Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kWyJzmfZmpN5PcLQ-RVWNOqqblU.roa
File: kWyJzmfZmpN5PcLQ-RVWNOqqblU.roa (raw, json)
Hash identifier: 3EKvadGGgI+C5C46jTWgYtqSsdHuKOWEk6+COzBdRBg=
Subject key identifier: 91:6C:89:CE:67:D9:9A:93:79:3D:C2:D0:F9:15:56:34:EA:AA:6E:55
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01859190C596F743E8DE72F4716B805602B0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kWyJzmfZmpN5PcLQ-RVWNOqqblU.roa
Signing time: Sun 08 Jan 2023 13:27:42 +0000
ROA not before: Sun 08 Jan 2023 13:27:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.62.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Jan 2023 16:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:91:90:c5:96:f7:43:e8:de:72:f4:71:6b:80:56:02:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 8 13:27:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=916c89ce67d99a93793dc2d0f9155634eaaa6e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:79:d8:b4:f2:38:a8:39:e6:f0:c9:92:33:b9:
1f:c9:45:14:fa:64:2e:1a:3b:2b:37:8c:23:84:f9:
2a:20:93:31:97:d8:28:52:c8:b5:80:fd:f7:fa:75:
b2:54:ba:75:e4:67:df:d4:14:c6:80:39:e7:d2:0f:
c2:ba:2a:1a:0c:4c:1d:f1:24:20:f9:57:47:93:09:
e2:3c:7d:63:79:32:54:95:bc:04:12:d9:23:c3:87:
9e:e6:cb:18:da:ca:2f:2e:0d:6f:a1:05:2d:d7:73:
17:a6:b9:a9:4e:27:be:7b:c8:5e:03:cf:49:ef:6a:
71:65:55:b3:51:f7:d1:eb:d2:ae:a2:44:16:52:62:
d6:e7:f7:00:d4:6c:af:99:0c:7d:ea:87:85:5e:54:
26:fd:74:c3:f9:f4:e6:6b:e0:34:57:83:61:72:62:
e0:2a:81:76:a6:4b:6d:d3:d6:10:5c:b7:1b:63:ac:
da:db:a9:aa:b9:d1:61:e5:7c:8c:20:40:50:84:57:
4e:7e:d6:e9:63:6a:25:ac:64:bf:1d:8b:b3:02:29:
86:4b:3c:0c:20:57:e0:2f:16:39:61:c7:40:70:f8:
e8:e4:c6:18:67:50:4e:29:b9:41:ae:59:a1:3c:ed:
71:e5:57:e9:f5:ab:8d:6d:b7:c8:55:c3:1b:57:b2:
e1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6C:89:CE:67:D9:9A:93:79:3D:C2:D0:F9:15:56:34:EA:AA:6E:55
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kWyJzmfZmpN5PcLQ-RVWNOqqblU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.45.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.62.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.190.0/24
194.87.198.0/23
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b2:73:dc:7e:54:07:9d:60:c3:bc:fe:5d:34:a2:4f:6a:a5:
22:3b:97:d1:42:d0:12:23:5b:40:61:69:d4:37:4c:31:ed:7b:
64:8a:71:ce:98:60:7e:05:4e:70:39:8f:d3:02:83:cc:f3:7a:
5e:30:f7:54:a9:90:24:44:d6:03:48:bb:c9:0a:01:4f:36:cc:
