Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t2M11shSuWLOzF9pmut9RyavHTo.roa
File: t2M11shSuWLOzF9pmut9RyavHTo.roa (raw, json)
Hash identifier: Z+9TvHJMYrFkhce6dMJM/PM0GMNoGxpKMf0wipV/osg=
Subject key identifier: B7:63:35:D6:C8:52:B9:62:CE:CC:5F:69:9A:EB:7D:47:26:AF:1D:3A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018962FA3252963CDF50D1DADB434A087EAF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t2M11shSuWLOzF9pmut9RyavHTo.roa
Signing time: Mon 17 Jul 2023 08:31:51 +0000
ROA not before: Mon 17 Jul 2023 08:31:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.36.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.40.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:62:fa:32:52:96:3c:df:50:d1:da:db:43:4a:08:7e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 17 08:31:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b76335d6c852b962cecc5f699aeb7d4726af1d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:09:93:8f:90:2a:13:d1:56:5c:f9:03:4f:37:
8d:b4:d1:6f:e9:ca:54:8f:9e:c4:88:9a:36:4e:f1:
31:44:59:77:eb:92:b2:30:6c:79:03:dd:5f:7f:af:
ee:2c:cf:73:da:50:c9:61:42:ec:5d:6e:3e:0e:10:
38:90:c9:3f:d1:63:3f:6d:87:09:8a:f0:07:49:6c:
59:0f:ac:8b:1e:af:a5:87:b9:9a:1b:ed:3c:09:00:
21:3e:f9:07:b8:06:79:88:e6:30:0f:60:ee:03:ab:
20:ea:e2:f5:84:92:91:82:18:20:a1:5f:99:3f:45:
93:82:d0:bb:40:3e:7e:3a:93:4b:eb:0a:3f:96:3c:
d5:41:06:4c:75:65:6c:5c:9a:dc:40:39:e1:0d:cb:
22:5d:59:e4:a2:5c:f2:3c:17:e9:7f:33:ef:19:5f:
6a:ee:0b:97:8e:89:2d:e0:74:9f:76:a2:0b:ae:55:
4c:87:82:e0:07:16:36:90:dc:d1:e8:73:f8:64:d0:
b1:00:89:47:1a:b7:74:fb:18:ae:5a:1f:fe:44:08:
0c:ad:2b:28:60:25:40:ca:cf:62:c8:88:e7:a4:13:
2d:de:98:65:2a:a8:de:2e:6a:55:d4:8d:21:21:5b:
47:d6:6f:58:d3:05:08:7d:d8:28:64:ca:03:d5:36:
37:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:63:35:D6:C8:52:B9:62:CE:CC:5F:69:9A:EB:7D:47:26:AF:1D:3A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t2M11shSuWLOzF9pmut9RyavHTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/23
192.124.178.0/24
192.124.181.0/24
192.124.189.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0/24
193.124.204.0/24
194.58.47.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0/24
194.87.3.0/24
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.23.0-194.87.27.255
194.87.36.0/24
194.87.40.0/24
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.151.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.177.0/24
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.204.0/24
194.87.207.0/24
194.87.222.0/24
194.87.240.0/24
194.135.24.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.12.0/24
195.133.30.0/24
195.133.35.0/24
195.133.73.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
6e:32:1e:8b:b5:10:fe:62:09:d8:c8:8c:81:fb:ba:7e:22:5b:
c5:c7:96:89:3f:fd:0e:45:db:03:af:09:17:8d:58:41:a7:29:
e7:9d:92:fa:e9:98:cc:29:66:cc:dd:4e:c5:c1:ac:f7:fc:64:
2b:f7:51:86:aa:3d:bd:1c:40:52:61:fc:dc:f2:e2:6f:7a:37:
a3:de:21:96:72:2b:d9:ea:ea:7b:b6:10:ba:09:9b:eb:75:ce:
88:db:99:c3:40:a2:6f:9d:3b:96:cf:18:08:53:97:02:41:68:
17:63:38:96:1d:e4:74:06:a2:a6:d0:0f:a8:9b:08:53:0d:fe:
a6:0b:1b:d7:8c:d5:8e:a1:f6:20:c0:44:e6:ad:55:1c:63:2c:
12:ef:4d:ab:8f:ec:f3:74:40:13:2f:56:fb:28:86:39:a3:fa:
96:ea:78:ac:7a:5a:a6:d3:88:b1:4f:36:c1:de:cd:dc:1c:c9:
1c:cb:20:10:54:16:8e:1b:f2:6d:27:35:aa:98:14:bc:d0:f2:
94:e3:34:1a:6a:de:a5:ec:58:a1:9d:a2:a0:b5:d8:62:4a:1f:
41:e2:99:ec:41:c3:af:66:77:02:d2:10:5c:97:21:f0:c4:e5:
12:d4:ac:52:17:53:7e:db:75:f4:84:46:e1:10:ce:34:ed:ce:
1a:90:d9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-ams.rpki-client.org