Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vfGJt9hPfnMIpRC3xqprbupcga4.roa
File: vfGJt9hPfnMIpRC3xqprbupcga4.roa (raw, json)
Hash identifier: ILi6gEci/e1zJHVvFtJ5frztt4RdWmviz9dR/+QxfBE=
Subject key identifier: BD:F1:89:B7:D8:4F:7E:73:08:A5:10:B7:C6:AA:6B:6E:EA:5C:81:AE
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01887196405C4F947341785E3222F15E46A0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vfGJt9hPfnMIpRC3xqprbupcga4.roa
Signing time: Wed 31 May 2023 11:34:12 +0000
ROA not before: Wed 31 May 2023 11:34:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.84.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
195.133.19.0/24 maxlen: 24
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.32.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.41.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.53.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.209.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:96:40:5c:4f:94:73:41:78:5e:32:22:f1:5e:46:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 31 11:34:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdf189b7d84f7e7308a510b7c6aa6b6eea5c81ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:f3:27:51:2b:fa:90:0f:08:42:33:63:1f:
fc:c8:00:c8:52:f1:da:67:3a:b3:56:b4:af:71:49:
3c:e1:85:a9:95:ef:10:2d:4e:1b:ce:8d:66:92:d2:
18:07:03:c2:b1:63:3d:ed:bb:8f:53:4e:5e:8b:28:
20:80:7c:fa:cc:0b:21:8e:4d:e0:97:a4:ba:c1:15:
e2:d4:67:a7:b0:de:35:e1:a7:54:9b:b2:c6:96:be:
ea:75:8c:e7:5a:76:14:57:dc:4e:29:7a:2a:d3:05:
c3:84:dd:52:19:87:cc:6f:ae:21:5f:14:4e:f9:b0:
4e:4a:5e:32:f7:61:68:e5:6b:82:dd:e8:76:78:a1:
08:fd:cd:0d:0a:7e:f4:c7:38:f9:59:b1:cf:e0:b7:
f5:72:7d:14:3e:65:8d:f6:6a:42:5b:77:cd:7c:26:
f1:d0:0d:e0:45:22:da:1b:af:b1:fe:c5:ef:36:bc:
04:49:21:cc:c6:78:33:48:64:3f:c9:f6:23:36:99:
fe:bb:b1:dc:8f:8d:9f:ee:60:63:8f:75:ec:1f:19:
ac:29:e0:e6:e3:dc:39:3f:f1:25:35:dc:d8:03:25:
1b:16:c6:b0:89:20:d4:e4:a5:2b:d0:b6:0c:b4:c4:
ee:58:f0:4b:9c:7d:71:e8:59:9f:46:d6:b9:d4:86:
3a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F1:89:B7:D8:4F:7E:73:08:A5:10:B7:C6:AA:6B:6E:EA:5C:81:AE
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vfGJt9hPfnMIpRC3xqprbupcga4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0-192.124.191.255
193.108.115.0/24
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.90.0/24
193.124.93.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0-193.124.202.255
193.124.204.0/24
194.58.38.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.104.0/23
194.87.114.0/23
194.87.119.0/24
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.138.0/24
194.87.149.0/24
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.176.0/23
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.209.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.35.0-195.58.36.255
195.58.53.0-195.58.54.255
195.58.56.0/24
195.58.58.0/23
195.58.61.0-195.58.63.255
195.133.0.0/24
195.133.19.0/24
195.133.22.0/24
195.133.26.0/24
195.133.30.0/24
195.133.32.0/24
195.133.35.0/24
195.133.41.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.1.0/24
212.192.8.0/24
212.192.10.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
Signature Algorithm: sha256WithRSAEncryption
70:f6:2b:e9:ea:be:60:b2:b1:c1:ce:75:ad:c8:2b:4c:59:16:
e1:e4:e3:3a:50:bb:cb:ba:9f:81:af:25:be:ac:c1:af:1c:6f:
0a:eb:85:3e:42:83:93:c9:51:30:da:a9:62:7f:49:9b:43:5b:
70:a3:59:17:05:d8:2f:0e:d9:61:3b:23:8a:0c:d9:70:e7:10:
a2:58:dd:85:29:b1:51:37:20:59:0c:96:70:88:41:6a:8e:20:
cf:2b:71:cd:56:38:13:e0:da:f5:90:24:db:32:3b:d2:c8:33:
23:2c:28:65:0a:ec:c1:6c:6f:f9:00:06:f3:79:67:a5:cf:a9:
c3:ff:fb:17:fa:9d:05:c6:7b:30:54:dd:7d:45:69:86:8f:e3:
93:71:4c:05:a2:2a:bd:4a:bf:b1:82:93:08:35:09:97:5a:e9:
d3:38:b2:7d:82:6f:24:c5:fc:27:76:df:76:ba:25:c8:03:a9:
86:43:ec:e2:b7:80:3f:1a:ec:6a:e3:21:14:3d:13:62:a2:60:
fb:25:0d:f7:30:25:b7:6e:57:30:f9:ee:1e:58:37:f5:14:7f:
0f:19:2e:fe:2b:29:2d:40:de:0d:2f:89:79:72:61:e1:19:b1:
3c:17:20:26:ce:8e:71:93:4a:b3:36:c4:60:a8:cb:6e:40:bb:
3b:fc:7f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-ams.rpki-client.org