Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yXBurqsLvwxM3_r1iOtAt3ihU6Q.roa
File: yXBurqsLvwxM3_r1iOtAt3ihU6Q.roa (raw, json)
Hash identifier: 3YngH0s4g0C3poSuLtZE5WJJGCKP4eKCwIaWYPxKFC4=
Subject key identifier: C9:70:6E:AE:AB:0B:BF:0C:4C:DF:FA:F5:88:EB:40:B7:78:A1:53:A4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188D4A1AAE475419F821EC001495C58DB96
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yXBurqsLvwxM3_r1iOtAt3ihU6Q.roa
Signing time: Mon 19 Jun 2023 17:09:04 +0000
ROA not before: Mon 19 Jun 2023 17:09:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.230.0/23 maxlen: 23
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.37.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
193.124.124.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.78.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.22.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
212.192.244.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
212.192.247.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
212.192.248.0/22 maxlen: 22
195.58.62.0/23 maxlen: 23
194.58.223.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.204.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.135.24.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
192.124.170.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.162.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.204.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d4:a1:aa:e4:75:41:9f:82:1e:c0:01:49:5c:58:db:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 19 17:09:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9706eaeab0bbf0c4cdffaf588eb40b778a153a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8b:fc:3b:cc:4b:3b:27:2e:81:88:bf:64:f0:
0c:56:4c:f2:c1:1d:cc:21:ac:89:52:24:fc:cd:b8:
74:4e:1d:59:13:8e:ca:de:e1:96:80:ee:8e:b9:49:
3b:43:5b:da:3c:67:78:34:d9:be:ff:11:a0:76:0b:
d4:2a:01:65:8b:65:77:3a:41:93:49:e3:00:4f:7f:
0d:67:02:a6:96:44:7a:1c:1a:47:88:2a:bb:c8:4b:
d5:4a:89:82:8b:43:8f:b6:5b:92:86:0c:c9:2c:e9:
e8:df:08:44:85:17:9e:42:c1:01:87:d8:f0:18:21:
15:b6:7d:36:50:90:7d:e1:e9:ef:59:e5:fc:cd:26:
3e:7a:8e:74:14:2d:0d:c5:bd:ec:2f:b7:08:35:a0:
85:91:83:3c:cf:9a:28:12:cd:1c:8b:2a:60:72:ea:
7d:40:d4:2d:8f:ec:5b:bd:58:f5:aa:77:17:4e:cc:
87:c8:c5:73:b7:3f:68:6f:af:b1:9e:60:cf:de:31:
23:5a:cd:d1:39:e2:76:fe:5f:91:e1:37:40:ce:4c:
66:33:7f:3b:07:3d:2d:44:f8:1e:55:87:e1:8c:ca:
b6:46:e5:6e:3d:60:8f:01:75:6b:28:2e:d9:0e:dd:
11:d9:54:27:01:d3:bd:97:e1:10:bb:89:61:43:19:
20:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:70:6E:AE:AB:0B:BF:0C:4C:DF:FA:F5:88:EB:40:B7:78:A1:53:A4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yXBurqsLvwxM3_r1iOtAt3ihU6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.230.0/23
192.124.170.0/24
192.124.178.0/24
192.124.181.0/24
192.124.189.0-192.124.191.255
193.124.3.0/24
193.124.6.0/24
193.124.8.0/24
193.124.16.0/24
193.124.49.0/24
193.124.80.0/24
193.124.90.0/24
193.124.124.0/24
193.124.133.0/24
193.124.200.0-193.124.202.255
193.124.204.0/24
194.58.38.0/24
194.58.42.0/24
194.58.47.0/24
194.58.59.0/24
194.58.154.0/24
194.58.223.0/24
194.87.1.0-194.87.3.255
194.87.7.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.18.0/24
194.87.22.0-194.87.27.255
194.87.36.0/23
194.87.43.0/24
194.87.56.0/24
194.87.73.0/24
194.87.78.0/24
194.87.83.0/24
194.87.105.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.160.0/24
194.87.162.0/24
194.87.166.0/24
194.87.168.0/24
194.87.172.0/24
194.87.176.0/23
194.87.179.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0/24
194.87.202.0/24
194.87.204.0/24
194.87.222.0/24
194.87.240.0/24
194.87.243.0/24
194.135.23.0-194.135.24.255
194.135.46.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.22.0/24
195.133.30.0/24
195.133.35.0/24
195.133.74.0/24
195.133.84.0/23
195.133.194.0/23
212.192.8.0/24
212.192.10.0/24
212.192.223.0/24
212.192.241.0/24
212.192.244.0/24
212.192.247.0-212.192.251.255
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:4c:a2:00:3c:e4:a5:70:0c:1d:07:f2:a6:0a:11:d5:b5:96:
30:77:74:17:90:bb:48:e8:42:7a:b2:9c:02:61:3a:cf:46:87:
35:36:50:69:35:be:ec:f8:d9:dd:74:c8:0c:5d:70:62:9b:10:
7d:a1:4a:74:67:53:15:f8:97:82:02:db:0e:9c:24:7e:95:66:
b9:31:e0:eb:a4:71:a3:b4:fa:0d:ce:a9:12:86:de:65:99:94:
ce:e4:d5:a1:52:25:0d:32:41:69:df:7a:1a:2b:14:4e:e8:b1:
69:f4:b3:b9:46:b5:d7:a6:c8:dc:0d:7d:42:d3:d5:32:94:24:
92:96:11:bc:1e:3b:6c:7b:2c:b7:51:22:71:de:4f:81:44:90:
f5:68:4f:63:f0:82:18:4d:c3:7f:60:69:8b:4b:67:b7:ac:fe:
9f:69:41:c8:1b:c4:74:f3:6c:e2:91:22:fb:2c:40:95:45:07:
a3:99:30:39:cb:26:27:1f:a9:67:3a:2b:b6:11:b8:f5:e5:1d:
e5:b5:1c:81:6b:b3:8e:70:da:0b:cd:d2:5e:da:df:1f:28:5b:
98:ac:8b:3c:37:b7:61:ba:06:df:28:9f:02:9f:45:bf:70:64:
ef:eb:5b:f2:cd:6c:6a:08:78:57:ef:37:fe:8f:f7:9e:92:3d:
5b:8b:d2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:14 2023 by rpki-client on console-fra.rpki-client.org