Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xvN2dFvKzpb9QdenZ-Xz3DdHztU.roa
File: xvN2dFvKzpb9QdenZ-Xz3DdHztU.roa (raw, json)
Hash identifier: KxKUuWxKkylArWW9D2LD6f5o+l1kbOC0SoBQwWjf/l4=
Subject key identifier: C6:F3:76:74:5B:CA:CE:96:FD:41:D7:A7:67:E5:F3:DC:37:47:CE:D5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191260C47E888AEED64A642D1D5F8827C95
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xvN2dFvKzpb9QdenZ-Xz3DdHztU.roa
Signing time: Tue 06 Aug 2024 04:57:04 +0000
ROA not before: Tue 06 Aug 2024 04:57:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 194.58.41.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.39.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.18.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/23 maxlen: 23
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.192.246.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.5.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 07 Aug 2024 09:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:26:0c:47:e8:88:ae:ed:64:a6:42:d1:d5:f8:82:7c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 6 04:57:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6f376745bcace96fd41d7a767e5f3dc3747ced5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bc:f1:74:3f:b4:ca:1c:bd:46:c8:76:eb:48:
08:12:d7:46:81:2c:fc:52:1a:ff:29:8b:08:87:7b:
02:1a:81:b0:19:5d:17:f2:4b:d3:bc:4b:ea:18:53:
ce:e7:dd:d0:63:79:56:ac:d5:e2:f8:a1:e2:8d:43:
e9:5a:4e:5e:0a:40:04:73:3a:97:cf:41:7d:9d:54:
6d:84:c0:c1:55:05:3e:41:98:31:79:c0:e3:03:12:
68:b3:4f:e4:ec:dd:9f:ea:63:69:7a:c0:6f:ee:26:
47:f0:52:6c:4f:8e:7d:54:a6:cd:b2:18:1d:56:2d:
81:13:a8:a5:e7:dd:ed:5d:4f:1e:b7:9d:d4:e2:83:
0e:37:b3:70:40:b1:22:e9:f2:fe:89:11:23:0d:91:
b0:1f:68:5e:83:4d:83:47:57:a8:1e:07:d2:78:35:
b8:fc:83:7c:cb:fe:f8:b0:3b:13:4f:b5:45:eb:57:
ae:2f:0a:c8:e0:0d:dd:51:21:08:a8:3d:86:12:c1:
c9:ed:ed:78:73:4d:34:be:ab:98:e5:22:34:59:d0:
b2:cb:8e:b7:a9:c9:aa:48:7f:71:8e:8e:33:78:87:
b4:47:09:5c:2b:2e:b0:24:b0:ac:a5:70:5e:4c:ac:
3e:15:e0:9a:fa:1c:58:e5:b7:9e:a4:64:a7:60:8d:
b3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F3:76:74:5B:CA:CE:96:FD:41:D7:A7:67:E5:F3:DC:37:47:CE:D5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xvN2dFvKzpb9QdenZ-Xz3DdHztU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.41.0/24
194.58.44.0/24
194.58.66.0/24
194.58.155.0/24
194.87.44.0/24
194.87.49.0/24
194.87.52.0/24
194.87.54.0/23
194.87.83.0-194.87.84.255
194.87.104.0/24
194.87.115.0/24
194.87.130.0/24
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.169.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.208.0/24
194.87.215.0/24
194.87.220.0/23
194.87.226.0/24
194.87.250.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/22
195.58.63.0/24
195.133.15.0/24
195.133.18.0/24
195.133.21.0/24
195.133.25.0/24
195.133.27.0/24
195.133.30.0/24
195.133.50.0/23
195.133.63.0/24
195.133.73.0/24
