Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Uxrnvo7LZxU1gr2HrKmhBJ9UeP0.roa
File: Uxrnvo7LZxU1gr2HrKmhBJ9UeP0.roa (raw, json)
Hash identifier: d2re9wjt8NgFxQ1A+xXqYREk9+u4FuSYmB94TyD+swc=
Subject key identifier: 53:1A:E7:BE:8E:CB:67:15:35:82:BD:87:AC:A9:A1:04:9F:54:78:FD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01894165670C0141EA3FEF8F9109A1855B3B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Uxrnvo7LZxU1gr2HrKmhBJ9UeP0.roa
Signing time: Mon 10 Jul 2023 20:01:51 +0000
ROA not before: Mon 10 Jul 2023 20:01:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:41:65:67:0c:01:41:ea:3f:ef:8f:91:09:a1:85:5b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 10 20:01:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=531ae7be8ecb67153582bd87aca9a1049f5478fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fc:ab:49:7d:ec:90:75:51:a9:0f:70:68:70:
a9:8f:39:77:1e:99:bc:be:3a:f6:83:6e:f0:73:64:
71:8a:0a:ca:08:86:d0:3f:53:ea:ed:2a:6c:75:46:
ae:72:fd:de:e8:7e:e2:cf:a0:a3:e4:dd:b9:7f:db:
68:b6:be:b2:04:4c:7f:e5:75:98:c5:43:99:90:6f:
0b:d6:b8:d2:39:a9:0b:87:0e:9f:72:1d:f6:2a:f3:
85:3d:58:d0:f8:1f:8a:4d:44:22:e8:c6:28:9e:80:
43:29:8a:30:e6:d0:69:e1:3c:f5:9b:7d:56:85:07:
c5:6a:31:e8:e1:eb:6c:a8:82:5b:e7:db:9e:46:00:
b1:32:67:55:52:ca:d0:d5:f4:7d:48:4a:c2:46:89:
70:07:80:07:52:1b:7b:8b:e3:cb:08:e7:7a:4a:5d:
eb:4e:53:d6:ab:50:4e:94:a1:8c:a3:3e:a0:2a:b4:
f1:ef:5d:20:90:66:c8:24:5c:bf:c0:bc:3b:cc:a1:
bc:68:02:dd:b6:ce:2a:11:bc:c6:cd:44:8a:0a:e9:
41:e6:f8:3d:93:d6:40:15:9d:53:10:4b:43:19:86:
48:3d:d6:bd:af:f5:e5:4b:c0:df:8d:27:51:0a:bf:
62:2b:5a:62:22:90:36:b5:0c:e0:7f:17:c9:cf:ef:
e0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1A:E7:BE:8E:CB:67:15:35:82:BD:87:AC:A9:A1:04:9F:54:78:FD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Uxrnvo7LZxU1gr2HrKmhBJ9UeP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.42.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.30.0/24
195.133.35.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
6e:81:8e:d9:44:4f:7e:1e:d1:72:0e:9f:b9:0e:cf:e0:88:8e:
bf:53:31:3b:6b:5d:f7:da:b4:8c:b6:3f:ab:d7:c9:fc:15:2a:
3b:5e:f1:0a:3a:4b:74:7b:3b:fa:4c:8f:7f:bb:56:d3:bf:57:
cb:57:90:8e:60:f7:83:28:fc:fb:68:79:63:2d:40:70:29:88:
33:a4:32:e8:f3:ff:08:dc:2f:30:70:49:e1:3a:26:55:04:2d:
d3:1f:1c:3d:62:f9:9a:7c:29:2c:76:a2:f1:2a:a9:8b:52:06:
7b:3b:c6:bb:75:a4:ea:f5:c6:45:6e:41:7f:76:d1:d9:57:49:
c3:b0:c9:95:72:b0:88:1c:21:6c:2c:dd:76:cf:1a:f6:c0:4d:
7c:48:66:91:b3:1e:da:61:4c:c6:55:51:08:f6:dd:e0:1a:35:
08:84:55:94:7c:b9:41:67:ea:8c:be:0f:4c:73:20:e6:de:cd:
01:13:d9:54:c2:5a:a3:85:d8:af:a0:a0:e8:d7:52:f1:e6:00:
db:ff:d1:57:a4:d0:a1:ef:29:1b:92:94:36:2b:94:dc:ad:6e:
fd:69:5a:cf:9d:54:e3:34:04:5b:ff:80:0c:67:48:bc:90:d5:
e5:6a:88:2b:4e:0c:70:c0:34:c8:41:4b:d5:3d:b7:a4:86:86:
3c:7e:5a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-ams.rpki-client.org