Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ql8hUiwX468R0k_QJIZUn7IDsjw.roa
File: ql8hUiwX468R0k_QJIZUn7IDsjw.roa (raw, json)
Hash identifier: YCpVGqGTIZrUa7yD2z4qoUqQSUNAoDK/VKNTF70/K2k=
Subject key identifier: AA:5F:21:52:2C:17:E3:AF:11:D2:4F:D0:24:86:54:9F:B2:03:B2:3C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191FABB5E46B275942374AB6123F6183F9D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ql8hUiwX468R0k_QJIZUn7IDsjw.roa
Signing time: Mon 16 Sep 2024 12:07:48 +0000
ROA not before: Mon 16 Sep 2024 12:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
193.124.2.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.94.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.226.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.6.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.58.0/24 maxlen: 24
195.133.59.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
212.192.247.0/24 maxlen: 24
212.193.10.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 10:58:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:bb:5e:46:b2:75:94:23:74:ab:61:23:f6:18:3f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 16 12:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa5f21522c17e3af11d24fd02486549fb203b23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0d:9a:6c:17:72:84:0c:65:4a:4c:92:2a:34:
e7:96:61:99:ca:9b:eb:0e:cd:0d:1d:15:38:af:3b:
0a:4d:7e:44:ce:82:8d:df:de:91:47:7c:c0:bb:97:
f6:e2:d5:62:86:9d:a6:cd:1e:5a:38:6f:04:2c:b3:
6e:6e:44:51:85:cd:30:2d:33:27:dd:0b:1f:32:2f:
d2:4b:90:44:c0:d4:f3:a2:1e:7b:4b:c0:f1:f7:c2:
41:39:3e:1b:f0:73:0a:ff:e0:14:4f:d0:fc:ab:ec:
b6:f9:4c:63:9d:10:6c:eb:68:4f:cb:a5:47:17:9f:
7f:51:f7:09:5b:63:7c:1b:9e:6f:2e:dd:3d:37:48:
91:b1:11:cd:98:bb:64:89:e5:f2:48:08:ac:0e:1e:
ad:ce:d3:53:d0:23:0e:ec:8c:93:1c:76:58:bf:1d:
57:34:7a:28:cd:8c:5b:43:01:d6:d3:3c:08:c0:07:
42:e2:c8:03:5f:e9:b0:3a:66:d4:cf:21:0b:d0:b5:
0f:a6:8c:40:3b:48:e5:f9:c2:54:a6:6e:31:e3:b8:
8b:2d:fc:ad:2f:24:3f:4f:c3:9d:07:d8:a7:d8:4c:
1a:59:1d:2d:d1:54:2e:4e:bf:56:5c:5f:a4:b9:28:
5d:e4:a2:1b:64:92:7c:89:4d:97:2d:28:22:ce:78:
21:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5F:21:52:2C:17:E3:AF:11:D2:4F:D0:24:86:54:9F:B2:03:B2:3C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ql8hUiwX468R0k_QJIZUn7IDsjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
62.76.231.0/24
62.76.235.0/24
193.124.2.0/23
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.94.0/24
193.124.133.0/24
193.124.201.0/24
193.124.226.0/23
194.58.38.0/24
194.58.43.0/24
194.58.46.0/24
194.58.58.0-194.58.60.255
194.58.67.0/24
194.87.3.0/24
194.87.6.0/23
194.87.16.0/24
194.87.23.0/24
194.87.34.0/24
194.87.36.0/24
194.87.42.0/24
194.87.53.0/24
194.87.63.0/24
194.87.78.0/24
194.87.105.0/24
194.87.116.0/23
194.87.120.0/23
194.87.160.0/24
194.87.163.0/24
194.87.165.0-194.87.166.255
194.87.176.0/23
194.87.180.0-194.87.182.255
194.87.205.0/24
194.87.240.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.55.0-195.58.56.255
195.58.59.0/24
