Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DLAie3rxdFRpDob-jhvZz_jClA.roa
File: _DLAie3rxdFRpDob-jhvZz_jClA.roa (raw, json)
Hash identifier: +T20BqYin+uMoju+jJPn8p/O5Vm5OxUG/oExks/2Qzc=
Subject key identifier: FC:32:C0:89:ED:EB:C5:D1:51:A4:3A:1B:FA:38:6F:67:3F:E3:0A:50
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185C931D322931208208AD673B52CDA12E7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DLAie3rxdFRpDob-jhvZz_jClA.roa
Signing time: Thu 19 Jan 2023 08:42:43 +0000
ROA not before: Thu 19 Jan 2023 08:42:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.126.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.11.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:31:d3:22:93:12:08:20:8a:d6:73:b5:2c:da:12:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 19 08:42:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc32c089edebc5d151a43a1bfa386f673fe30a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d0:a3:06:bb:9e:6d:5d:ac:2d:32:6e:69:cf:
d9:ef:8b:e5:1d:bb:68:06:11:6e:97:7d:75:d5:d0:
d6:c2:c3:2d:75:d2:d3:fe:d8:d3:6f:75:53:21:a4:
b1:4f:91:ee:10:1c:2b:b3:a3:50:1d:67:b0:75:de:
2f:a2:07:84:d4:98:cf:1f:fa:f1:c0:e4:18:43:43:
52:92:f0:90:9f:48:97:54:ed:b4:12:53:4c:b7:9b:
f8:39:be:77:dd:cb:f8:41:b9:d4:80:b7:1a:8e:31:
11:a1:5d:00:14:08:d8:04:74:d6:b5:bb:8d:ea:6f:
d7:27:ab:4f:bf:96:91:38:f9:bd:46:f8:71:6c:44:
42:d4:d1:16:50:6a:e9:e3:de:93:2f:0e:c8:00:e0:
25:66:8b:42:00:06:e3:2d:8c:d7:3b:18:69:02:d2:
c4:5e:b2:3e:b1:d4:a4:ec:19:28:e1:7b:b5:d7:ad:
70:cf:01:15:d8:58:32:cc:90:19:9a:e7:46:b3:36:
f4:cf:78:33:0d:0a:ea:95:01:ee:b4:e1:5e:08:5f:
a5:d0:d3:2a:5a:7d:ce:d4:98:42:ab:53:78:67:7b:
c9:43:69:87:e5:55:7d:ce:9d:b3:62:08:33:fe:2b:
be:fb:39:c1:79:10:f8:bc:3e:a5:89:67:d7:dd:62:
85:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:32:C0:89:ED:EB:C5:D1:51:A4:3A:1B:FA:38:6F:67:3F:E3:0A:50
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DLAie3rxdFRpDob-jhvZz_jClA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.133.0/24
193.124.202.0/23
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.3.0/24
194.87.6.0/23
194.87.11.0/24
194.87.16.0/24
194.87.22.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.126.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.204.0/24
194.87.208.0/23
194.87.222.0/23
194.87.226.0/24
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.194.0/23
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.11.0-212.193.12.255
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c3:1d:40:4c:b5:8e:1b:fe:0b:fc:78:2d:77:b3:3a:7c:5c:
62:31:00:7c:ff:09:78:fb:6b:ed:91:23:96:46:d2:30:9e:28:
