Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bfXqx4SrUjy9rvSnECONF_MC5Ys.roa
File: bfXqx4SrUjy9rvSnECONF_MC5Ys.roa (raw, json)
Hash identifier: 2yr+2CLnGjjsxkBEO+kv90NgrBfOjATV+l5n0FThOUc=
Subject key identifier: 6D:F5:EA:C7:84:AB:52:3C:BD:AE:F4:A7:10:23:8D:17:F3:02:E5:8B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189255890A7DA51CB01FFCA2AD314B04120
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bfXqx4SrUjy9rvSnECONF_MC5Ys.roa
Signing time: Wed 05 Jul 2023 09:18:28 +0000
ROA not before: Wed 05 Jul 2023 09:18:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:58:90:a7:da:51:cb:01:ff:ca:2a:d3:14:b0:41:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 5 09:18:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6df5eac784ab523cbdaef4a710238d17f302e58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:91:ae:c1:9f:8c:63:19:7b:8d:6d:c2:0f:80:
3c:7b:68:82:e3:f5:aa:f8:79:d6:eb:5d:e3:f9:8f:
1f:d5:4b:cc:53:da:81:4c:4a:20:83:9c:55:02:01:
4d:fb:ab:e5:da:42:19:54:88:35:f1:2d:ac:6d:06:
7d:de:fd:5f:ef:2c:78:94:43:e5:18:2e:12:5c:dc:
a2:28:3e:d8:7a:19:cd:bd:66:af:2c:f5:23:4c:9e:
f7:87:d6:64:71:35:7a:32:fd:cc:4f:79:25:63:47:
dc:d3:ae:12:83:49:88:6a:10:c0:87:67:a5:eb:aa:
d5:67:05:1c:65:1e:59:cd:cf:72:4d:02:bf:7b:9c:
c8:e2:22:76:b6:4b:d9:38:f2:9b:7a:d8:85:e2:70:
61:8a:47:66:c9:85:b9:13:c2:1e:23:de:96:26:cc:
3f:4b:d2:bb:3a:23:24:5d:cf:33:46:ba:bf:7d:c1:
6e:1c:79:a5:32:49:b3:17:60:26:b1:5c:5f:bb:fe:
73:66:b5:a1:cb:77:ee:0d:6f:5c:37:6f:3b:06:98:
d1:d2:dd:63:7d:1c:14:7f:9d:6c:15:e1:b7:af:c1:
2c:17:08:a3:9b:98:2e:ab:89:3f:1e:22:60:cb:49:
0c:f3:3b:1c:4a:05:76:7c:dd:77:87:27:89:6b:5a:
02:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F5:EA:C7:84:AB:52:3C:BD:AE:F4:A7:10:23:8D:17:F3:02:E5:8B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bfXqx4SrUjy9rvSnECONF_MC5Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.3.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.42.0/24
194.58.47.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.23.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
194.135.46.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.30.0/24
195.133.35.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.223.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
6a:96:56:b1:03:15:1a:71:2a:18:76:cf:73:20:f5:e6:46:0f:
4e:bb:82:03:89:e6:5c:59:f9:0a:44:cf:f5:77:b4:62:24:60:
7a:4a:ed:77:a8:8e:a2:81:c3:c9:9d:9d:10:73:c7:d1:fd:95:
df:57:84:03:8a:a2:dc:35:69:99:b5:e9:a9:9e:29:e2:72:32:
0c:a1:1a:4c:02:4e:14:be:16:32:65:b4:13:14:b5:89:f5:36:
f9:33:d5:4e:9d:51:af:5d:30:99:e5:89:fa:22:6f:ed:ed:d6:
6f:16:6c:70:4d:a1:ce:58:f4:cc:7f:b2:20:d1:d1:9a:33:f8:
04:66:48:8a:8e:7a:38:ee:5c:8c:e5:d7:18:03:53:ea:c1:ad:
2c:bb:b2:9e:5d:38:16:46:9d:e9:51:af:e9:90:54:8e:35:58:
e7:c5:f1:d2:b2:95:2d:1d:ba:25:95:1a:a1:63:0e:5f:81:ae:
75:f0:a2:0d:0a:88:8b:52:9c:63:bb:f8:e6:32:d0:45:f5:4f:
fd:9a:05:37:7b:ce:e7:07:f5:18:8c:9e:a0:99:24:0b:35:06:
83:0e:32:ab:45:23:4f:2f:1d:df:a1:ce:21:b4:1d:1f:05:dd:
ec:ec:ab:2b:8d:05:ca:96:9b:1b:d8:05:3c:b9:02:91:2e:3a:
ba:d0:5c:26
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-ams.rpki-client.org