Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_CM6XBayYAgmUIo9RLSGGaIOnBs.roa
File: _CM6XBayYAgmUIo9RLSGGaIOnBs.roa (raw, json)
Hash identifier: H5+9dduhlHZAnUZAEd3aKS1b9MiJzif9NYIGhiUHWqA=
Subject key identifier: FC:23:3A:5C:16:B2:60:08:26:50:8A:3D:44:B4:86:19:A2:0E:9C:1B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01877021B04046EE1C428333F95B52C2D83A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_CM6XBayYAgmUIo9RLSGGaIOnBs.roa
Signing time: Tue 11 Apr 2023 11:44:28 +0000
ROA not before: Tue 11 Apr 2023 11:44:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:21:b0:40:46:ee:1c:42:83:33:f9:5b:52:c2:d8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 11 11:44:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc233a5c16b2600826508a3d44b48619a20e9c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:95:84:aa:d3:7c:93:02:6c:88:2c:96:0e:
79:fe:bd:55:d1:7f:01:da:6f:d7:74:10:f9:83:b9:
9e:5a:ce:55:ff:dd:e9:b5:72:e9:a7:2f:41:53:f3:
f6:61:6c:20:22:86:19:21:69:6d:5b:e8:98:eb:79:
11:71:4d:69:3f:01:88:93:e8:ed:ce:bc:c1:b0:e5:
22:14:c3:a3:fc:00:49:fb:b8:13:37:13:73:6f:1b:
c3:f0:de:ff:44:bf:11:d1:0a:97:79:9c:bf:5b:14:
9d:6a:29:d9:6a:35:c3:db:29:a4:20:3b:9c:50:60:
c4:ff:81:25:8a:14:0f:1f:dd:07:9a:bd:58:73:5c:
3d:27:cf:59:e0:7b:09:db:08:ea:36:46:7c:b6:55:
e9:9c:69:8d:21:1b:20:1d:66:9c:09:01:57:f7:1f:
98:53:4b:8f:bb:bf:2e:a9:f1:ba:3f:56:f6:43:70:
34:cc:fb:b8:de:59:5d:0f:df:f8:68:ad:b8:df:2e:
72:0c:4a:0a:9f:95:4c:98:37:20:ce:f1:34:b4:59:
7c:e8:1c:96:9a:62:78:b1:ce:8b:2b:e0:1c:55:83:
41:ff:c0:d1:46:66:8c:00:d6:02:eb:ef:43:31:59:
d1:db:26:fb:33:11:c2:bf:bc:c5:99:ae:34:e2:6d:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:23:3A:5C:16:B2:60:08:26:50:8A:3D:44:B4:86:19:A2:0E:9C:1B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_CM6XBayYAgmUIo9RLSGGaIOnBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.178.0/24
192.124.180.0/22
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.133.0/24
193.124.201.0/24
194.58.38.0/24
194.58.40.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.37.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
85:45:05:a8:f2:a3:bc:8f:a7:da:6b:6e:8e:02:3c:c8:99:dc:
29:18:aa:b8:23:7b:34:9e:fe:41:d0:bc:67:8c:51:8c:47:4b:
f7:6c:f2:5b:31:1f:dc:94:dd:a4:b5:9c:95:43:f9:61:6d:c5:
04:c8:20:7e:0f:bd:f1:4d:f0:fb:be:d1:0f:13:e0:7d:7c:df:
1b:48:61:fb:92:44:a7:01:74:8e:a9:c1:64:c9:84:41:ad:c0:
4c:29:f5:b5:41:9b:6a:69:d8:40:74:0f:17:dc:e4:12:ea:94:
7d:e1:fb:5a:91:a2:00:a0:28:24:f0:4d:29:22:cc:30:5c:2a:
16:08:c5:c6:c0:87:48:ac:fe:f8:db:86:a9:1a:ac:1e:14:ec:
38:4e:2c:f7:a1:bc:6e:df:56:75:04:19:cc:6e:f5:73:7c:6d:
dc:d7:88:23:ff:2a:c4:0d:3c:29:b9:ea:58:5c:13:60:a9:0b:
e2:37:49:70:8c:ec:57:3c:57:4a:3e:5d:2c:5f:be:a1:ea:8a:
23:7e:25:24:b6:24:c5:81:d3:87:22:90:7f:4a:7d:63:41:4b:
15:e9:e9:e5:ef:bd:83:08:cf:59:0d:05:91:5e:43:ca:61:d2:
54:e8:e3:bd:84:4d:82:84:35:d8:61:fb:94:6d:9e:86:92:1f:
6a:48:38:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:06 2023 by rpki-client on console-fra.rpki-client.org