Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_-QcJNTd_cAtIY_r3caGI22ELWE.roa
File: _-QcJNTd_cAtIY_r3caGI22ELWE.roa (raw, json)
Hash identifier: FHZOZWpCAoBwKj+d64Uk9TrwQUEmiDJ6/pkzDMXRoaU=
Subject key identifier: FF:E4:1C:24:D4:DD:FD:C0:2D:21:8F:EB:DD:C6:86:23:6D:84:2D:61
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018681C85F8ED2AB2182EF1B2B5BDB4C7335
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_-QcJNTd_cAtIY_r3caGI22ELWE.roa
Signing time: Fri 24 Feb 2023 04:57:17 +0000
ROA not before: Fri 24 Feb 2023 04:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.4.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.38.0/23 maxlen: 23
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 23
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:81:c8:5f:8e:d2:ab:21:82:ef:1b:2b:5b:db:4c:73:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 24 04:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffe41c24d4ddfdc02d218febddc686236d842d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:18:6f:2f:00:13:70:c3:c5:43:ee:d6:6d:b5:
d4:e7:0c:63:5b:a2:10:48:6f:47:02:e5:c2:39:4e:
7b:53:1b:9d:fc:16:48:d3:b9:92:1c:f9:d9:02:b0:
1a:22:08:5d:d8:59:95:4b:ee:3f:e1:d8:41:93:92:
9c:77:1e:41:32:ae:82:09:81:7c:1b:50:73:5c:2d:
c7:06:6f:5c:0c:78:a7:85:6a:60:39:8c:17:73:7c:
04:9b:89:ff:f2:a6:26:e3:da:ef:e6:1b:83:5c:3a:
e2:ac:54:5c:bf:af:f6:fc:e2:87:0b:ef:46:d0:48:
37:2b:c8:fb:64:81:d3:2d:1b:0c:2a:a5:87:7c:94:
f4:5b:05:17:ae:cb:10:ed:1d:da:8b:03:ca:6b:e5:
db:4b:f4:a3:b2:fe:7e:40:ae:46:f9:8c:6a:5a:32:
dc:8d:63:b1:e3:88:56:04:04:1a:82:b3:cb:53:55:
5c:bf:ec:e5:8c:a3:20:5e:19:32:21:78:b4:ce:90:
76:07:d0:fd:e9:ba:a4:48:94:40:be:7e:70:b5:eb:
f3:e7:e5:05:49:3e:3b:d5:84:36:90:d5:42:93:6f:
fd:c4:2c:e8:93:58:32:28:45:a2:2a:bd:47:5c:13:
ab:a8:dd:6d:c6:be:6e:c1:55:4f:e5:3c:6a:7a:d8:
46:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E4:1C:24:D4:DD:FD:C0:2D:21:8F:EB:DD:C6:86:23:6D:84:2D:61
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_-QcJNTd_cAtIY_r3caGI22ELWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0/23
194.58.47.0/24
194.58.59.0/24
194.87.1.0/24
194.87.3.0-194.87.4.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.36.0/23
194.87.42.0/24
194.87.56.0/24
194.87.73.0/24
194.87.76.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.149.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.35.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ac:37:c4:03:37:48:c3:3e:cc:c9:86:50:01:78:ad:0f:e8:
95:6b:46:5e:de:1c:59:9c:52:25:59:43:f2:8a:9e:5c:83:54:
b2:66:d8:2f:4d:0d:9b:1a:7f:11:ae:bb:be:37:8c:3d:46:bd:
37:e4:87:0d:86:2a:42:95:06:eb:72:60:09:a0:31:23:c9:bd:
38:b1:7d:51:bd:64:b9:70:14:da:3b:61:97:6d:a7:09:dd:20:
47:13:b6:2a:71:e2:b5:06:d2:74:4e:13:f3:f2:30:ab:8f:6c:
96:d1:e3:33:23:c2:29:31:ea:01:b6:e0:6a:b8:6e:f3:13:2b:
7f:44:33:2b:db:1d:7a:17:08:f1:08:94:fa:0b:35:69:e4:96:
94:fa:bd:ed:ce:68:9e:db:28:6e:7b:e4:4a:3f:4e:0c:2c:35:
a5:e8:6b:b1:e8:bf:3e:1f:c1:e6:86:47:6a:45:da:46:9d:0e:
b4:a7:15:1a:86:4e:21:19:b5:d3:ff:a9:7d:8e:47:40:85:3a:
67:70:47:ff:43:50:78:29:13:8f:41:e0:a8:df:32:b9:17:84:
46:4f:dc:55:04:30:e9:9d:4e:06:ec:5c:a2:fb:c9:40:36:95:
b6:75:a3:3f:8f:bd:fc:5a:4a:b1:48:21:b8:50:a1:c7:b6:99:
f2:4b:f1:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-ams.rpki-client.org