195.58.62.0/24
195.133.12.0/24
195.133.19.0/24
195.133.22.0/24
195.133.58.0/23
195.133.80.0/24
195.133.82.0/24
195.133.195.0/24
212.192.0.0/24
212.192.7.0/24
212.192.10.0/24
212.192.30.0/24
212.192.210.0/23
212.192.241.0/24
212.192.247.0/24
212.193.10.0/24
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
12:21:14:8d:be:54:ea:39:09:b5:6b:da:be:b1:f5:35:13:5b:
2f:b8:10:0a:0a:7b:32:5b:71:6d:4d:83:7a:78:0f:b9:39:44:
50:3e:47:45:59:87:92:b6:54:ab:0f:8b:06:13:57:9f:5a:8e:
b9:a3:47:6e:80:cc:e7:97:f5:51:a9:98:e1:b8:c1:e0:02:dd:
34:04:60:c2:1f:63:6b:dd:40:57:d5:91:4f:29:16:17:58:5f:
c3:01:0e:cc:eb:2d:c0:4f:9e:27:5c:de:50:04:26:6c:2f:78:
bc:8b:76:70:ba:6c:0f:df:a2:2c:74:38:1d:62:29:1b:cb:69:
bc:fb:b6:c3:40:4b:e8:70:54:4c:b0:08:93:4a:dc:05:36:32:
56:6a:4a:83:2b:33:46:4b:76:f5:9c:82:b2:cf:3b:63:42:9d:
e1:16:a6:75:03:18:1d:b2:e6:28:7e:5b:8a:30:c5:5d:74:b3:
98:68:98:76:57:82:60:cf:33:f9:9b:0e:44:6c:89:9f:39:95:
50:89:9b:f7:0b:9d:44:7f:ed:17:5e:8f:fb:1d:48:e4:8a:68:
16:0d:f5:b9:61:de:b8:1e:08:da:5e:94:27:9e:2e:b8:9a:71:
0e:7e:a7:68:6a:71:5f:73:27:cf:40:38:dd:d7:af:74:02:1e:
d3:e5:96:90
-----BEGIN CERTIFICATE-----
MIIGizCCBXOgAwIBAgISAZH6u15GsnWUI3SrYSP2GD+dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwOTE2MTIwNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTVmMjE1MjJjMTdlM2FmMTFkMjRmZDAyNDg2NTQ5ZmIyMDNiMjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqg2abBdyhAxlSkySKjTnlmGZypvr
Ds0NHRU4rzsKTX5EzoKN396RR3zAu5f24tVihp2mzR5aOG8ELLNubkRRhc0wLTMn
3QsfMi/SS5BEwNTzoh57S8Dx98JBOT4b8HMK/+AUT9D8q+y2+UxjnRBs62hPy6VH
F59/UfcJW2N8G55vLt09N0iRsRHNmLtkieXySAisDh6tztNT0CMO7IyTHHZYvx1X
NHoozYxbQwHW0zwIwAdC4sgDX+mwOmbUzyEL0LUPpoxAO0jl+cJUpm4x47iLLfyt
LyQ/T8OdB9in2EwaWR0t0VQuTr9WXF+kuShd5KIbZJJ8iU2XLSgiznghSQIDAQAB
o4IDlzCCA5MwHQYDVR0OBBYEFKpfIVIsF+OvEdJP0CSGVJ+yA7I8MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcWw4aFVpd1g0NjhSMGtfUUpJWlVuN0lEc2p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBqwYIKwYBBQUHAQcBAf8EggGaMIIBljCCAZIEAgABMIIB
igMEAD5M4gMEAD5M5wMEAD5M6wMEAcF8AgMEAMF8BgMEAMF8CAMEAMF8EgMEAMF8
MQMEAMF8WwMEAMF8XgMEAMF8hQMEAMF8yQMEAcF84gMEAMI6JgMEAMI6KwMEAMI6
LjAMAwQBwjo6AwQAwjo8AwQAwjpDAwQAwlcDAwQBwlcGAwQAwlcQAwQAwlcXAwQA
wlciAwQAwlckAwQAwlcqAwQAwlc1AwQAwlc/AwQAwldOAwQAwldpAwQBwld0AwQB
wld4AwQAwlegAwQAwlejMAwDBADCV6UDBADCV6YDBAHCV7AwDAMEAsJXtAMEAMJX
tgMEAMJXzQMEAMJX8DAMAwQAwocXAwQAwocYAwQAwocuMAwDBADDOjcDBADDOjgD
BADDOjsDBADDOj4DBADDhQwDBADDhRMDBADDhRYDBAHDhToDBADDhVADBADDhVID
BADDhcMDBADUwAADBADUwAcDBADUwAoDBADUwB4DBAHUwNIDBADUwPEDBADUwPcD
BADUwQoDBADUwQ8wDQYJKoZIhvcNAQELBQADggEBABIhFI2+VOo5CbVr2r6x9TUT
Wy+4EAoKezJbcW1Ng3p4D7k5RFA+R0VZh5K2VKsPiwYTV59ajrmjR26AzOeX9VGp
mOG4weAC3TQEYMIfY2vdQFfVkU8pFhdYX8MBDszrLcBPnidc3lAEJmwveLyLdnC6
bA/foix0OB1iKRvLabz7tsNAS+hwVEywCJNK3AU2MlZqSoMrM0ZLdvWcgrLPO2NC
neEWpnUDGB2y5ih+W4owxV10s5homHZXgmDPM/mbDkRsiZ85lVCJm/cLnUR/7Rde
j/sdSOSKaBYN9blh3rgeCNpelCeeLriacQ5+p2hqcV9zJ89AON3Xr3QCHtPllpA=
-----END CERTIFICATE-----
Generated at Tue Oct 8 17:14:55 2024 by rpki-client on console-fra.rpki-client.org