Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/x3fIA5djFXpuUD_XeQC-gFdOq8g.roa
File: x3fIA5djFXpuUD_XeQC-gFdOq8g.roa (raw, json)
Hash identifier: umki0J2ec6+MPcB12EslhalyzT53j9I1MzESx6Q2yfA=
Subject key identifier: C7:77:C8:03:97:63:15:7A:6E:50:3F:D7:79:00:BE:80:57:4E:AB:C8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019117CF9145FADE0251AD4128A356DD9ED0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/x3fIA5djFXpuUD_XeQC-gFdOq8g.roa
Signing time: Sat 03 Aug 2024 10:36:04 +0000
ROA not before: Sat 03 Aug 2024 10:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.39.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.39.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 06 Aug 2024 04:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:cf:91:45:fa:de:02:51:ad:41:28:a3:56:dd:9e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 3 10:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c777c8039763157a6e503fd77900be80574eabc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:a0:db:21:81:86:ef:e4:8e:19:06:1c:bb:
1a:05:74:98:82:ca:ea:9a:f9:04:78:ae:98:57:d8:
82:a0:de:3a:54:3a:48:49:ab:69:51:41:ca:81:5d:
fa:4d:59:5f:d6:75:bf:c4:e8:05:16:7f:68:18:f3:
7c:f4:4a:35:a6:03:ad:6d:84:e3:16:5d:43:67:7c:
21:78:37:90:37:45:c4:2c:0d:64:37:15:97:da:f4:
0c:84:91:77:93:1b:1e:71:1b:74:b0:5e:97:cf:60:
f6:65:e5:e2:5c:d7:aa:83:ad:d4:cc:80:90:93:c8:
aa:aa:f4:94:63:88:0a:40:c0:f4:02:06:02:03:15:
3c:4b:b4:20:1c:ad:37:14:4c:88:03:91:07:9d:40:
3d:59:58:18:81:99:17:98:57:13:cd:b3:ef:84:24:
eb:e8:dc:ad:16:4f:8a:bf:f4:1a:a6:98:5c:c1:56:
76:30:fc:b6:da:c9:c6:cb:d8:99:28:11:1e:d3:97:
2b:95:9e:d9:60:fe:12:c0:fc:cf:9a:d9:3d:d8:4b:
be:34:10:a1:ca:c5:cd:2c:ed:bf:bd:44:56:84:d4:
16:70:f4:51:8d:9e:1a:03:77:03:6e:e5:e2:6c:1d:
c0:59:5a:07:f2:38:72:0e:0f:0b:51:cb:d1:64:71:
43:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:77:C8:03:97:63:15:7A:6E:50:3F:D7:79:00:BE:80:57:4E:AB:C8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/x3fIA5djFXpuUD_XeQC-gFdOq8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.41.0/24
194.58.44.0/24
194.58.66.0/24
194.58.155.0/24
194.87.44.0/24
194.87.49.0/24
194.87.52.0/24
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/22
195.58.63.0/24
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.39.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
12:a9:30:18:38:a4:c0:d8:c5:50:8c:f3:35:d5:f5:cc:94:91:
c4:35:84:99:9e:96:a5:a1:38:f6:ef:88:26:d0:09:1c:5a:06:
b7:51:83:c6:0a:65:7f:31:d8:e6:cd:36:0c:43:5c:45:97:38:
