Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsYCMDjel6vo8HFEQMJYeL1jVV4.roa
File: MsYCMDjel6vo8HFEQMJYeL1jVV4.roa (raw, json)
Hash identifier: qxuNA/ka2EiJqrlq+lXXKOoGCYcTz+ewe+LG0xoyD40=
Subject key identifier: 32:C6:02:30:38:DE:97:AB:E8:F0:71:44:40:C2:58:78:BD:63:55:5E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01895E1979EA6440CDD16EC6D95738A45B83
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsYCMDjel6vo8HFEQMJYeL1jVV4.roa
Signing time: Sun 16 Jul 2023 09:47:55 +0000
ROA not before: Sun 16 Jul 2023 09:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.40.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 08:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5e:19:79:ea:64:40:cd:d1:6e:c6:d9:57:38:a4:5b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 16 09:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32c6023038de97abe8f0714440c25878bd63555e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e0:f1:18:22:ec:ff:4c:0f:c6:fb:8e:7b:1c:
0c:c3:e8:73:60:da:31:da:93:df:cb:7f:e6:57:b2:
d1:67:a8:04:a5:92:27:7f:08:eb:76:c7:23:62:28:
e1:64:c1:87:90:98:6e:03:28:31:da:43:5a:22:e7:
38:7b:cd:c2:10:a2:7e:99:ba:c8:6c:f7:ea:f7:84:
3e:bd:28:7d:eb:b3:a5:a2:41:c9:35:28:26:6a:13:
1f:db:e2:67:ae:a1:aa:9a:80:32:e2:7b:7e:bc:82:
d5:c1:03:65:95:c4:75:f5:f9:3b:eb:7d:58:a1:18:
e0:15:e0:e3:e1:b1:ee:42:45:af:ec:cb:5d:d7:2a:
43:a5:f5:9c:7e:56:dc:5b:52:52:b3:b7:7a:38:c7:
d2:40:3a:dd:5b:d1:2f:b1:28:e8:7c:a9:e1:71:61:
17:97:2d:e3:61:02:81:a5:6a:72:e4:19:a8:33:43:
59:66:b2:26:c8:7f:b3:7e:22:92:f0:38:87:cc:9c:
00:0e:a7:39:46:40:27:97:81:f9:fc:32:9a:07:9e:
0f:1b:80:24:81:f1:3c:c0:34:36:c3:5a:d8:b3:7b:
95:28:61:bc:79:b2:be:4f:c4:2d:05:f8:16:e6:da:
49:47:0d:5d:03:b3:32:70:9a:1c:d8:8d:41:aa:0e:
03:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C6:02:30:38:DE:97:AB:E8:F0:71:44:40:C2:58:78:BD:63:55:5E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsYCMDjel6vo8HFEQMJYeL1jVV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.40.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.151.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.207.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.12.0/24
195.133.30.0/24
195.133.35.0/24
195.133.73.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
96:eb:72:85:2b:6b:19:ea:d8:0e:25:f2:81:9b:a3:6a:8b:7d:
44:a6:45:02:bb:f9:d2:00:66:17:6c:38:48:58:10:19:55:1f:
10:c2:5b:ed:09:ad:af:7e:c0:68:2e:e6:72:6b:e2:ad:e0:8e:
c4:41:09:ed:20:e9:b0:9d:7e:8c:e8:3f:65:6a:62:cf:ee:78:
b0:17:23:15:f7:9f:5d:c3:28:dd:37:a1:df:36:92:86:01:a5:
32:01:f1:bd:b9:93:f7:e4:a0:a6:16:71:a5:a1:06:bf:10:36:
09:d9:46:af:a5:5f:b5:1b:5d:4d:aa:78:d4:93:d9:b1:39:0a:
6b:c3:74:35:40:13:5e:d6:d3:7d:9a:04:90:f6:15:32:2f:f7:
9f:74:ac:de:1e:5d:f4:7f:64:59:09:b5:74:e5:3e:04:f6:f4:
b2:55:93:ea:f3:aa:4f:27:24:82:8b:cf:67:68:d8:8e:e4:81:
dc:73:0c:66:59:c4:d5:6d:7c:57:f7:99:18:91:f5:1d:6f:58:
cd:d5:d3:11:15:91:3f:68:43:7c:09:12:6e:c6:34:5f:1d:02:
b9:23:2d:03:ca:d3:a3:c7:7f:95:ba:16:dd:e4:1e:4a:ad:ac:
dc:d9:cb:09:e6:13:05:28:27:d0:07:98:6c:ca:79:27:ec:d7:
9f:01:48:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:14 2024 by rpki-client on console-fra.rpki-client.org