Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/X98yTY6swjKObvTsl2CZOWek7vU.roa
File: X98yTY6swjKObvTsl2CZOWek7vU.roa (raw, json)
Hash identifier: 9GiesyUzEy/O1tfG7ES3AAG40JrXVMPPHYyo46btsVo=
Subject key identifier: 5F:DF:32:4D:8E:AC:C2:32:8E:6E:F4:EC:97:60:99:39:67:A4:EE:F5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186C4A6D60E229EBC54E1CE8199A335A973
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/X98yTY6swjKObvTsl2CZOWek7vU.roa
Signing time: Thu 09 Mar 2023 04:35:13 +0000
ROA not before: Thu 09 Mar 2023 04:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:a6:d6:0e:22:9e:bc:54:e1:ce:81:99:a3:35:a9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 9 04:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fdf324d8eacc2328e6ef4ec9760993967a4eef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8f:6a:5a:96:2b:44:87:63:26:9d:ae:f5:3c:
fb:7a:a5:de:23:ec:28:72:0d:6c:68:80:15:5b:7e:
f6:d9:a5:65:de:09:64:14:9b:82:45:09:3f:ce:a5:
f0:4c:c0:38:0b:8b:22:7d:6c:ae:38:69:aa:f9:0b:
a7:28:91:6b:e7:94:e4:28:30:22:99:b9:d7:b8:66:
58:f8:d8:2d:eb:45:76:1d:55:82:34:a1:ad:16:22:
a7:39:88:2f:cb:b1:cb:46:f8:64:ed:91:e5:35:b6:
46:79:45:54:8f:19:b8:90:06:c3:9e:74:3c:1f:c3:
d8:92:da:e3:bc:fa:48:72:ad:e3:24:30:58:5d:cd:
43:c9:8e:d4:41:11:34:c1:36:27:78:1e:d3:fe:d1:
36:70:0b:1d:b0:52:61:8d:42:3a:3f:ff:ee:1d:aa:
f5:d9:33:0a:b0:a1:9e:3e:61:c2:d0:b9:08:d1:b9:
0e:89:9d:7b:73:03:00:24:86:74:02:99:66:d7:04:
ad:af:72:76:32:0d:21:98:3d:d8:31:69:58:1b:18:
39:96:b3:bc:13:e6:22:ed:ef:94:15:2a:e3:a8:85:
d1:5f:ba:1e:0a:32:a5:1d:15:f7:bb:fa:6b:34:73:
ca:67:42:1f:c6:0b:75:c8:0c:4e:cf:9a:42:f5:4e:
f1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DF:32:4D:8E:AC:C2:32:8E:6E:F4:EC:97:60:99:39:67:A4:EE:F5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/X98yTY6swjKObvTsl2CZOWek7vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.36.0/23
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5e:03:c8:d5:d5:c9:04:83:c2:8f:62:9e:4f:54:53:a7:d6:
35:b5:be:f3:af:aa:44:2e:27:7b:4c:f6:01:84:4d:e7:cd:df:
25:87:40:01:3f:35:24:65:9f:da:cf:af:95:12:cf:5e:f8:b1:
78:4b:ee:ad:e7:48:4d:89:f5:3a:a1:fd:41:92:1e:3b:59:6d:
e8:07:9f:d3:e6:d6:b1:f2:09:f7:c5:20:be:34:38:74:40:ed:
77:98:69:24:1d:35:26:78:55:5f:8a:9c:1e:f1:33:0a:39:ae:
a7:d5:08:4b:10:bb:aa:dd:e8:bf:ce:10:e5:c2:eb:1d:4d:3d:
