Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hiQ4sE7HkBnaGtuQqlxHwG4AUUY.roa
File: hiQ4sE7HkBnaGtuQqlxHwG4AUUY.roa (raw, json)
Hash identifier: vqajHyy8tzgT28BvHgx8ZFE6QEzFydNMXM2gf+/6QB0=
Subject key identifier: 86:24:38:B0:4E:C7:90:19:DA:1A:DB:90:AA:5C:47:C0:6E:00:51:46
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188AFB52876EBC2D9E5138F8A8708144D08
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hiQ4sE7HkBnaGtuQqlxHwG4AUUY.roa
Signing time: Mon 12 Jun 2023 13:04:25 +0000
ROA not before: Mon 12 Jun 2023 13:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.22.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:b5:28:76:eb:c2:d9:e5:13:8f:8a:87:08:14:4d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 12 13:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=862438b04ec79019da1adb90aa5c47c06e005146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c7:f9:74:dc:1f:03:e5:3c:b7:ef:8e:a2:eb:
59:89:e6:eb:e8:9f:dd:dd:10:a9:12:99:3b:84:f7:
3f:a3:89:eb:ba:14:0d:a5:e9:02:e5:ed:ad:30:b9:
cb:76:bb:09:4b:f3:58:a3:40:e2:9d:38:39:4d:39:
89:1e:a1:c2:65:d4:91:5b:0c:ee:20:dc:72:64:9c:
28:e5:0c:37:d0:1e:91:df:c5:e9:32:a2:4b:e8:24:
f5:f0:6d:6d:28:07:61:a5:bf:a5:67:ab:df:a1:f7:
ab:67:0b:1d:93:cc:f2:7b:c2:0c:a5:39:9c:bf:81:
fb:57:fc:87:1e:ef:de:e2:35:36:43:66:b3:88:e2:
22:9e:9b:81:42:ec:49:a8:25:37:35:12:68:0b:44:
bf:16:8f:46:48:e4:f4:de:c9:0e:0c:33:40:d0:b7:
38:00:19:fd:69:34:78:0b:67:38:32:7c:29:68:24:
07:00:c1:a4:51:eb:cc:38:66:d1:12:69:31:3d:61:
14:29:bd:1c:ec:d2:40:2f:b3:8c:95:e1:5d:a4:84:
c9:0f:f8:b7:6f:e8:bd:28:c9:fa:26:a5:f4:f7:ec:
d5:6b:bb:28:69:0b:37:0f:0a:10:4b:ec:29:a0:24:
1c:ed:20:0c:14:bd:c4:24:f6:89:83:be:8e:b0:01:
33:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:24:38:B0:4E:C7:90:19:DA:1A:DB:90:AA:5C:47:C0:6E:00:51:46
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hiQ4sE7HkBnaGtuQqlxHwG4AUUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0-192.124.191.255
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.90.0/24
193.124.93.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0-193.124.202.255
193.124.204.0/24
194.58.38.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.105.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.149.0/24
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.176.0/23
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.22.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:15:39:e9:25:41:10:6e:d4:5a:3f:0b:bc:3a:8b:5a:59:65:
88:28:ea:88:1f:e9:5f:48:03:d0:10:07:93:35:ad:c2:27:97:
e0:b1:3e:7c:3a:17:bb:5e:55:a9:1b:91:fc:48:a2:67:d4:63:
3b:9f:95:c2:49:b8:a6:7e:df:2f:2d:af:32:66:0f:ff:b4:92:
79:97:3d:35:dc:e0:26:f5:f9:4d:76:0c:12:d1:8d:b4:d4:c2:
95:20:0c:28:fe:fb:35:bb:59:f8:41:f9:f0:b4:d2:24:6b:af:
a6:2b:f5:65:7a:f4:89:42:3d:a7:94:4c:f6:75:3c:63:2c:64:
43:0f:1b:f7:74:c1:21:47:ed:59:5c:81:e5:a0:39:0c:32:0a:
67:fd:c9:33:cc:09:b6:be:4f:3b:45:41:3d:11:96:ec:25:bf:
9c:ae:c2:28:c4:0f:c0:8e:d2:33:b6:76:03:6c:4f:31:0b:3c:
35:e9:cc:c4:d4:c7:70:ca:4f:11:0a:14:8c:ef:52:0e:20:9f:
d0:e8:16:c6:5b:53:eb:92:44:fc:19:44:55:ef:d3:e4:2b:7f:
69:e2:5d:51:16:19:88:29:45:f1:5c:df:ca:f3:a4:bf:d5:a6:
24:33:5d:59:e3:1a:f8:b0:25:d5:db:23:e8:c9:14:8e:4c:0e:
a6:a1:0f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org