Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WvrnDrlHtL0BFrgI1voYOh8apLA.roa
File: WvrnDrlHtL0BFrgI1voYOh8apLA.roa (raw, json)
Hash identifier: 7i0vUoD+7F+VJ7T/+iUaW7+7gEi2lJ8fcVvLMp8aZiQ=
Subject key identifier: 5A:FA:E7:0E:B9:47:B4:BD:01:16:B8:08:D6:FA:18:3A:1F:1A:A4:B0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01863A7A710446955B249A9146C560B417D7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WvrnDrlHtL0BFrgI1voYOh8apLA.roa
Signing time: Fri 10 Feb 2023 08:39:08 +0000
ROA not before: Fri 10 Feb 2023 08:39:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 23
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:7a:71:04:46:95:5b:24:9a:91:46:c5:60:b4:17:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 10 08:39:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5afae70eb947b4bd0116b808d6fa183a1f1aa4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7e:b5:19:87:1f:2e:14:a1:ef:93:9b:73:91:
aa:81:58:80:4c:04:b8:52:3f:e0:d2:c7:c0:56:96:
40:da:bb:50:9a:76:35:21:88:55:0d:7a:a3:55:7c:
37:33:be:d8:f4:14:a0:fa:82:da:61:a6:6b:9c:12:
ad:32:3f:0a:80:34:8f:90:67:51:6b:e3:72:1f:95:
6a:e5:72:0c:22:c8:87:ad:45:cb:fe:65:15:fe:ba:
86:58:59:72:5f:cc:5a:02:9b:c7:c9:bf:a9:50:d7:
ef:f3:d7:e3:1d:60:b4:89:37:bb:88:0c:d7:38:9a:
8a:50:dc:e3:66:97:da:e2:26:54:fb:6e:99:e0:74:
ac:22:2a:da:0e:19:74:98:1e:35:3d:8a:47:f9:d5:
4c:ea:c7:3e:e6:17:19:3e:81:47:c4:29:1d:ec:c4:
56:aa:67:79:93:07:32:bb:8e:97:f8:13:f3:ea:de:
31:9b:04:ff:30:fd:5d:8b:e1:09:d1:d1:04:bd:7c:
e2:c1:e4:65:d3:74:04:d6:1f:36:cf:35:9e:a8:40:
c3:17:91:59:ae:4d:d5:39:46:59:17:d6:33:38:73:
f5:02:24:de:a2:c0:2b:49:1f:aa:6c:1c:25:06:d1:
4b:e9:52:9f:d0:ba:e7:3d:05:3e:75:6f:0f:ea:74:
48:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:FA:E7:0E:B9:47:B4:BD:01:16:B8:08:D6:FA:18:3A:1F:1A:A4:B0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WvrnDrlHtL0BFrgI1voYOh8apLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.37.0/24
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.76.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:81:5a:bf:02:21:98:ac:1a:72:7a:2c:c8:ef:0a:67:a3:09:
53:65:ad:56:fa:ea:f4:35:b2:22:48:35:5d:05:7c:07:1f:bd:
90:d0:80:c7:e9:f1:c8:bb:09:4d:49:2b:4a:9d:d2:16:0c:5a:
6a:d7:5b:0e:11:64:d0:17:f0:42:c8:3a:05:94:f9:4e:f7:d8:
49:70:b8:48:7e:0e:d0:08:0c:8d:91:12:3e:0e:29:bc:9f:5d:
d6:b3:35:47:59:83:b0:0c:a2:5c:0b:42:70:da:76:06:05:71:
49:ab:6b:66:36:2f:f1:ea:a4:92:e2:20:73:55:4c:ed:f7:fa:
f7:cf:47:bc:59:e1:72:89:2e:06:6e:1d:61:6e:a3:7b:71:54:
98:c5:97:0b:b4:77:c7:c0:18:ed:63:0e:45:2a:2e:2c:90:26:
45:b2:7f:9d:92:44:d4:aa:8a:d2:0e:35:a2:2d:c5:73:82:1c:
56:ef:3d:6e:a0:b3:59:84:c9:8e:b1:64:4f:e5:a2:40:fc:3c:
28:a2:f8:8f:74:4c:3b:f9:3a:7f:aa:a6:4a:52:3d:d6:f1:62:
a6:11:61:c6:7c:03:44:06:fd:ac:37:71:13:bd:c2:04:69:b4:
e4:3e:c7:77:38:5e:0a:f4:14:d8:e9:bb:80:7b:00:6a:d6:7a:
7e:01:57:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-ams.rpki-client.org