Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/nvQ8D2Gq-BeC18o1hBVZ5Zk1F5E.roa
File: nvQ8D2Gq-BeC18o1hBVZ5Zk1F5E.roa (raw, json)
Hash identifier: 7UdJ48nYnibDBY5Dx2k8llJkmfONLi9WdhBrOAnSy04=
Subject key identifier: 9E:F4:3C:0F:61:AA:F8:17:82:D7:CA:35:84:15:59:E5:99:35:17:91
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185A055DD42AD7291D06727A2721987B338
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/nvQ8D2Gq-BeC18o1hBVZ5Zk1F5E.roa
Signing time: Wed 11 Jan 2023 10:17:39 +0000
ROA not before: Wed 11 Jan 2023 10:17:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.61.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:55:dd:42:ad:72:91:d0:67:27:a2:72:19:87:b3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 11 10:17:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ef43c0f61aaf81782d7ca35841559e599351791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:de:f1:4a:70:a8:2f:99:2e:9a:9c:e0:fd:cc:
97:19:6a:42:25:41:bf:e9:83:d1:66:a5:cb:70:c8:
dd:52:be:8e:e7:ff:e8:a5:cd:d5:ec:fc:08:4e:b4:
e6:83:16:81:10:76:73:fe:9b:b9:89:26:c2:3f:87:
d4:a9:47:12:a1:c0:b2:08:93:9c:6d:74:02:1e:d1:
ae:c5:b4:00:26:0a:e8:8c:a7:4d:a2:41:7f:37:91:
e0:25:73:ed:47:41:e9:81:83:9c:28:46:b2:2b:e2:
ba:5c:83:b7:d8:a0:11:47:37:ba:61:1d:e5:68:d5:
48:83:47:5b:6d:a4:8d:a1:4f:92:1b:82:1a:6d:ea:
2d:c0:66:5a:a6:04:fa:9b:b1:bf:98:d3:b1:25:bf:
40:ff:46:cb:e2:e3:d1:60:2e:63:45:19:e4:25:82:
43:1f:12:64:08:1a:1d:4c:3b:7c:5b:7d:79:02:9f:
86:81:90:e6:82:2d:1a:dc:27:e2:a5:d9:f0:8f:10:
99:3c:76:47:a7:fd:de:fb:79:81:e2:ca:22:78:ee:
59:b8:cb:21:25:e8:7b:db:22:10:ec:82:1a:1c:b6:
2d:0b:40:68:c3:cb:da:64:ed:ee:18:67:7a:69:ef:
d8:97:59:5e:30:68:f8:21:9c:b1:06:02:77:c9:4d:
59:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F4:3C:0F:61:AA:F8:17:82:D7:CA:35:84:15:59:E5:99:35:17:91
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/nvQ8D2Gq-BeC18o1hBVZ5Zk1F5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
192.124.190.0/24
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/23
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.6.0/23
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.190.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.86.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.30.0/24
212.193.0.0/24
212.193.8.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
38:ad:9a:08:00:dd:0a:76:65:e2:44:9b:34:19:01:9b:c0:53:
bd:91:b2:40:ee:9d:62:c8:54:63:20:50:0d:df:63:a1:82:c8:
96:a6:ae:da:7f:19:af:33:82:23:ce:50:d0:3f:9e:9b:9a:53:
66:82:e6:04:2a:05:5a:17:4d:91:60:37:b2:00:bd:f7:76:28:
b4:2e:c0:39:b4:8d:b8:5d:95:a2:e2:fe:08:6b:c3:5e:e8:06:
96:4f:54:44:f8:e8:ac:6a:53:0b:33:6b:de:8a:c4:31:f8:fe:
31:bd:7d:6e:d6:53:5b:02:b1:50:8a:70:14:6b:fe:21:0a:95:
2c:fe:a4:c1:85:29:2e:9c:6f:4a:7b:43:ea:98:54:38:f6:0c:
d1:42:fd:83:aa:6b:d9:c7:30:18:dd:72:81:95:29:fb:c4:ec:
a9:50:6d:3c:26:13:f9:11:4b:70:bc:22:47:1f:15:84:4e:7a:
3b:15:5f:ee:cf:31:03:66:21:d0:20:1e:d6:09:e1:75:ce:70:
22:e0:58:e9:cc:a0:87:51:44:f7:d8:77:f7:2a:b7:e3:65:89:
08:4b:f1:bb:00:91:b9:b4:91:e5:15:89:32:fc:89:97:8a:c5:
48:74:fd:0c:b9:3e:c3:41:9b:18:43:10:b2:46:e4:26:52:ed:
e0:c1:15:e1
-----BEGIN CERTIFICATE-----
MIIGbTCCBVWgAwIBAgISAYWgVd1CrXKR0GcnonIZh7M4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTExMTAxNzM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWY0M2MwZjYxYWFmODE3ODJkN2NhMzU4NDE1NTllNTk5MzUxNzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjd7xSnCoL5kumpzg/cyXGWpCJUG/
6YPRZqXLcMjdUr6O5//opc3V7PwITrTmgxaBEHZz/pu5iSbCP4fUqUcSocCyCJOc
bXQCHtGuxbQAJgrojKdNokF/N5HgJXPtR0HpgYOcKEayK+K6XIO32KARRze6YR3l
aNVIg0dbbaSNoU+SG4IabeotwGZapgT6m7G/mNOxJb9A/0bL4uPRYC5jRRnkJYJD
HxJkCBodTDt8W315Ap+GgZDmgi0a3CfipdnwjxCZPHZHp/3e+3mB4soieO5ZuMsh
Jeh72yIQ7IIaHLYtC0Bow8vaZO3uGGd6ae/Yl1leMGj4IZyxBgJ3yU1ZkQIDAQAB
o4IDeTCCA3UwHQYDVR0OBBYEFJ70PA9hqvgXgtfKNYQVWeWZNReRMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvbnZROEQyR3EtQmVDMThvMWhCVlo1WmsxRjVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBjQYIKwYBBQUHAQcBAf8EggF8MIIBeDCCAXQEAgABMIIB
bAMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMB8vjAMAwQAwXwDAwQAwXwEAwQA
wXwGAwQAwXwIAwQAwXwSAwQAwXx9AwQAwXyFAwQAwXzJAwQAwXzLAwQAwXzPAwQB
wjomAwQAwjoqMAwDBADCOi0DBATCOiADBADCOjsDBAHCVwYDBALCVxgDBADCVyQD
BADCVzgDBADCV0wDBAHCV1IDBADCV2gwDAMEAcJXcgMEAMJXdAMEAMJXdgMEAMJX
ewMEAMJXiAMEAcJXigMEAMJXlQMEAMJXowMEAMJXpTAMAwQAwlerAwQAwlesAwQA
wlewAwQAwle2AwQAwle+AwQBwlfGAwQAwlfKAwQBwlfQAwQBwlfeAwQAwlfpAwQA
wzoyMAwDBALDOjQDBAbDOgADBADDhQwDBADDhTcDBADDhVYDBADDhV4DBADDhcMD
BAHUwAADBADUwB4DBADUwQADBADUwQgDBADUwQwwDQYJKoZIhvcNAQELBQADggEB
ADitmggA3Qp2ZeJEmzQZAZvAU72RskDunWLIVGMgUA3fY6GCyJamrtp/Ga8zgiPO
UNA/npuaU2aC5gQqBVoXTZFgN7IAvfd2KLQuwDm0jbhdlaLi/ghrw17oBpZPVET4
6KxqUwsza96KxDH4/jG9fW7WU1sCsVCKcBRr/iEKlSz+pMGFKS6cb0p7Q+qYVDj2
DNFC/YOqa9nHMBjdcoGVKfvE7KlQbTwmE/kRS3C8IkcfFYROejsVX+7PMQNmIdAg
HtYJ4XXOcCLgWOnMoIdRRPfYd/cqt+NliQhL8bsAkbm0keUViTL8iZeKxUh0/Qy5
PsNBmxhDELJG5CZS7eDBFeE=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:05 2023 by rpki-client on console-ams.rpki-client.org