93:40:74:21:36:ed:26:7e:29:26:3e:0e:00:ff:d0:23:02:7d:
c6:bd:e1:2c:a5:6f:ff:fa:6b:60:c6:b1:cb:84:ed:bd:27:41:
de:3d:e1:ab:b3:b8:9a:d4:74:c7:92:11:0a:ce:04:1c:c9:32:
cb:46:ad:55:17:d6:9e:82:90:a8:30:e9:a7:76:a7:d1:b1:e7:
35:40:24:b6:2c:e9:2b:f1:80:83:e6:5f:aa:f3:36:72:08:1c:
08:4b:02:76:77:47:08:c1:9c:cf:04:9b:86:d3:7d:7c:a7:93:
0c:c7:3d:83:50:6c:33:c2:3b:90:72:19:b7:9f:34:38:de:75:
b2:03:fc:03:01:d8:d8:ea:0b:8c:b5:3f:ae:77:5e:a3:36:0b:
17:88:f4:26:94:80:f2:3f:1e:41:14:8f:f2:2f:20:c8:ee:3f:
00:9a:f0:cb:aa:80:d9:5a:e4:6f:e7:d2:34:34:1f:73:bc:ab:
30:86:b6:8b:e5:d3:58:60:a4:e4:60:83:5c:a7:21:cc:bf:7b:
53:74:12:f6:0d:60:05:4d:49:49:c1:ad:fd:fc:09:84:0f:7d:
04:c2:2b:63
-----BEGIN CERTIFICATE-----
MIIGczCCBVugAwIBAgISAYXJMdMikxIIIIrWc7Us2hLnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTE5MDg0MjQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzMyYzA4OWVkZWJjNWQxNTFhNDNhMWJmYTM4NmY2NzNmZTMwYTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9CjBruebV2sLTJuac/Z74vlHbto
BhFul3111dDWwsMtddLT/tjTb3VTIaSxT5HuEBwrs6NQHWewdd4vogeE1JjPH/rx
wOQYQ0NSkvCQn0iXVO20ElNMt5v4Ob533cv4QbnUgLcajjERoV0AFAjYBHTWtbuN
6m/XJ6tPv5aROPm9RvhxbERC1NEWUGrp496TLw7IAOAlZotCAAbjLYzXOxhpAtLE
XrI+sdSk7Bko4Xu1161wzwEV2FgyzJAZmudGszb0z3gzDQrqlQHutOFeCF+l0NMq
Wn3O1JhCq1N4Z3vJQ2mH5VV9zp2zYggz/iu++znBeRD4vD6liWfX3WKFCQIDAQAB
o4IDfzCCA3swHQYDVR0OBBYEFPwywInt68XRUaQ6G/o4b2c/4wpQMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvX0RMQWllM3J4ZEZScERvYi1qaHZael9qQ2xBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBkwYIKwYBBQUHAQcBAf8EggGCMIIBfjCCAXoEAgABMIIB
cgMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vgMEAMF8AwMEAMF8BgMEAMF8
CAMEAMF8hQMEAcF8ygMEAMF8zwMEAcI6JgMEAMI6KjAMAwQAwjotAwQEwjogAwQA
wjo7AwQAwlcDAwQBwlcGAwQAwlcLAwQAwlcQAwQAwlcWAwQCwlcYAwQAwlc4AwQA
wldMAwQBwldSAwQAwldoMAwDBAHCV3IDBADCV3QDBADCV3YDBADCV3sDBADCV34D
BADCV4gDBAHCV4oDBADCV5UDBADCV6MDBADCV6UwDAMEAMJXqwMEAMJXrAMEAMJX
sAMEAMJXvgMEAcJXxgMEAMJXygMEAMJXzAMEAcJX0AMEAcJX3gMEAMJX4gMEAMJX
6QMEAMM6MjAMAwQCwzo0AwQGwzoAAwQAw4UMAwQAw4U3AwQAw4VeAwQBw4XCAwQB
1MAAAwQB1MDQAwQA1MEAMAwDBADUwQsDBADUwQwDBADUwQ4wDQYJKoZIhvcNAQEL
BQADggEBAFLDHUBMtY4b/gv8eC13szp8XGIxAHz/CXj7a+2RI5ZG0jCeKJNAdCE2
7SZ+KSY+DgD/0CMCfca94Sylb//6a2DGscuE7b0nQd494auzuJrUdMeSEQrOBBzJ
MstGrVUX1p6CkKgw6ad2p9Gx5zVAJLYs6SvxgIPmX6rzNnIIHAhLAnZ3RwjBnM8E
m4bTfXynkwzHPYNQbDPCO5ByGbefNDjedbID/AMB2NjqC4y1P653XqM2CxeI9CaU
gPI/HkEUj/IvIMjuPwCa8MuqgNla5G/n0jQ0H3O8qzCGtovl01hgpORgg1ynIcy/
e1N0EvYNYAVNSUnBrf38CYQPfQTCK2M=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:06 2023 by rpki-client on console-fra.rpki-client.org