Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YsoE66oFj5_l7fwddx0ni_ojkTk.roa
File: YsoE66oFj5_l7fwddx0ni_ojkTk.roa (raw, json)
Hash identifier: zcNnXdaUIqw+fBSjIDf3tIqmOJX7WGbcA4QJGWe+ofk=
Subject key identifier: 62:CA:04:EB:AA:05:8F:9F:E5:ED:FC:1D:77:1D:27:8B:FA:23:91:39
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189495F08539746B44DB0CF5ED14ACBDF41
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YsoE66oFj5_l7fwddx0ni_ojkTk.roa
Signing time: Wed 12 Jul 2023 09:11:52 +0000
ROA not before: Wed 12 Jul 2023 09:11:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:5f:08:53:97:46:b4:4d:b0:cf:5e:d1:4a:cb:df:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 12 09:11:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ca04ebaa058f9fe5edfc1d771d278bfa239139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:8c:d9:3f:65:fe:af:51:66:8c:26:7f:83:
98:bf:8b:0d:c3:17:84:15:e6:27:de:c3:30:01:f2:
fd:56:d1:3e:af:80:1d:4d:a5:ce:80:95:3c:63:cc:
7d:74:50:79:d4:c2:d7:be:c9:12:52:4b:99:fa:ad:
6e:12:0b:45:41:0f:32:54:98:91:00:5c:63:ff:32:
01:d2:84:fb:fd:ea:07:14:31:f4:0a:11:f5:56:4f:
29:35:be:b7:ab:a9:84:3a:c5:7d:53:69:b4:80:58:
87:c8:85:fa:c8:ba:a2:19:1d:50:0a:47:da:7b:4c:
59:d1:c9:c7:07:e7:7f:b4:c5:81:fa:3b:ac:05:ed:
ac:40:4f:c5:0c:57:24:62:69:bb:da:cb:37:a3:4b:
9a:eb:d9:d4:f8:91:38:68:5f:5c:5b:75:f0:cb:b3:
15:7d:80:f8:46:76:db:72:37:7e:28:30:30:b4:83:
9f:6c:85:c4:fb:4f:29:35:9e:52:b2:e0:c4:ff:c2:
d0:2b:d8:d7:a9:18:0b:7d:af:aa:bc:81:ba:e2:d3:
c4:57:03:73:51:2d:ef:e8:d2:77:03:67:cc:b2:9c:
e5:d5:d0:0c:24:b0:25:4b:d2:67:ae:07:c1:cc:4f:
fc:d6:2a:dd:67:3a:6d:09:ec:3b:43:2c:89:c6:84:
fd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CA:04:EB:AA:05:8F:9F:E5:ED:FC:1D:77:1D:27:8B:FA:23:91:39
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YsoE66oFj5_l7fwddx0ni_ojkTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.30.0/24
195.133.35.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
57:3e:0f:7d:00:fe:5f:be:0a:35:24:0f:62:a4:cc:97:0b:19:
7d:c1:d9:d4:76:ab:0a:5e:6a:f1:de:f9:e6:a9:49:97:f2:a7:
85:c4:f8:7d:e5:4b:d7:50:07:7d:b9:f6:85:b4:4c:d0:27:9c:
e1:65:3a:de:75:7a:b5:54:c3:44:39:4c:ab:d2:d2:2f:27:e5:
e9:c3:fa:b4:df:a9:fb:61:34:a6:05:23:04:27:ad:79:e5:bb:
e0:22:05:33:b5:a4:01:78:46:78:2b:70:6a:7d:fe:b4:f4:83:
56:36:8d:25:d7:9d:ee:2e:0c:d8:3c:cc:5d:50:98:30:15:8f:
fa:08:b7:d6:95:94:f0:8b:91:d2:c6:12:f0:0c:f9:da:1f:ae:
b1:7d:f2:e7:ec:e1:0e:a2:e5:94:b5:06:50:a0:80:cd:3d:a1:
8a:fc:d1:6b:9a:76:af:e6:c9:23:10:f9:43:cb:e5:b5:d6:90:
52:46:11:e4:dc:05:f1:34:fd:e3:09:64:9a:f4:74:4d:14:0a:
64:37:45:b7:1f:9a:9e:e7:43:9b:1d:29:e2:55:2b:cb:3c:77:
b1:c2:c9:f0:eb:3b:cb:6a:4a:14:bb:86:88:af:68:c6:ed:f6:
be:d7:e6:d7:d3:95:04:f9:2b:bf:e8:d3:2b:8c:07:f7:4c:96:
12:04:d3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:06 2023 by rpki-client on console-fra.rpki-client.org