Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/o-EOlg-ur7Nocw-uQK7LUOILu2I.roa
File: o-EOlg-ur7Nocw-uQK7LUOILu2I.roa (raw, json)
Hash identifier: 6sF1f6qpHhfSopncQjPH6OXzwm7cKA4Qt6kGQ1DRY+o=
Subject key identifier: A3:E1:0E:96:0F:AE:AF:B3:68:73:0F:AE:40:AE:CB:50:E2:0B:BB:62
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01872C685B3BC4D920BC6909CE8682A36F4F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/o-EOlg-ur7Nocw-uQK7LUOILu2I.roa
Signing time: Wed 29 Mar 2023 08:07:29 +0000
ROA not before: Wed 29 Mar 2023 08:07:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.25.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
192.124.180.0/22 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:68:5b:3b:c4:d9:20:bc:69:09:ce:86:82:a3:6f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 29 08:07:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3e10e960faeafb368730fae40aecb50e20bbb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:ad:c3:af:96:63:74:63:ef:9b:2b:c1:52:
59:d8:d9:29:17:19:d2:bb:d9:71:ee:a9:e4:22:17:
14:2b:1d:e5:45:f1:c0:ef:7b:8b:20:c9:8c:0f:15:
65:08:e5:b7:57:a6:b5:f3:da:97:33:a3:84:53:ff:
db:56:ba:4a:69:8a:7d:56:dc:40:54:23:f3:15:28:
44:ab:e8:4a:dc:84:cb:dc:96:77:76:3a:0a:ee:9b:
94:f1:62:65:73:c9:6f:f3:4d:19:f0:a5:ec:ba:f6:
d4:3d:75:bf:ab:c3:a2:5f:54:db:9f:9c:a3:1f:02:
9e:62:c2:16:97:f4:af:dd:91:c5:a4:f4:c5:96:a5:
ec:0b:4a:06:2d:5e:45:8a:24:3d:d4:38:9a:28:4a:
95:ce:61:f7:1e:73:e5:2f:78:a0:5b:09:79:c5:c7:
b3:c0:a6:39:c1:49:25:1a:c2:31:7d:98:b3:f9:70:
89:fe:ae:df:0b:bc:67:11:83:88:5a:12:85:a2:83:
71:ae:42:20:67:48:43:91:d0:a0:bd:30:9c:49:72:
73:6b:0e:03:7a:ce:22:c6:87:57:81:b2:8d:05:b3:
68:ab:63:f2:1c:1c:3f:05:55:e4:b4:bd:72:5b:03:
15:8e:ce:a1:f7:13:82:bf:cf:a4:e9:d6:86:42:02:
be:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E1:0E:96:0F:AE:AF:B3:68:73:0F:AE:40:AE:CB:50:E2:0B:BB:62
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/o-EOlg-ur7Nocw-uQK7LUOILu2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
62.76.233.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.16.0/24
193.124.44.0/24
193.124.80.0/24
193.124.93.0/24
193.124.201.0/24
193.124.207.0/24
194.58.38.0-194.58.40.255
194.58.47.0/24
194.58.59.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.10.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0/24
194.87.24.0/22
194.87.37.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.104.0/24
194.87.114.0/23
194.87.122.0/24
194.87.130.0/23
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/22
194.87.182.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.222.0/24
194.87.240.0/24
194.87.246.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/23
195.58.54.0/24
195.58.56.0/24
195.133.0.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.76.0/24
195.133.84.0/24
195.133.194.0/23
212.192.1.0/24
212.192.10.0/24
Signature Algorithm: sha256WithRSAEncryption
87:ff:98:f5:3c:89:a9:5c:a7:4e:23:30:eb:bb:c5:fb:cb:2c:
81:f3:2e:e6:dc:83:08:f6:94:42:ae:e7:1c:55:3b:21:a0:81:
c4:6e:a7:54:3b:d4:a3:0e:a7:2c:fe:f9:72:19:af:a3:e0:ac:
47:8a:a2:24:f2:ed:9c:e4:d6:d3:8a:56:e6:97:96:e4:f7:f9:
45:73:3d:35:7c:60:56:45:3a:02:b5:34:ee:7d:a8:0c:f9:af:
49:6b:af:e7:2e:e2:ff:83:83:2a:4c:3e:a6:a8:d1:c4:06:89:
99:c1:50:0c:c1:77:6d:62:07:e7:b2:b7:3a:1d:92:8b:b5:cb:
6e:18:f5:35:f6:b3:0a:57:4a:b2:3b:18:6e:67:bb:97:07:05:
88:2d:21:db:6c:e2:79:f1:4b:20:39:13:e6:05:8a:91:8d:dd:
d0:02:8d:de:5b:88:9d:09:77:18:06:fb:a9:6b:5c:9e:d4:fc:
c6:08:03:e9:64:bb:12:41:23:8a:ba:47:ea:ea:14:c6:1a:46:
2a:98:c9:f0:e9:1c:e9:d9:84:8f:54:3e:d6:c4:5f:37:9c:e7:
ed:9d:30:01:2c:25:21:e8:cd:f4:b0:88:7f:ec:31:f3:58:46:
e5:f0:5e:ba:be:9b:bd:4e:e4:23:f4:85:3b:58:d6:2a:94:e9:
a3:aa:6d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:11 2023 by rpki-client on console-fra.rpki-client.org