Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RVlDT_ia5x82dkc9CHAQV8dWGzU.roa
File: RVlDT_ia5x82dkc9CHAQV8dWGzU.roa (raw, json)
Hash identifier: yquwTnbmM1RVQXZ+uLRAYTFYtKLtysXruQVQY44HSVk=
Subject key identifier: 45:59:43:4F:F8:9A:E7:1F:36:76:47:3D:08:70:10:57:C7:56:1B:35
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185A4C7F0DBBD7F2200DBC6CFBB7E99A32A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RVlDT_ia5x82dkc9CHAQV8dWGzU.roa
Signing time: Thu 12 Jan 2023 07:00:44 +0000
ROA not before: Thu 12 Jan 2023 07:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jan 2023 08:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a4:c7:f0:db:bd:7f:22:00:db:c6:cf:bb:7e:99:a3:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 12 07:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4559434ff89ae71f3676473d08701057c7561b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f4:41:de:d7:bc:d2:ad:50:3a:d9:e4:e3:15:
77:04:6a:12:06:e8:84:a3:7a:71:e8:1b:72:0b:00:
df:7f:b6:cd:5e:f6:33:15:ef:c7:87:5c:93:b0:6d:
15:e5:4a:b8:17:ba:e6:16:0e:37:ad:9b:7b:bd:45:
78:d8:15:a7:ec:a2:52:54:76:2f:bc:e0:60:ce:27:
5e:7c:14:14:ed:7e:f5:48:4c:92:68:77:a4:e8:81:
9e:65:b7:a6:0f:67:af:9d:0a:f1:1b:bc:24:01:aa:
c5:ce:dd:dd:c0:f0:3b:27:18:26:d9:0c:09:34:d9:
ee:d2:5a:28:24:26:86:d2:67:41:f5:c6:48:0c:15:
76:50:c2:b7:22:1f:ec:d9:8c:fe:98:45:ef:33:90:
37:02:f7:c0:dd:06:7e:be:c0:6d:71:83:28:72:77:
25:e4:0b:e7:55:31:fb:82:e3:8b:28:cc:da:c6:04:
ed:8a:2a:95:dc:41:4d:9e:a5:10:88:a9:4c:87:54:
b6:a4:42:bd:0e:f9:a0:79:04:a7:42:bc:21:bd:10:
40:06:1d:9f:24:28:87:02:50:2c:bc:5a:69:43:b9:
15:82:95:50:b6:88:c4:a9:48:8c:b1:8a:b1:8e:4f:
8f:0c:05:bb:57:d5:d8:e9:f0:f1:de:2b:22:98:b4:
25:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:59:43:4F:F8:9A:E7:1F:36:76:47:3D:08:70:10:57:C7:56:1B:35
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RVlDT_ia5x82dkc9CHAQV8dWGzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
33:59:70:72:d6:5f:6d:d7:95:77:87:fc:dc:98:fc:e5:ad:9e:
26:e5:4e:11:45:f0:24:98:96:de:a1:2b:b6:cf:82:7d:2c:d1:
24:2c:b1:37:ab:d7:e7:e6:0c:f4:7b:aa:62:88:a9:1a:de:f6:
9a:02:13:e4:48:27:c4:21:f0:4c:00:ef:67:5e:2f:b0:b9:25:
c1:9b:4a:d1:24:55:08:c2:d6:37:56:94:ee:35:e4:1e:a8:25:
06:1b:ba:dc:5e:5e:e3:d1:56:1e:26:8c:e9:1f:15:43:af:c8:
51:ed:1f:5a:10:8d:91:a4:3f:71:0a:62:d5:74:d2:15:98:13:
c1:6a:ed:42:85:ac:18:de:27:39:e9:90:7e:fc:97:f7:03:ae:
e3:27:ea:0f:cc:75:f7:75:11:72:32:97:46:bb:83:eb:30:93:
e0:d1:84:f3:6f:16:9b:af:e1:88:b2:f0:8b:f4:eb:73:ff:f8:
19:aa:ef:be:79:02:53:d0:58:62:f5:26:2a:e6:4e:70:e9:77:
6b:75:99:9c:8a:c6:ee:d7:87:58:78:64:c8:1b:08:f9:a7:39:
2a:ac:98:cf:3d:a7:e6:c6:99:78:82:cf:3a:b0:8a:3f:96:7c:
66:c2:84:fc:0a:05:ae:11:24:df:eb:50:85:6b:e1:95:0b:eb:
a3:08:1c:5b
-----BEGIN CERTIFICATE-----
MIIGdTCCBV2gAwIBAgISAYWkx/DbvX8iANvGz7t+maMqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTEyMDcwMDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTU5NDM0ZmY4OWFlNzFmMzY3NjQ3M2QwODcwMTA1N2M3NTYxYjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvRB3te80q1QOtnk4xV3BGoSBuiE
o3px6BtyCwDff7bNXvYzFe/Hh1yTsG0V5Uq4F7rmFg43rZt7vUV42BWn7KJSVHYv
vOBgzidefBQU7X71SEySaHek6IGeZbemD2evnQrxG7wkAarFzt3dwPA7Jxgm2QwJ
NNnu0looJCaG0mdB9cZIDBV2UMK3Ih/s2Yz+mEXvM5A3AvfA3QZ+vsBtcYMocncl
5AvnVTH7guOLKMzaxgTtiiqV3EFNnqUQiKlMh1S2pEK9DvmgeQSnQrwhvRBABh2f
JCiHAlAsvFppQ7kVgpVQtojEqUiMsYqxjk+PDAW7V9XY6fDx3isimLQlAwIDAQAB
o4IDgTCCA30wHQYDVR0OBBYEFEVZQ0/4mucfNnZHPQhwEFfHVhs1MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvUlZsRFRfaWE1eDgyZGtjOUNIQVFWOGRXR3pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBlQYIKwYBBQUHAQcBAf8EggGEMIIBgDCCAXwEAgABMIIB
dAMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vjAMAwQAwXwDAwQAwXwEAwQA
wXwGAwQAwXwIAwQAwXwSAwQAwXx9AwQAwXyFAwQAwXzJAwQAwXzLAwQAwXzPAwQB
wjomAwQAwjoqMAwDBADCOi0DBATCOiADBADCOjsDBAHCVwYDBALCVxgDBADCVyQD
BADCVzgDBADCV0wDBAHCV1IDBADCV2gwDAMEAcJXcgMEAMJXdAMEAMJXdgMEAMJX
ewMEAMJXiAMEAcJXigMEAMJXlQMEAMJXowMEAMJXpTAMAwQAwlerAwQAwlesAwQA
wlewAwQAwle2AwQAwle+MAwDBAHCV8YDBADCV8gDBADCV8oDBAHCV9ADBAHCV94D
BADCV+kDBADDOjIwDAMEAsM6NAMEBsM6AAMEAMOFDAMEAMOFNwMEAMOFVgMEAMOF
XgMEAMOFwwMEAdTAAAMEANTAHgMEANTBAAMEANTBCAMEANTBDDANBgkqhkiG9w0B
AQsFAAOCAQEAM1lwctZfbdeVd4f83Jj85a2eJuVOEUXwJJiW3qErts+CfSzRJCyx
N6vX5+YM9HuqYoipGt72mgIT5EgnxCHwTADvZ14vsLklwZtK0SRVCMLWN1aU7jXk
HqglBhu63F5e49FWHiaM6R8VQ6/IUe0fWhCNkaQ/cQpi1XTSFZgTwWrtQoWsGN4n
OemQfvyX9wOu4yfqD8x193URcjKXRruD6zCT4NGE828Wm6/hiLLwi/Trc//4Garv
vnkCU9BYYvUmKuZOcOl3a3WZnIrG7teHWHhkyBsI+ac5KqyYzz2n5saZeILPOrCK
P5Z8ZsKE/AoFrhEk3+tQhWvhlQvrowgcWw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org