Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ9f_-ntL4DnwzZWNpTtXBGbSh4.roa
File: dJ9f_-ntL4DnwzZWNpTtXBGbSh4.roa (raw, json)
Hash identifier: f6oxrNfNLhEHaKVFeTC5ORWb9X+eMgV3oeOHfMxGcW4=
Subject key identifier: 74:9F:5F:FF:E9:ED:2F:80:E7:C3:36:56:36:94:ED:5C:11:9B:4A:1E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188BE50C1FF9959CF618A562CA1DAE7BD05
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ9f_-ntL4DnwzZWNpTtXBGbSh4.roa
Signing time: Thu 15 Jun 2023 09:09:03 +0000
ROA not before: Thu 15 Jun 2023 09:09:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.22.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:50:c1:ff:99:59:cf:61:8a:56:2c:a1:da:e7:bd:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 15 09:09:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=749f5fffe9ed2f80e7c336563694ed5c119b4a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:79:ac:d8:12:2c:e6:03:40:d2:6c:87:32:ca:
58:fc:d3:55:58:2d:3a:54:f6:7f:9c:74:73:4e:05:
8c:b2:00:7c:17:82:ff:b0:34:30:aa:3e:85:ef:a7:
7f:80:d1:65:25:09:ab:8e:ba:7c:93:fb:d0:8a:39:
77:04:97:eb:49:df:88:c2:8d:f7:bc:d8:13:04:b9:
28:17:9f:6f:e2:3a:1d:cb:9f:3b:76:12:16:28:a7:
54:80:20:fc:95:da:f0:8f:09:0e:84:7b:b2:4c:64:
7f:42:94:94:73:41:be:ef:2a:c2:63:b3:fc:d9:bc:
13:ef:01:79:03:96:98:25:74:ec:ac:db:f0:0f:05:
2d:32:3a:7e:88:df:a2:7f:29:b3:a2:6d:6f:0f:7e:
b7:d2:89:ec:70:f0:3d:9c:4e:62:a1:99:b1:4c:d9:
e8:24:32:34:74:26:bb:38:b8:57:03:9a:1a:76:49:
e5:fe:d8:49:12:55:7a:a2:4b:5b:6a:c9:fe:44:e3:
37:b9:92:eb:cf:c4:0b:42:e0:6b:73:bb:e4:30:fa:
83:cf:00:77:1e:8c:52:f0:31:b7:1c:50:96:de:56:
83:33:5a:75:0e:82:fd:88:e2:00:21:32:6f:4f:85:
aa:8a:24:99:f6:e2:55:c8:6b:af:c5:32:a3:25:dc:
92:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9F:5F:FF:E9:ED:2F:80:E7:C3:36:56:36:94:ED:5C:11:9B:4A:1E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dJ9f_-ntL4DnwzZWNpTtXBGbSh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0-192.124.191.255
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.90.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0-193.124.202.255
193.124.204.0/24
194.58.38.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.105.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.176.0/23
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.22.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
26:85:92:44:94:40:1e:47:52:a2:f1:ac:dc:01:dd:cd:c1:55:
84:eb:af:26:66:a3:7e:b6:6a:10:c0:05:e3:d4:6a:1f:a7:ca:
72:ab:b6:97:b3:39:a4:41:0b:04:6b:7e:3f:5f:03:a0:4d:6a:
41:92:c4:57:ab:a6:d0:42:28:2b:18:fd:2e:52:88:b1:b3:e4:
