Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zYvCvpH6ghKqqR8ICc17SzEGlBM.roa
File: zYvCvpH6ghKqqR8ICc17SzEGlBM.roa (raw, json)
Hash identifier: Q6DbVb0AzlL1sgAGBlx2DR1tqoB7ioCImQ+BC+t1Ais=
Subject key identifier: CD:8B:C2:BE:91:FA:82:12:AA:A9:1F:08:09:CD:7B:4B:31:06:94:13
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A5A7A6267A6B5B32D58631B58D4F7986C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zYvCvpH6ghKqqR8ICc17SzEGlBM.roa
Signing time: Sun 03 Sep 2023 09:58:04 +0000
ROA not before: Sun 03 Sep 2023 09:58:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
194.87.34.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.133.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.79.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
195.133.26.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.40.0/23 maxlen: 23
212.193.31.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
194.58.67.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.87.180.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:7a:62:67:a6:b5:b3:2d:58:63:1b:58:d4:f7:98:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 3 09:58:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd8bc2be91fa8212aaa91f0809cd7b4b31069413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:7f:03:fd:9d:a5:ea:93:bb:a4:82:3a:bb:
ab:eb:98:e0:8b:2b:9d:f4:dd:63:5e:ef:1a:20:f7:
4c:88:6f:14:0f:90:87:3f:cd:29:bf:60:c5:7e:6b:
d3:d7:60:a6:0a:9b:a8:1c:92:cf:af:ce:ca:91:ef:
7f:1b:d6:7c:88:3a:55:59:fb:d7:4e:4e:ca:cc:a1:
04:8a:a6:43:a6:a5:1f:1c:53:44:1d:65:f9:59:cd:
d4:1d:ed:e7:12:56:b3:f0:27:40:02:76:05:91:11:
4f:33:cf:0a:52:0a:be:bc:6b:13:5d:fc:94:ee:f1:
69:b2:bd:61:e7:8b:39:5d:5d:23:c4:fc:a4:57:67:
c5:0d:a7:70:6f:71:ca:e8:5d:fb:f0:80:67:4c:fb:
ba:2d:d2:64:ac:bb:88:3f:75:25:3e:70:7a:08:f8:
94:77:3f:52:bd:8b:5d:df:68:1e:eb:b6:e5:08:86:
23:86:30:77:ac:f6:c6:a5:bd:a1:c7:fe:76:ee:aa:
f3:f4:4c:1c:cd:ad:25:12:43:b5:f8:94:fa:3e:c0:
51:bc:c6:93:50:23:09:f0:32:05:88:17:a0:07:b7:
41:81:20:34:91:0c:d4:ed:3f:45:56:12:d1:d5:00:
00:f1:68:f5:a4:2e:fc:2b:9d:9f:ee:3a:53:58:93:
13:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8B:C2:BE:91:FA:82:12:AA:A9:1F:08:09:CD:7B:4B:31:06:94:13
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zYvCvpH6ghKqqR8ICc17SzEGlBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
192.124.178.0/24
192.124.181.0/24
192.124.191.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
193.124.200.0/24
194.58.38.0/24
194.58.47.0/24
194.58.67.0/24
194.58.154.0/24
194.87.1.0/24
194.87.3.0/24
194.87.11.0-194.87.12.255
194.87.16.0/24
194.87.24.0/22
194.87.34.0/24
194.87.36.0/24
194.87.40.0/24
194.87.56.0/24
194.87.63.0/24
194.87.73.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.118.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.133.0-194.87.135.255
194.87.151.0/24
194.87.168.0/24
194.87.176.0/24
194.87.179.0-194.87.180.255
194.87.190.0/24
194.87.200.0/24
194.87.222.0/24
195.58.36.0/24
195.58.54.0/23
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.26.0/24
195.133.30.0/24
195.133.40.0/23
195.133.73.0/24
195.133.79.0/24
195.133.84.0/23
212.192.241.0/24
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4d:82:ad:f6:f4:66:5a:88:fe:92:d8:77:4b:dd:f0:82:da:
d4:ec:48:2d:73:a1:00:a4:73:f1:16:17:45:74:29:7f:2d:bc:
9c:4b:ed:70:3e:97:a1:d6:a1:6b:09:48:f7:89:8c:72:a8:24:
f9:74:14:ed:76:96:0d:53:09:33:7f:8c:12:9e:b9:3c:31:f1:
3f:0d:1f:4d:46:30:7a:a2:78:a0:89:5b:bd:ed:03:bf:95:8e:
ad:5b:39:4c:23:2d:2b:91:c7:8a:3e:15:b9:59:57:fb:08:de:
3b:19:2a:c7:e9:f7:1c:79:38:31:06:0a:0b:4a:5f:30:2c:f2:
e1:d0:04:ad:96:5e:a5:05:56:14:16:07:08:7d:2d:7c:a4:6e:
a5:3e:9b:14:e0:ee:45:c6:18:81:d7:5f:4c:2f:46:6d:37:b2:
6d:7f:4c:5a:bd:47:fe:c4:c4:61:b7:fc:3c:26:7a:8d:ff:dd:
e7:24:ed:71:21:d1:21:c8:1e:73:2d:79:19:6c:a2:a3:e4:f9:
a2:ec:c1:8e:4a:c6:c2:4a:a9:41:c0:70:73:14:ef:66:26:8b:
35:6a:de:57:d3:9a:3d:52:ba:c6:84:72:70:c9:b4:fb:80:15:
30:37:6e:1c:e3:68:22:d2:ea:5e:4b:05:73:8c:79:2e:5f:e3:
e8:6f:ab:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 12:16:53 2023 by rpki-client on console-ams.rpki-client.org