af:c8:90:c0:10:19:b7:81:d6:b0:f4:84:83:19:87:c9:26:71:
bd:44:da:60:2c:89:9c:8f:c7:46:92:1d:4a:52:0a:26:ee:f1:
84:93:a0:00:1d:e7:a2:a1:75:02:55:c3:90:44:51:7c:0d:4f:
b4:4d:0c:a1:c3:ed:97:d0:58:e7:e2:6f:b3:be:65:de:35:c8:
f8:3c:26:67:f8:f3:e3:37:82:cd:84:e8:8b:3d:04:61:29:67:
5f:ac:b5:ab:7c:24:e9:43:fc:0c:9d:a3:06:d3:2f:7f:43:54:
77:4a:9e:55:2e:72:63:68:db:40:c3:28:cd:cc:0f:11:50:e8:
8d:4f:15:13:5f:0e:36:24:51:0d:a8:9a:d5:47:e3:cd:a4:b0:
ed:43:94:b6:aa:75:8c:dd:3e:2f:47:4d:67:55:08:42:4e:8e:
63:d9:59:31:3a:3e:da:57:51:f0:15:b4:ba:c2:aa:55:76:b0:
b2:ac:8d:30
-----BEGIN CERTIFICATE-----
MIIGYzCCBUugAwIBAgISAYWRkMWW90Po3nL0cWuAVgKwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTA4MTMyNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTZjODljZTY3ZDk5YTkzNzkzZGMyZDBmOTE1NTYzNGVhYWE2ZTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXnYtPI4qDnm8MmSM7kfyUUU+mQu
GjsrN4wjhPkqIJMxl9goUsi1gP33+nWyVLp15Gff1BTGgDnn0g/CuioaDEwd8SQg
+VdHkwniPH1jeTJUlbwEEtkjw4ee5ssY2sovLg1voQUt13MXprmpTie+e8heA89J
72pxZVWzUffR69KuokQWUmLW5/cA1GyvmQx96oeFXlQm/XTD+fTma+A0V4NhcmLg
KoF2pktt09YQXLcbY6za26mqudFh5XyMIEBQhFdOftbpY2olrGS/HYuzAimGSzwM
IFfgLxY5YcdAcPjo5MYYZ1BOKblBrlmhPO1x5Vfp9auNbbfIVcMbV7LhgwIDAQAB
o4IDbzCCA2swHQYDVR0OBBYEFJFsic5n2ZqTeT3C0PkVVjTqqm5VMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEva1d5SnptZlptcE41UGNMUS1SVldOT3FxYmxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBgwYIKwYBBQUHAQcBAf8EggFyMIIBbjCCAWoEAgABMIIB
YgMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vgMEAMF8AwMEAMF8BgMEAMF8
CAMEAMF8EgMEAMF8KQMEAMF8LQMEAMF8fQMEAMF8hQMEAMF8yQMEAMF8ywMEAMF8
zwMEAcI6JgMEAMI6KjAMAwQAwjotAwQEwjogAwQAwjo7AwQAwlcGAwQCwlcYAwQA
wlckAwQAwlc4AwQAwlc+AwQAwldMAwQBwldSAwQAwldoAwQAwld0AwQAwld2AwQA
wld7AwQAwleIAwQBwleKAwQAwleVAwQAwlejAwQAwlelMAwDBADCV6sDBADCV6wD
BADCV7ADBADCV74DBAHCV8YDBAHCV9ADBAHCV94DBADCV+kDBADDOjIwDAMEAsM6
NAMEBsM6AAMEAMOFDAMEAMOFNwMEAMOFXgMEAMOFwwMEAdTAAAMEANTACgMEANTA
HgMEANTBAAMEANTBCAMEANTBDDANBgkqhkiG9w0BAQsFAAOCAQEADLJz3H5UB51g
w7z+XTSiT2qlIjuX0ULQEiNbQGFp1DdMMe17ZIpxzphgfgVOcDmP0wKDzPN6XjD3
VKmQJETWA0i7yQoBTzbMr8iQwBAZt4HWsPSEgxmHySZxvUTaYCyJnI/HRpIdSlIK
Ju7xhJOgAB3noqF1AlXDkERRfA1PtE0MocPtl9BY5+Jvs75l3jXI+DwmZ/jz4zeC
zYToiz0EYSlnX6y1q3wk6UP8DJ2jBtMvf0NUd0qeVS5yY2jbQMMozcwPEVDojU8V
E18ONiRRDaia1UfjzaSw7UOUtqp1jN0+L0dNZ1UIQk6OY9lZMTo+2ldR8BW0usKq
VXawsqyNMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org