d6:93:d8:4c:57:d6:18:33:96:02:ae:92:3a:3e:c7:e8:fb:6a:
62:9f:6d:eb:d3:bd:93:b3:81:ea:a5:36:67:12:0a:bd:94:22:
75:82:8a:5b:ce:88:37:0a:ee:0b:53:dc:2a:2f:02:fc:33:58:
a7:f3:e7:1b:49:e0:85:2d:78:71:d9:0c:be:ce:72:2e:be:2c:
f3:d8:24:eb:04:c1:f0:40:3a:a5:f4:e9:7b:82:c8:3f:5b:ec:
dc:4d:f7:f7:3a:69:45:44:e4:63:88:55:89:35:aa:59:fb:88:
0a:92:3a:22:e4:9c:5c:4d:bc:07:62:8b:c0:51:d5:0f:68:34:
3b:f9:38:c2
-----BEGIN CERTIFICATE-----
MIIGdzCCBV+gAwIBAgISAYbEptYOIp68VOHOgZmjNalzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzA5MDQzNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmRmMzI0ZDhlYWNjMjMyOGU2ZWY0ZWM5NzYwOTkzOTY3YTRlZWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApY9qWpYrRIdjJp2u9Tz7eqXeI+wo
cg1saIAVW3722aVl3glkFJuCRQk/zqXwTMA4C4sifWyuOGmq+QunKJFr55TkKDAi
mbnXuGZY+Ngt60V2HVWCNKGtFiKnOYgvy7HLRvhk7ZHlNbZGeUVUjxm4kAbDnnQ8
H8PYktrjvPpIcq3jJDBYXc1DyY7UQRE0wTYneB7T/tE2cAsdsFJhjUI6P//uHar1
2TMKsKGePmHC0LkI0bkOiZ17cwMAJIZ0Aplm1wStr3J2Mg0hmD3YMWlYGxg5lrO8
E+Yi7e+UFSrjqIXRX7oeCjKlHRX3u/prNHPKZ0Ifxgt1yAxOz5pC9U7xVQIDAQAB
o4IDgzCCA38wHQYDVR0OBBYEFF/fMk2OrMIyjm707JdgmTlnpO71MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvWDk4eVRZNnN3aktPYnZUc2wyQ1pPV2VrN3ZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBlwYIKwYBBQUHAQcBAf8EggGGMIIBgjCCAX4EAgABMIIB
dgMEAD5M4QMEAT5M5gMEAD5M6QMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8BgMEAcF8
CAMEAMF8EAMEAMF8LAMEAMF8UAMEAMF8XQMEAMF8yQMEAMF8zwMEAcI6JgMEAMI6
LwMEAMI6OwMEAMI6QzAMAwQAwlcBAwQCwlcAAwQAwlcHMAwDBADCVwsDBADCVwwD
BADCVxADBALCVxgDBAHCVyQDBADCVzgDBADCV0kDBADCV1MDBADCV2gDBAHCV3ID
BADCV3oDBAHCV4IDBADCV4oDBADCV5UDBADCV6YDBADCV6gwDAMEAcJXqgMEAMJX
rAMEAsJXsAMEAMJXtgMEAMJXuwMEAMJXvgMEAMJXyAMEAMJXygMEAMJX3gMEAMJX
8AMEAMKHEgMEAMKHFzAMAwQAwzojAwQAwzokAwQAwzoyAwQAwzo2AwQAwzo4AwQA
w4UAAwQAw4UaAwQAw4UeAwQAw4UjAwQBw4XCAwQA1MABAwQA1MAKMA0GCSqGSIb3
DQEBCwUAA4IBAQAmXgPI1dXJBIPCj2KeT1RTp9Y1tb7zr6pELid7TPYBhE3nzd8l
h0ABPzUkZZ/az6+VEs9e+LF4S+6t50hNifU6of1Bkh47WW3oB5/T5tax8gn3xSC+
NDh0QO13mGkkHTUmeFVfipwe8TMKOa6n1QhLELuq3ei/zhDlwusdTT3Wk9hMV9YY
M5YCrpI6Psfo+2pin23r072Ts4HqpTZnEgq9lCJ1gopbzog3Cu4LU9wqLwL8M1in
8+cbSeCFLXhx2Qy+znIuvizz2CTrBMHwQDql9Ol7gsg/W+zcTff3OmlFRORjiFWJ
NapZ+4gKkjoi5JxcTbwHYovAUdUPaDQ7+TjC
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:05 2023 by rpki-client on console-fra.rpki-client.org