Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uCVFRuXhNx-nk7-0gKWJUS3l034.roa
File: uCVFRuXhNx-nk7-0gKWJUS3l034.roa (raw, json)
Hash identifier: US+GJ2Dy8sJwbL26RlDxkCwmVI/WDDewl0xRRhqwQ8M=
Subject key identifier: B8:25:45:46:E5:E1:37:1F:A7:93:BF:B4:80:A5:89:51:2D:E5:D3:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185779577DD286BDE44AF7BAEE11C3A5BE2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uCVFRuXhNx-nk7-0gKWJUS3l034.roa
Signing time: Tue 03 Jan 2023 12:22:42 +0000
ROA not before: Tue 03 Jan 2023 12:22:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.17.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.125.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.138.0/23 maxlen: 23
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
194.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:95:77:dd:28:6b:de:44:af:7b:ae:e1:1c:3a:5b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 3 12:22:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8254546e5e1371fa793bfb480a589512de5d37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:c3:c2:db:3a:f2:0e:2f:d3:0e:e4:8f:05:
9c:01:32:eb:34:c5:c9:ee:6e:e8:9a:ea:ed:15:41:
fe:cd:a3:5c:38:72:ce:8c:39:39:ae:4f:d6:ea:e9:
93:f0:21:75:96:1d:ce:5e:c9:b7:1a:ab:8f:07:05:
92:77:66:8f:0c:aa:00:75:77:2a:af:bb:66:73:95:
90:02:d3:75:e5:c3:ac:be:5c:be:22:14:eb:0d:84:
0c:6b:72:40:94:8c:8f:92:21:2e:20:2e:40:3b:2c:
04:a8:10:46:a9:b4:7d:bf:27:21:c6:73:df:ad:41:
a1:8f:2e:17:f0:14:5b:87:16:c6:45:9c:80:cc:ab:
f0:3b:aa:3c:57:57:0e:fb:15:da:91:60:2f:b0:e7:
cd:03:96:92:95:4e:8a:59:1c:09:d5:f3:4f:91:ed:
ff:a2:c0:de:3f:c7:4d:f5:0b:56:9a:21:c2:7a:a0:
a2:c7:81:3e:71:51:4f:a9:91:06:0d:48:14:59:80:
50:14:44:8b:36:4d:5b:0d:d5:35:12:a0:e9:b4:dd:
a1:56:8a:6d:31:18:9c:c6:e1:32:2a:b0:9c:41:61:
67:d0:52:80:09:fd:3e:31:3f:06:d3:ba:32:1e:f2:
07:43:47:6c:70:bc:e8:cf:01:3e:21:5e:3e:75:e4:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:25:45:46:E5:E1:37:1F:A7:93:BF:B4:80:A5:89:51:2D:E5:D3:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uCVFRuXhNx-nk7-0gKWJUS3l034.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0-193.124.4.255
193.124.6.0/24
193.124.8.0/24
193.124.18.0/24
193.124.41.0/24
193.124.125.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.58.0/23
194.87.7.0/24
194.87.17.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.138.0/23
194.87.149.0/24
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0-194.87.200.255
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.12.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.30.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:dc:18:b5:e2:79:0b:1b:03:fd:65:0f:fc:0c:11:34:96:d1:
45:8a:8e:f8:d2:be:db:09:5c:97:88:77:47:2a:09:56:9c:fc:
9e:3d:5b:a0:a9:52:0a:93:f2:e1:b1:65:19:36:42:b1:1d:1a:
c8:a9:38:b0:b7:a2:3c:5f:9a:f7:68:e3:b6:74:4f:d9:d9:8a:
77:e6:ce:09:b7:95:b9:97:1e:dc:1d:c2:32:ac:c3:d3:bd:25:
08:5a:5d:6b:01:18:59:69:32:33:40:6d:43:38:bb:38:f4:39:
e5:99:3e:40:9f:a4:ac:e8:54:73:44:4d:91:d3:8f:11:30:1e:
a7:74:8c:f9:23:de:0b:a4:db:5d:c9:2b:4b:80:b3:0f:d8:ba:
45:4b:5d:ce:b6:a3:a0:8b:36:9e:b2:29:0e:47:e4:4a:df:fc:
15:db:9c:4b:76:8d:0c:41:44:c6:f3:ad:2f:4c:8c:33:b8:a7:
01:27:74:ec:a1:f0:0f:b7:c4:88:7b:f4:2a:cb:6b:75:11:c1:
7d:d7:eb:17:2d:3f:3f:3f:08:76:be:25:7d:c8:3c:84:33:92:
da:a8:b9:8d:15:ec:05:3c:50:ac:72:ae:17:c4:eb:85:20:92:
5e:66:04:c6:00:89:fe:00:cf:87:84:69:5d:09:13:d9:92:64:
f0:60:2f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-ams.rpki-client.org