Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LkFr_e7515BXVilyjPVoO8BJAjU.roa
File: LkFr_e7515BXVilyjPVoO8BJAjU.roa (raw, json)
Hash identifier: 64bnElqPa3wThgURiVigyFHtX2oeqpjjQzwOrOkzV0o=
Subject key identifier: 2E:41:6B:FD:EE:F9:D7:90:57:56:29:72:8C:F5:68:3B:C0:49:02:35
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186EF874D904D98E379BC173D82DDBF509F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LkFr_e7515BXVilyjPVoO8BJAjU.roa
Signing time: Fri 17 Mar 2023 12:24:27 +0000
ROA not before: Fri 17 Mar 2023 12:24:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:87:4d:90:4d:98:e3:79:bc:17:3d:82:dd:bf:50:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 17 12:24:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e416bfdeef9d790575629728cf5683bc0490235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:20:10:10:b8:ac:52:51:72:b4:a5:d5:05:34:
d5:f0:aa:df:a7:93:47:fc:c1:f6:66:14:58:7e:ee:
5e:41:51:c3:fc:61:07:c0:77:8e:3a:ae:87:65:30:
b3:7d:06:5f:32:3c:47:b2:1c:f9:20:af:5f:37:83:
6a:92:e6:67:13:34:10:83:ef:20:62:76:5a:94:31:
a4:53:83:e5:cb:bf:d3:e8:05:60:33:1b:39:44:39:
34:11:36:55:94:10:6f:68:0d:0a:a7:43:e9:7d:19:
ea:96:46:e5:48:5b:3f:99:a8:88:9d:c7:ab:af:b4:
e3:f7:e0:91:8a:84:35:fb:64:f8:3c:dd:c1:7f:91:
50:73:cb:7b:06:bb:e2:37:72:36:cc:de:08:e0:2c:
ca:75:91:b0:ed:d3:df:4c:46:ff:76:d3:e6:e3:1c:
64:60:06:04:71:e9:1e:96:a2:86:13:19:89:21:5c:
33:9b:51:d8:b3:45:ea:f7:64:a1:8b:57:bf:eb:64:
ab:a3:b4:f9:1a:a5:b8:b4:27:e9:fb:88:cd:03:a2:
83:8e:55:6d:26:65:ba:ac:ca:02:25:91:f7:f1:02:
60:10:73:7a:16:0b:0f:56:d6:80:f4:de:76:6d:07:
79:1f:29:17:bf:de:e3:7e:67:b9:e7:ed:71:50:95:
3c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:41:6B:FD:EE:F9:D7:90:57:56:29:72:8C:F5:68:3B:C0:49:02:35
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LkFr_e7515BXVilyjPVoO8BJAjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0-194.58.40.255
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.36.0/23
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
03:0e:75:ee:50:eb:94:36:05:bf:0b:12:ca:80:e1:63:4c:11:
45:fe:1f:7f:b5:b5:8e:10:eb:37:92:7d:5f:da:64:e6:d2:8c:
e7:62:8a:a6:8d:7e:14:34:d7:c3:8a:5c:f9:66:48:f3:c8:ae:
33:6f:c0:7c:fe:a3:55:6d:c5:aa:2e:35:d0:ba:b8:23:24:30:
62:75:30:9b:8e:f4:2d:d0:24:f8:e8:56:8d:f8:59:7b:9f:77:
81:e8:03:c2:14:1c:55:04:f2:5b:6f:10:cd:a0:5f:94:c2:fb:
67:6a:40:e7:ce:6b:78:3b:9a:d5:ab:18:c3:a0:f0:bc:d4:91:
08:ed:d7:87:c9:54:92:e8:d9:b5:1f:ad:b8:e3:7c:63:fc:b2:
2f:ea:87:0f:0c:b3:6b:1e:01:99:d4:6a:77:e0:f7:43:27:fb:
9e:47:6a:9d:20:2f:b5:b5:32:6d:44:4f:85:42:0e:65:49:bf:
f7:39:b6:b1:64:d7:5e:c8:3d:6a:04:35:35:ab:b1:b2:f7:61:
a3:bb:34:63:8b:d7:ac:59:0a:2a:4b:81:b9:59:82:88:57:21:
a1:97:83:c9:d4:75:01:ae:7f:58:9a:15:c6:a8:b1:94:0a:ff:
56:91:d3:5b:cd:6c:d5:7a:d5:4c:24:66:c9:ae:3f:e3:96:df:
1e:6f:b9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:01 2023 by rpki-client on console-fra.rpki-client.org