Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mfatWSEiai1KtZXTHZjIkH97B0k.roa
File: mfatWSEiai1KtZXTHZjIkH97B0k.roa (raw, json)
Hash identifier: m/GCsF/RQOsfenROij3EZFL2lAEC1VUQR5iyEQvyFSA=
Subject key identifier: 99:F6:AD:59:21:22:6A:2D:4A:B5:95:D3:1D:98:C8:90:7F:7B:07:49
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018953B981D39DF7EFB4BFC5783A2309553E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mfatWSEiai1KtZXTHZjIkH97B0k.roa
Signing time: Fri 14 Jul 2023 09:26:53 +0000
ROA not before: Fri 14 Jul 2023 09:26:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.40.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 09:39:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:b9:81:d3:9d:f7:ef:b4:bf:c5:78:3a:23:09:55:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 09:26:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99f6ad5921226a2d4ab595d31d98c8907f7b0749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:06:72:e9:14:e1:d9:72:dc:d0:b4:cb:eb:fa:
d5:07:68:ec:be:24:b2:61:b9:23:36:87:66:63:8a:
98:36:99:87:3b:c4:b4:a6:a0:cf:1c:92:24:de:fe:
09:d0:05:a6:fd:95:53:be:59:50:25:6c:d5:fc:07:
87:56:7e:77:b7:88:80:41:fb:b0:a0:6e:0f:91:1f:
f6:a6:6a:3e:20:7a:04:55:77:fc:15:22:4e:12:67:
92:de:c2:65:43:6f:78:99:4e:e0:f5:b5:7a:d2:06:
e0:d6:bf:a6:08:4e:43:5c:aa:93:34:f4:10:03:1e:
fb:af:16:b3:43:5f:b3:c8:b5:24:ef:51:90:78:2f:
5c:ca:0f:87:cd:c6:d2:d5:ea:fa:c7:d7:df:88:30:
7d:ac:cc:d2:c3:03:83:31:a4:48:c8:1a:4c:30:70:
2e:b2:77:71:28:5a:0f:93:33:3b:60:e2:5c:1a:ee:
24:ef:26:d3:1c:b6:fb:dc:6a:c6:19:67:1a:0c:e5:
80:bf:d1:27:fe:93:74:14:38:6c:04:8c:10:40:62:
58:2e:7b:28:13:6f:22:5c:c9:5f:8a:b2:ff:cf:e4:
98:a3:bf:56:5e:8c:40:9f:79:df:69:ca:7a:75:e9:
e2:06:5a:48:8e:7a:32:1f:6b:bf:4d:c4:63:c0:e4:
84:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F6:AD:59:21:22:6A:2D:4A:B5:95:D3:1D:98:C8:90:7F:7B:07:49
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mfatWSEiai1KtZXTHZjIkH97B0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.40.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.151.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.30.0/24
195.133.35.0/24
195.133.73.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
53:a1:e4:3f:09:d6:2a:fa:78:e2:28:3d:30:9a:64:17:e4:ba:
35:27:3f:7c:3f:c4:41:c5:af:ad:f6:a2:e8:06:b8:df:44:7c:
51:72:99:cc:0c:f2:c2:bd:59:35:48:58:b7:c6:e6:f4:c2:0f:
64:76:b6:47:1b:14:09:77:60:4b:77:d7:67:e1:0f:e6:d0:fd:
69:7d:95:5b:7d:d4:d3:7e:87:43:e3:47:a4:b9:61:26:ac:5b:
97:1f:91:e8:e9:41:39:38:75:77:bd:dd:7b:0c:ad:75:ed:c5:
9e:fd:1e:6f:14:e4:7b:78:12:59:c9:ea:60:1d:fd:1b:ed:5c:
f1:d7:9c:0a:84:39:6e:8d:2c:aa:22:ad:79:e2:10:cb:50:ff:
30:85:65:53:8c:0b:31:5a:a1:09:0e:d9:cf:d4:c8:04:d3:d4:
c7:c9:80:9c:94:a4:fd:36:51:c0:ea:d6:ed:a1:d4:da:ff:55:
4c:4b:d3:55:51:3a:4f:7a:16:ff:c5:89:9e:48:1f:3e:e1:cd:
72:37:23:1e:65:43:12:3c:b1:19:13:25:86:87:1d:9d:28:ad:
11:69:05:49:d5:e4:ad:a3:30:7d:da:29:78:25:56:50:50:ac:
60:51:ed:0f:ea:08:45:40:90:2a:db:00:df:72:f2:85:f6:31:
ed:f2:ca:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:26 2024 by rpki-client on console-fra.rpki-client.org