61:ea:06:83:d8:5a:7f:dd:df:ab:5b:02:8c:4c:0a:c7:09:23:
3f:4b:f9:0f:bf:fe:05:5c:a3:57:4e:32:d8:4b:a7:f5:3c:ee:
6e:2a:14:f8:8a:5b:15:a8:43:4b:91:09:0e:65:91:9b:6d:0c:
62:c7:44:fe:02:34:d7:89:e6:b7:42:26:06:58:75:38:71:32:
b1:a0:19:e2:2c:7d:c6:74:2c:09:f5:04:e7:bd:f8:fe:7a:3a:
d0:ef:a5:ac:e3:70:23:32:3c:3d:f3:a4:b8:ea:75:11:bb:28:
c8:c0:c7:09:bd:3e:21:63:ac:b7:cc:f8:0e:e8:d0:c1:c3:e0:
56:f6:35:7d:15:76:f3:4c:52:3f:e0:20:5b:de:86:7c:6a:9e:
3e:fb:e6:2d:f9:d8:9a:0c:79:c2:8d:f4:9f:f6:ee:d5:1d:8b:
16:e4:a6:50:71:74:51:79:2e:9e:65:91:cc:2d:4d:21:f6:95:
dd:f4:4c:4a:76:b7:e6:56:94:ae:87:f4:07:0f:40:0c:bb:eb:
40:97:41:78
-----BEGIN CERTIFICATE-----
MIIGcTCCBVmgAwIBAgISAZEXz5FF+t4CUa1BKKNW3Z7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwODAzMTAzNjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzc3YzgwMzk3NjMxNTdhNmU1MDNmZDc3OTAwYmU4MDU3NGVhYmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2Cg2yGBhu/kjhkGHLsaBXSYgsrq
mvkEeK6YV9iCoN46VDpISatpUUHKgV36TVlf1nW/xOgFFn9oGPN89Eo1pgOtbYTj
Fl1DZ3wheDeQN0XELA1kNxWX2vQMhJF3kxsecRt0sF6Xz2D2ZeXiXNeqg63UzICQ
k8iqqvSUY4gKQMD0AgYCAxU8S7QgHK03FEyIA5EHnUA9WVgYgZkXmFcTzbPvhCTr
6NytFk+Kv/QapphcwVZ2MPy22snGy9iZKBEe05crlZ7ZYP4SwPzPmtk92Eu+NBCh
ysXNLO2/vURWhNQWcPRRjZ4aA3cDbuXibB3AWVoH8jhyDg8LUcvRZHFDIwIDAQAB
o4IDfTCCA3kwHQYDVR0OBBYEFMd3yAOXYxV6blA/13kAvoBXTqvIMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEveDNmSUE1ZGpGWHB1VURfWGVRQy1nRmRPcThnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBkQYIKwYBBQUHAQcBAf8EggGAMIIBfDCCAWIEAgABMIIB
WgMEAMI6KQMEAMI6LAMEAMI6QgMEAMI6mwMEAMJXLAMEAMJXMQMEAMJXNAMEAcJX
NjAMAwQAwldTAwQAwldUAwQAwldoAwQAwldzAwQAwleCMAwDBADCV4UDBADCV4YD
BADCV4oDBADCV4wDBADCV48DBADCV5cDBADCV6EDBADCV6kDBADCV7sDBADCV74D
BADCV8gDBADCV8oDBADCV9ADBADCV9cDBAHCV9wDBADCV+IDBADCV/oDBADChyYD
BADCh2kDBADDOiIDBALDOiQDBADDOj8DBADDhQ8DBADDhRIDBADDhRUDBADDhRkD
BADDhRsDBADDhR4DBADDhScDBAHDhTIDBADDhT8DBADDhUkDBADDhVEDBAHDhVwD
BADDhcIDBADUwAEDBADUwNcDBADUwN8DBADUwPYDBADUwPgDBADUwQEDBADUwQUD
BADUwRgDBADUwR4wFAQCAAIwDgMFAyoBV8ADBQMqDP9AMA0GCSqGSIb3DQEBCwUA
A4IBAQASqTAYOKTA2MVQjPM11fXMlJHENYSZnpaloTj274gm0AkcWga3UYPGCmV/
MdjmzTYMQ1xFlzhh6gaD2Fp/3d+rWwKMTArHCSM/S/kPv/4FXKNXTjLYS6f1PO5u
KhT4ilsVqENLkQkOZZGbbQxix0T+AjTXiea3QiYGWHU4cTKxoBniLH3GdCwJ9QTn
vfj+ejrQ76Ws43AjMjw986S46nURuyjIwMcJvT4hY6y3zPgO6NDBw+BW9jV9FXbz
TFI/4CBb3oZ8ap4+++Yt+diaDHnCjfSf9u7VHYsW5KZQcXRReS6eZZHMLU0h9pXd
9ExKdrfmVpSuh/QHD0AMu+tAl0F4
-----END CERTIFICATE-----
Generated at Tue Aug 6 07:25:32 2024 by rpki-client on console-ams.rpki-client.org