79:64:bb:1c:fd:24:49:97:82:da:16:47:5c:8b:6d:34:d5:c0:
af:de:9b:eb:8a:7e:04:9c:c9:b3:29:bb:74:3c:53:da:1d:f4:
02:55:17:13:42:65:24:98:5e:12:d1:f2:cc:fc:fd:c2:dc:0e:
03:e0:04:42:34:84:8c:c4:a7:ec:a3:a1:e2:a8:34:e7:68:d7:
f1:b6:4a:ed:63:28:f7:24:b4:55:97:06:01:74:f5:42:86:86:
49:38:8f:2a:aa:58:53:97:aa:e6:e7:f4:e0:3c:d2:1e:4c:c6:
d0:d0:e0:b2:42:2a:a7:9c:a9:bd:99:09:b1:10:2d:87:42:39:
f1:c1:48:41:9a:f4:77:fe:3c:0e:76:37:a7:da:63:17:af:9f:
e0:c6:a2:85:46:3c:e7:41:14:df:ee:a0:cb:84:07:00:28:09:
39:d5:2a:3a:e3:66:d4:d0:31:30:3c:14:84:ba:d4:65:c4:b4:
4c:0c:72:e5
-----BEGIN CERTIFICATE-----
MIIHCTCCBfGgAwIBAgISAYi+UMH/mVnPYYpWLKHa570FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNjE1MDkwOTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDlmNWZmZmU5ZWQyZjgwZTdjMzM2NTYzNjk0ZWQ1YzExOWI0YTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXms2BIs5gNA0myHMspY/NNVWC06
VPZ/nHRzTgWMsgB8F4L/sDQwqj6F76d/gNFlJQmrjrp8k/vQijl3BJfrSd+Iwo33
vNgTBLkoF59v4jody587dhIWKKdUgCD8ldrwjwkOhHuyTGR/QpSUc0G+7yrCY7P8
2bwT7wF5A5aYJXTsrNvwDwUtMjp+iN+ifymzom1vD3630onscPA9nE5ioZmxTNno
JDI0dCa7OLhXA5oadknl/thJElV6oktbasn+ROM3uZLrz8QLQuBrc7vkMPqDzwB3
HoxS8DG3HFCW3laDM1p1DoL9iOIAITJvT4WqiiSZ9uJVyGuvxTKjJdyS8QIDAQAB
o4IEFTCCBBEwHQYDVR0OBBYEFHSfX//p7S+A58M2VjaU7VwRm0oeMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZEo5Zl8tbnRMNERud3paV05wVHRYQkdiU2g0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICKQYIKwYBBQUHAQcBAf8EggIYMIICFDCCAhAEAgABMIIC
CAMEAD5M4QMEAT5M5gMEAMB8qgMEAMB8sgMEAMB8tTAMAwQAwHy9AwQGwHyAAwQA
wXwDAwQAwXwGAwQAwXwIAwQAwXwQAwQAwXwxAwQAwXxQAwQAwXxaAwQAwXx8AwQA
wXyFMAwDBAPBfMgDBADBfMoDBADBfMwDBADCOiYDBADCOioDBADCOi8DBADCOjsD
BADCOpoDBADCOt8wDAMEAMJXAQMEAsJXAAMEAMJXBzAMAwQAwlcLAwQAwlcMAwQA
wlcQAwQAwlcSMAwDBAHCVxYDBALCVxgDBAHCVyQDBADCVysDBADCVzgDBADCV0kD
BADCV04DBADCV1MDBADCV2kDBAHCV3IDBADCV3oDBADCV3wDBAHCV4IwDAMEAMJX
hQMEA8JXgAMEAMJXoAMEAMJXogMEAMJXpgMEAMJXqAMEAMJXrAMEAcJXsAMEAMJX
swMEAMJXuwMEAMJXvgMEAMJXyAMEAMJXygMEAMJXzAMEAMJX3gMEAMJX8AMEAMJX
8zAMAwQAwocXAwQAwocYAwQAwocuAwQAwzokAwQAwzo2AwQBwzo6AwQBwzo+AwQA
w4UAAwQAw4UWAwQAw4UeAwQAw4UgAwQAw4UjAwQAw4VKAwQBw4VUAwQBw4XCAwQA
1MAIAwQA1MAKAwQA1MDxAwQA1MD0MAwDBADUwPcDBALUwPgDBADUwQ8wDQYJKoZI
hvcNAQELBQADggEBACaFkkSUQB5HUqLxrNwB3c3BVYTrryZmo362ahDABePUah+n
ynKrtpezOaRBCwRrfj9fA6BNakGSxFerptBCKCsY/S5SiLGz5Hlkuxz9JEmXgtoW
R1yLbTTVwK/em+uKfgScybMpu3Q8U9od9AJVFxNCZSSYXhLR8sz8/cLcDgPgBEI0
hIzEp+yjoeKoNOdo1/G2Su1jKPcktFWXBgF09UKGhkk4jyqqWFOXqubn9OA80h5M
xtDQ4LJCKqecqb2ZCbEQLYdCOfHBSEGa9Hf+PA52N6faYxevn+DGooVGPOdBFN/u
oMuEBwAoCTnVKjrjZtTQMTA8FIS61GXEtEwMcuU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org