Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RoRkTUi47ICu_WjKNWZstOedZvc.roa
File: RoRkTUi47ICu_WjKNWZstOedZvc.roa (raw, json)
Hash identifier: gQH30NjFwIjALc0UcorpDirqzQX2KdWHalck7OuoALQ=
Subject key identifier: 46:84:64:4D:48:B8:EC:80:AE:FD:68:CA:35:66:6C:B4:E7:9D:66:F7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186A1956BDB8BA43336866B08345972C5CA
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RoRkTUi47ICu_WjKNWZstOedZvc.roa
Signing time: Thu 02 Mar 2023 09:09:29 +0000
ROA not before: Thu 02 Mar 2023 09:09:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 194.87.207.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a1:95:6b:db:8b:a4:33:36:86:6b:08:34:59:72:c5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 2 09:09:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4684644d48b8ec80aefd68ca35666cb4e79d66f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e2:9d:b8:ff:92:74:f6:16:94:81:22:8b:81:
7c:1e:03:eb:7c:65:6f:5a:25:76:28:c8:a8:3f:64:
33:ad:3c:c6:f2:89:07:d8:ca:98:1b:4f:8f:1b:1c:
61:05:7c:b5:1a:45:36:a6:7b:a6:0f:13:4e:dd:44:
69:1f:e6:1d:c5:ec:3f:97:4a:65:14:86:a0:75:74:
e1:07:86:98:fa:e4:0f:ef:d3:50:fc:4e:24:5d:0e:
5f:71:ba:b5:5a:81:b9:2c:47:85:64:68:65:fa:2c:
0c:d5:05:09:a3:b0:2d:9c:54:f5:b9:8f:3f:65:e0:
3c:c7:ae:c2:fb:2e:5d:99:73:09:1b:9d:b3:7e:f0:
95:b5:cd:1a:f2:0e:7d:91:f7:ae:ed:29:fd:f3:c9:
4f:8e:3f:a8:70:87:3a:e7:94:aa:6a:03:79:69:93:
35:d4:56:bd:c9:07:a5:f9:a8:b6:8c:a9:dc:c6:ed:
46:68:a6:e0:72:08:43:b3:39:7b:fd:ad:d8:1b:c7:
0c:4f:bf:10:e7:82:65:40:28:e2:7c:4c:25:83:f2:
0d:4a:ee:dc:4b:7a:5f:40:2d:d3:16:58:d5:71:b5:
c9:29:02:38:59:26:bf:95:ec:de:51:84:66:0b:50:
1d:2f:8d:d3:26:f8:fc:a1:62:be:79:db:78:19:9f:
7a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:84:64:4D:48:B8:EC:80:AE:FD:68:CA:35:66:6C:B4:E7:9D:66:F7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RoRkTUi47ICu_WjKNWZstOedZvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.18.0/24
193.124.41.0/24
193.124.47.0/24
193.124.205.0/24
194.58.43.0/24
194.58.46.0/24
194.58.155.0/24
194.87.30.0/24
194.87.64.0/24
194.87.161.0/24
194.87.163.0/24
194.87.207.0/24
195.133.12.0/24
212.192.7.0/24
212.192.30.0/24
Signature Algorithm: sha256WithRSAEncryption
50:b0:ab:75:e8:20:30:0b:d2:9a:2d:20:00:07:00:81:55:12:
85:e1:21:c2:46:a3:26:fd:bc:63:37:30:41:ed:5a:26:34:d4:
bd:1e:cf:c3:69:63:d3:6c:12:fa:ae:94:07:49:6b:eb:72:57:
43:2f:77:10:2b:42:40:4c:c6:b8:66:9e:99:e5:01:73:da:2b:
a6:4a:e2:82:a9:43:5f:b2:ce:5a:fd:b1:94:fe:2d:01:8a:8a:
22:54:80:93:6c:54:4b:be:51:10:c0:ef:16:a6:08:fa:44:4d:
8b:3f:d1:0c:3c:a2:c7:28:de:f2:f6:ad:aa:9f:c5:1e:b2:35:
36:c0:2a:3d:48:80:27:6f:80:a7:19:da:fb:87:bf:96:e3:38:
fd:2a:46:d5:e3:21:40:e3:e7:08:76:5e:c0:3f:92:0e:14:ac:
c3:26:ec:d4:b0:9d:49:9e:53:73:6f:c2:4d:6d:48:85:29:38:
05:a1:d6:a6:ec:4e:5b:7c:42:84:38:12:62:80:e7:20:9f:f9:
4a:05:85:2e:cd:bf:49:9e:30:1f:e2:73:3f:62:d4:49:10:f9:
8e:6d:2b:c9:51:ef:0e:9f:41:41:2a:75:75:42:0d:56:b5:6b:
01:9c:5b:d4:7d:e4:e1:da:d9:22:78:cf:48:08:ca:ac:d8:46:
05:78:7e:0f
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYahlWvbi6QzNoZrCDRZcsXKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzAyMDkwOTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Njg0NjQ0ZDQ4YjhlYzgwYWVmZDY4Y2EzNTY2NmNiNGU3OWQ2NmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8eKduP+SdPYWlIEii4F8HgPrfGVv
WiV2KMioP2QzrTzG8okH2MqYG0+PGxxhBXy1GkU2pnumDxNO3URpH+Ydxew/l0pl
FIagdXThB4aY+uQP79NQ/E4kXQ5fcbq1WoG5LEeFZGhl+iwM1QUJo7AtnFT1uY8/
ZeA8x67C+y5dmXMJG52zfvCVtc0a8g59kfeu7Sn988lPjj+ocIc655SqagN5aZM1
1Fa9yQel+ai2jKncxu1GaKbgcghDszl7/a3YG8cMT78Q54JlQCjifEwlg/INSu7c
S3pfQC3TFljVcbXJKQI4WSa/lezeUYRmC1AdL43TJvj8oWK+edt4GZ96xwIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFEaEZE1IuOyArv1oyjVmbLTnnWb3MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvUm9Sa1RVaTQ3SUN1X1dqS05XWnN0T2VkWnZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAwXwSAwQA
wXwpAwQAwXwvAwQAwXzNAwQAwjorAwQAwjouAwQAwjqbAwQAwlceAwQAwldAAwQA
wlehAwQAwlejAwQAwlfPAwQAw4UMAwQA1MAHAwQA1MAeMA0GCSqGSIb3DQEBCwUA
A4IBAQBQsKt16CAwC9KaLSAABwCBVRKF4SHCRqMm/bxjNzBB7VomNNS9Hs/DaWPT
bBL6rpQHSWvrcldDL3cQK0JATMa4Zp6Z5QFz2iumSuKCqUNfss5a/bGU/i0Biooi
VICTbFRLvlEQwO8Wpgj6RE2LP9EMPKLHKN7y9q2qn8UesjU2wCo9SIAnb4CnGdr7
h7+W4zj9KkbV4yFA4+cIdl7AP5IOFKzDJuzUsJ1JnlNzb8JNbUiFKTgFodam7E5b
fEKEOBJigOcgn/lKBYUuzb9JnjAf4nM/YtRJEPmObSvJUe8On0FBKnV1Qg1WtWsB
nFvUfeTh2tkieM9ICMqs2EYFeH4P
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:03 2023 by rpki-client on console-fra.rpki-client.org