:3a:10:58:89:6e:22:10:4c:a5:
f8:3b:d7:86:b8:0d:a5:3f:dc:f4:4c:e0:cc:15:78:
f0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:93:F2:20:B0:B9:E2:E5:DD:82:54:39:23:DF:37:F0:27:67:B8:69
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KZPyILC54uXdglQ5I9838CdnuGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.178.0/24
192.124.180.0/22
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.90.0/24
193.124.93.0/24
193.124.133.0/24
193.124.201.0/24
194.58.38.0/24
194.58.40.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.37.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.4.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ee:6b:ae:ce:68:39:0c:c0:48:3b:bd:be:69:55:20:3b:36:
ad:d4:85:e4:6c:66:ad:bf:85:64:ea:77:fb:42:d9:01:0e:f2:
82:6b:00:14:6a:92:5b:be:ef:84:63:eb:b6:65:35:5d:ed:d8:
56:0d:87:e5:36:6d:b6:bf:73:d9:2f:99:fd:f7:50:3e:cc:4a:
6e:fd:c5:24:c5:79:a9:76:39:1d:1f:d9:1f:36:40:ac:e3:39:
85:4f:71:70:1d:98:7a:d8:54:9e:86:93:92:70:c2:f7:d2:dd:
f5:a3:57:8f:fe:a3:ec:c4:89:3b:92:3a:d4:2a:75:db:eb:79:
22:14:4c:08:d8:9c:c1:c7:6c:d0:19:9d:c6:d1:e0:aa:99:fa:
d6:66:79:ae:c2:91:94:ae:7f:a0:10:76:ae:ee:af:1b:69:98:
6a:d5:64:a2:b7:be:cd:52:eb:4b:c5:c3:41:93:75:ea:68:e5:
d6:15:3e:bc:91:ac:0e:78:04:7a:02:bf:3c:86:15:70:53:8f:
a9:e6:50:b5:bf:c1:fa:67:35:18:b3:13:87:77:96:51:11:4a:
b0:42:e2:e2:1c:10:9d:7e:aa:5b:81:63:ae:46:d7:94:74:41:
4e:63:90:e9:f4:1f:bf:43:f3:82:0c:c8:30:91:64:6c:7e:f7:
8b:89:71:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-ams.rpki-client.org