Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_XyZU-CLjQA7lJ96qxMNvG53_Z8.roa
File: _XyZU-CLjQA7lJ96qxMNvG53_Z8.roa (raw, json)
Hash identifier: GZn813vJEvvGlF50qUKNT8b8b+bJaNmU+ffuLPK141A=
Subject key identifier: FD:7C:99:53:E0:8B:8D:00:3B:94:9F:7A:AB:13:0D:BC:6E:77:FD:9F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189A573A9E5EBDB33D2D10D208586439796
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_XyZU-CLjQA7lJ96qxMNvG53_Z8.roa
Signing time: Sun 30 Jul 2023 06:19:28 +0000
ROA not before: Sun 30 Jul 2023 06:19:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
194.87.188.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a5:73:a9:e5:eb:db:33:d2:d1:0d:20:85:86:43:97:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 30 06:19:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd7c9953e08b8d003b949f7aab130dbc6e77fd9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e2:68:4c:74:27:68:90:6c:db:0e:91:ce:80:
fc:b9:55:cb:7c:83:04:e0:24:08:18:ca:d1:dd:45:
f2:e4:6d:2c:db:8f:57:a2:7d:e7:11:80:1d:17:79:
e8:ca:0f:8b:ca:cc:33:98:af:6a:dd:9a:15:2a:d9:
eb:7d:ad:da:0e:6e:81:6a:1c:83:2e:0e:e2:9d:16:
46:7f:92:ca:97:ec:f0:33:23:83:e2:79:d5:35:ba:
2d:64:c6:de:0c:55:a0:15:4b:ca:7e:f2:c6:a8:5f:
bd:f4:64:36:fd:a8:34:77:e3:3e:ef:98:8e:1a:18:
ce:a4:ac:8b:18:fc:a2:a8:bc:03:66:13:8f:60:db:
72:f1:d5:e1:97:8d:00:f0:2e:f7:cb:90:87:bc:83:
69:59:ee:45:53:ab:b2:74:85:b3:e8:77:c8:81:7e:
78:1e:51:77:35:d7:1b:1c:c5:36:e9:fb:63:6a:4e:
11:fd:39:7d:59:1f:2c:b7:11:5d:51:e3:16:07:55:
1a:21:a5:9b:3f:c5:7f:c2:48:61:cc:bb:4e:6d:19:
29:64:9b:0d:2c:55:08:56:db:c4:76:6e:db:c7:5b:
c4:a3:b5:5f:3e:f7:66:4d:6d:de:15:12:6f:57:48:
25:a2:21:e9:98:4d:24:af:96:35:83:1d:6b:24:cd:
dd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7C:99:53:E0:8B:8D:00:3B:94:9F:7A:AB:13:0D:BC:6E:77:FD:9F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_XyZU-CLjQA7lJ96qxMNvG53_Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
194.87.3.0/24
194.87.16.0/24
194.87.34.0/24
194.87.42.0/24
194.87.86.0/24
194.87.91.0/24
194.87.104.0/24
194.87.117.0-194.87.120.255
194.87.176.0/23
194.87.188.0/24
195.58.56.0/24
195.58.59.0/24
195.58.61.0-195.58.62.255
195.133.84.0/24
212.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ff:b6:23:73:e1:cf:c8:68:42:c7:c4:18:e2:ca:da:c7:e9:
99:b3:26:33:e0:7b:54:f6:3e:1a:10:fe:bc:4a:24:05:d9:31:
1f:fb:00:7b:38:d0:c9:1a:b0:34:40:f4:61:79:16:65:43:68:
6b:fd:f3:fb:6a:13:31:74:50:c2:bf:e8:5d:79:3b:25:cd:ef:
a9:7a:be:b3:7d:df:93:94:5f:94:e2:92:c7:25:b3:8a:0e:66:
dc:d7:5f:51:fb:be:0f:57:ad:ce:8d:44:8a:de:2e:d4:59:43:
54:37:a9:b8:5a:55:d7:9a:e9:af:20:53:5a:12:1f:0c:1c:64:
c4:7f:e7:30:8e:34:31:bf:ad:dc:a4:c3:82:31:3d:11:18:8c:
14:9e:5d:d1:d5:27:d2:09:e0:cb:81:fa:0c:3e:cf:bf:20:9a:
6c:76:b8:52:0b:ea:92:78:7a:fa:23:a7:85:23:17:13:6d:c4:
c1:0b:ba:58:60:ac:2a:06:62:2a:cf:b4:21:7b:2c:5a:c7:a6:
35:7e:e2:97:94:8d:20:e2:1a:88:4a:19:92:f0:4c:52:72:ce:
f3:1b:bd:2f:d4:8d:d9:37:23:9a:3f:e1:4f:83:e6:15:93:fa:
6d:5d:ad:8c:3c:36:af:2a:9a:50:ef:c3:36:10:49:af:81:75:
b0:23:89:f6
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAYmlc6nl69sz0tENIIWGQ5eWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNzMwMDYxOTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDdjOTk1M2UwOGI4ZDAwM2I5NDlmN2FhYjEzMGRiYzZlNzdmZDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgOJoTHQnaJBs2w6RzoD8uVXLfIME
4CQIGMrR3UXy5G0s249Xon3nEYAdF3noyg+LyswzmK9q3ZoVKtnrfa3aDm6BahyD
Lg7inRZGf5LKl+zwMyOD4nnVNbotZMbeDFWgFUvKfvLGqF+99GQ2/ag0d+M+75iO
GhjOpKyLGPyiqLwDZhOPYNty8dXhl40A8C73y5CHvINpWe5FU6uydIWz6HfIgX54
HlF3NdcbHMU26ftjak4R/Tl9WR8stxFdUeMWB1UaIaWbP8V/wkhhzLtObRkpZJsN
LFUIVtvEdm7bx1vEo7VfPvdmTW3eFRJvV0gloiHpmE0kr5Y1gx1rJM3dbwIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFP18mVPgi40AO5SfeqsTDbxud/2fMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvX1h5WlUtQ0xqUUE3bEo5NnF4TU52RzUzX1o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAD5M4gME
AMJXAwMEAMJXEAMEAMJXIgMEAMJXKgMEAMJXVgMEAMJXWwMEAMJXaDAMAwQAwld1
AwQAwld4AwQBwlewAwQAwle8AwQAwzo4AwQAwzo7MAwDBADDOj0DBADDOj4DBADD
hVQDBADUwAgwDQYJKoZIhvcNAQELBQADggEBAIH/tiNz4c/IaELHxBjiytrH6Zmz
JjPge1T2PhoQ/rxKJAXZMR/7AHs40MkasDRA9GF5FmVDaGv98/tqEzF0UMK/6F15
OyXN76l6vrN935OUX5Tikscls4oOZtzXX1H7vg9Xrc6NRIreLtRZQ1Q3qbhaVdea
6a8gU1oSHwwcZMR/5zCONDG/rdykw4IxPREYjBSeXdHVJ9IJ4MuB+gw+z78gmmx2
uFIL6pJ4evojp4UjFxNtxMELulhgrCoGYirPtCF7LFrHpjV+4peUjSDiGohKGZLw
TFJyzvMbvS/Ujdk3I5o/4U+D5hWT+m1drYw8Nq8qmlDvwzYQSa+BdbAjifY=
-----END CERTIFICATE-----
Generated at Wed Aug 2 12:20:23 2023 by rpki-client on console-ams.rpki-client.org