195.133.81.0/24
195.133.92.0/23
195.133.194.0/24
212.192.1.0/24
212.192.215.0/24
212.192.223.0/24
212.192.246.0/24
212.192.248.0/24
212.193.1.0/24
212.193.5.0/24
212.193.24.0/24
212.193.30.0/24
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
4e:f7:b4:b9:cb:c6:ba:c5:05:28:4d:ff:83:b1:e4:b8:a7:fe:
19:0c:bf:5a:ec:1c:be:1b:f0:ec:2c:d3:f2:a3:6b:a2:15:b4:
bb:05:ef:cf:a4:f8:1e:5f:45:5d:e5:d3:72:49:77:81:45:56:
47:c8:59:7e:40:74:e3:ed:9e:4e:aa:9e:b3:00:68:45:cf:fe:
7d:50:bf:55:db:e7:37:20:c2:ba:c1:a0:dc:e2:35:78:da:a3:
26:ab:da:ed:17:0a:39:91:1a:8a:88:19:85:98:e6:b1:1f:4d:
8f:51:89:00:4c:6f:cf:87:93:6d:36:b5:36:56:7d:fa:26:8e:
d0:77:c1:d3:15:84:9d:d1:8e:bc:b9:9d:1b:0b:d6:66:ad:f5:
06:24:b2:04:01:40:2a:e2:ca:b4:fb:a8:e5:d4:aa:05:52:07:
a6:b5:92:d2:29:0f:36:04:10:bf:22:ff:46:b9:79:81:2d:16:
51:af:08:41:9b:b0:ff:fd:e1:49:6a:88:0a:0e:03:40:32:3c:
8e:20:a1:80:57:07:9c:dd:50:80:23:c8:e8:2d:d0:69:67:05:
4d:43:ea:30:e5:16:7e:65:02:42:06:97:2f:8a:cf:8f:1e:40:
49:9d:ce:e0:61:c3:3e:31:73:d0:7f:c3:35:3e:ff:68:ab:f6:
7e:9d:0b:fd
-----BEGIN CERTIFICATE-----
MIIGazCCBVOgAwIBAgISAZEmDEfoiK7tZKZC0dX4gnyVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwODA2MDQ1NzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmYzNzY3NDViY2FjZTk2ZmQ0MWQ3YTc2N2U1ZjNkYzM3NDdjZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7zxdD+0yhy9Rsh260gIEtdGgSz8
Uhr/KYsIh3sCGoGwGV0X8kvTvEvqGFPO593QY3lWrNXi+KHijUPpWk5eCkAEczqX
z0F9nVRthMDBVQU+QZgxecDjAxJos0/k7N2f6mNpesBv7iZH8FJsT459VKbNshgd
Vi2BE6il593tXU8et53U4oMON7NwQLEi6fL+iREjDZGwH2heg02DR1eoHgfSeDW4
/IN8y/74sDsTT7VF61euLwrI4A3dUSEIqD2GEsHJ7e14c000vquY5SI0WdCyy463
qcmqSH9xjo4zeIe0RwlcKy6wJLCspXBeTKw+FeCa+hxY5beepGSnYI2zXQIDAQAB
o4IDdzCCA3MwHQYDVR0OBBYEFMbzdnRbys6W/UHXp2fl89w3R87VMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEveHZOMmRGdkt6cGI5UWRlblotWHozRGRIenRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBiwYIKwYBBQUHAQcBAf8EggF6MIIBdjCCAVwEAgABMIIB
VAMEAMI6KQMEAMI6LAMEAMI6QgMEAMI6mwMEAMJXLAMEAMJXMQMEAMJXNAMEAcJX
NjAMAwQAwldTAwQAwldUAwQAwldoAwQAwldzAwQAwleCMAwDBADCV4UDBADCV4YD
BADCV4oDBADCV4wDBADCV48DBADCV5cDBADCV6EDBADCV6kDBADCV7sDBADCV74D
BADCV8gDBADCV8oDBADCV9ADBADCV9cDBAHCV9wDBADCV+IDBADCV/oDBADChyYD
BADCh2kDBADDOiIDBALDOiQDBADDOj8DBADDhQ8DBADDhRIDBADDhRUDBADDhRkD
BADDhRsDBADDhR4DBAHDhTIDBADDhT8DBADDhUkDBADDhVEDBAHDhVwDBADDhcID
BADUwAEDBADUwNcDBADUwN8DBADUwPYDBADUwPgDBADUwQEDBADUwQUDBADUwRgD
BADUwR4wFAQCAAIwDgMFAyoBV8ADBQMqDP9AMA0GCSqGSIb3DQEBCwUAA4IBAQBO
97S5y8a6xQUoTf+DseS4p/4ZDL9a7By+G/DsLNPyo2uiFbS7Be/PpPgeX0Vd5dNy
SXeBRVZHyFl+QHTj7Z5Oqp6zAGhFz/59UL9V2+c3IMK6waDc4jV42qMmq9rtFwo5
kRqKiBmFmOaxH02PUYkATG/Ph5NtNrU2Vn36Jo7Qd8HTFYSd0Y68uZ0bC9ZmrfUG
JLIEAUAq4sq0+6jl1KoFUgemtZLSKQ82BBC/Iv9GuXmBLRZRrwhBm7D//eFJaogK
DgNAMjyOIKGAVwec3VCAI8joLdBpZwVNQ+ow5RZ+ZQJCBpcvis+PHkBJnc7gYcM+
MXPQf8M1Pv9oq/Z+nQv9
-----END CERTIFICATE-----
Generated at Wed Aug 7 12:50:37 2024 by rpki-client on console-fra.rpki-client.org