Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zvgbW37uLWTRtclTbkUsQaY3O_E.roa
File: zvgbW37uLWTRtclTbkUsQaY3O_E.roa (raw, json)
Hash identifier: z7CZI4obClsHiu0OJcaNuVE62I1lhnwDQOP/EncU6+E=
Subject key identifier: CE:F8:1B:5B:7E:EE:2D:64:D1:B5:C9:53:6E:45:2C:41:A6:37:3B:F1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191FABB5DB2BDA70A959F03B9409A5E0D77
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zvgbW37uLWTRtclTbkUsQaY3O_E.roa
Signing time: Mon 16 Sep 2024 12:07:48 +0000
ROA not before: Mon 16 Sep 2024 12:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 62.76.233.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
193.124.35.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
193.124.254.0/24 maxlen: 24
194.58.57.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.43.0/24 maxlen: 24
194.87.44.0/24 maxlen: 24
194.87.49.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.133.0/24 maxlen: 24
194.87.134.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.140.0/24 maxlen: 24
194.87.143.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.201.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.220.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.222.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.135.36.0/24 maxlen: 24
194.135.38.0/24 maxlen: 24
194.135.105.0/24 maxlen: 24
195.58.34.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.37.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.20.0/24 maxlen: 24
195.133.21.0/24 maxlen: 24
195.133.24.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.50.0/24 maxlen: 24
195.133.63.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.193.24.0/24 maxlen: 24
212.193.26.0/24 maxlen: 24
212.193.27.0/24 maxlen: 24
212.193.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 19:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:bb:5d:b2:bd:a7:0a:95:9f:03:b9:40:9a:5e:0d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 16 12:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cef81b5b7eee2d64d1b5c9536e452c41a6373bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:15:d2:e4:e0:72:da:2f:36:f2:06:82:2b:
b9:b1:d6:0d:86:72:1f:de:56:9d:61:7c:f5:59:fa:
66:42:06:a5:90:d0:04:45:e1:45:6e:7e:e0:ee:ad:
4e:17:ed:99:0f:2e:5f:d2:f3:2a:f2:83:8f:2d:b9:
3b:df:fb:ec:43:99:59:df:ef:e0:ce:fd:18:91:e3:
46:92:5d:46:b6:d5:77:eb:f8:d4:aa:5a:fe:8c:83:
66:0c:03:37:42:88:22:22:72:8d:5f:28:c3:78:51:
ea:52:d3:8a:a2:b7:99:8f:44:fd:82:66:fb:4e:6f:
ad:70:53:10:45:cb:6b:20:58:12:a9:ea:e5:98:71:
43:bf:00:28:c9:0a:0d:a6:39:b6:6f:9f:d5:84:23:
cd:fc:c2:ac:94:4e:3c:8f:11:85:a4:d3:c0:d0:1d:
0c:4b:8b:6d:41:ca:cc:8b:ad:01:a6:11:55:09:5d:
f0:ac:59:6f:17:0a:8d:e6:d9:1b:91:6f:68:d3:e1:
74:7c:8a:fc:de:6b:fc:cb:96:22:a5:3c:3b:ca:bb:
97:dd:aa:31:3d:ab:ee:3b:20:3c:c6:1c:ad:64:fd:
7d:06:6c:73:f9:51:ae:48:e1:cf:fc:d2:1f:6f:64:
bc:88:5c:20:13:c9:01:10:a8:ac:f6:a0:81:50:23:
92:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F8:1B:5B:7E:EE:2D:64:D1:B5:C9:53:6E:45:2C:41:A6:37:3B:F1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zvgbW37uLWTRtclTbkUsQaY3O_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.233.0/24
193.108.115.0/24
193.124.35.0/24
193.124.47.0/24
193.124.254.0/24
194.58.57.0/24
194.87.26.0/23
194.87.43.0-194.87.44.255
194.87.49.0/24
194.87.56.0/24
194.87.76.0/24
194.87.83.0-194.87.84.255
194.87.86.0/24
194.87.104.0/24
194.87.115.0/24
194.87.118.0/24
194.87.130.0/23
194.87.133.0-194.87.134.255
194.87.138.0/24
194.87.140.0/24
194.87.143.0/24
194.87.151.0/24
194.87.161.0/24
194.87.187.0/24
194.87.190.0/24
194.87.200.0-194.87.202.255
194.87.208.0/24
194.87.215.0/24
194.87.220.0-194.87.222.255
194.87.226.0/24
194.87.243.0/24
194.87.250.0/24
194.135.36.0/24
194.135.38.0/24
194.135.105.0/24
195.58.34.0/24
195.58.36.0/23
195.58.61.0/24
195.133.14.0/23
195.133.20.0/23
195.133.24.0/23
195.133.27.0/24
195.133.30.0/24
195.133.50.0/24
195.133.63.0/24
195.133.73.0/24
195.133.76.0/24
195.133.81.0/24
195.133.194.0/24
212.192.217.0/24
212.193.24.0/24
212.193.26.0/23
212.193.30.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3c:28:d0:5e:4c:3c:5d:f9:0f:33:fb:c8:8d:e3:67:8e:53:
94:21:0d:35:71:55:2b:52:b3:ab:2f:70:2b:57:ec:c5:f8:13:
c0:68:ae:33:80:55:d6:f3:8d:3c:d5:92:44:45:20:df:e5:92:
d6:a5:9f:cf:26:45:54:c3:92:c9:42:41:b9:5e:ee:5e:82:fc:
ca:02:0b:3b:02:37:a5:dc:35:f2:1e:ea:57:39:59:26:f9:2a:
fc:dc:fa:9b:20:6e:77:69:3b:3d:e1:b3:80:71:e5:fa:1d:4e:
64:78:c0:90:09:84:ae:12:ad:49:aa:5d:a4:9d:a5:82:9e:e2:
5c:74:0e:c7:3c:6a:05:60:1f:d4:3b:fd:10:78:c9:fc:6b:11:
64:8f:25:56:99:7e:c5:c4:f4:c8:b7:f4:3f:f6:b0:f5:bd:d5:
47:66:f7:dc:4c:2f:e7:c6:8d:23:cd:d8:2b:d3:64:63:5a:ba:
55:f3:cc:87:6f:f4:c2:c3:8e:ce:7d:99:45:0e:18:a0:a4:17:
3a:6b:33:e7:e2:c4:e6:76:30:3e:7d:64:e1:29:bf:d5:3c:6b:
0d:5b:f0:4d:b3:1b:d1:56:40:53:36:dc:6b:5b:3a:f4:72:29:
75:87:ce:b8:60:00:34:52:72:c5:da:34:48:75:de:1e:23:04:
99:2d:6d:1d
-----BEGIN CERTIFICATE-----
MIIGZzCCBU+gAwIBAgISAZH6u12yvacKlZ8DuUCaXg13MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwOTE2MTIwNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWY4MWI1YjdlZWUyZDY0ZDFiNWM5NTM2ZTQ1MmM0MWE2MzczYmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBwV0uTgctovNvIGgiu5sdYNhnIf
3ladYXz1WfpmQgalkNAEReFFbn7g7q1OF+2ZDy5f0vMq8oOPLbk73/vsQ5lZ3+/g
zv0YkeNGkl1GttV36/jUqlr+jINmDAM3QogiInKNXyjDeFHqUtOKoreZj0T9gmb7
Tm+tcFMQRctrIFgSqerlmHFDvwAoyQoNpjm2b5/VhCPN/MKslE48jxGFpNPA0B0M
S4ttQcrMi60BphFVCV3wrFlvFwqN5tkbkW9o0+F0fIr83mv8y5YipTw7yruX3aox
PavuOyA8xhytZP19Bmxz+VGuSOHP/NIfb2S8iFwgE8kBEKis9qCBUCOSkQIDAQAB
o4IDczCCA28wHQYDVR0OBBYEFM74G1t+7i1k0bXJU25FLEGmNzvxMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvenZnYlczN3VMV1RSdGNsVGJrVXNRYVkzT19FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBhwYIKwYBBQUHAQcBAf8EggF2MIIBcjCCAW4EAgABMIIB
ZgMEAD5M6QMEAMFscwMEAMF8IwMEAMF8LwMEAMF8/gMEAMI6OQMEAcJXGjAMAwQA
wlcrAwQAwlcsAwQAwlcxAwQAwlc4AwQAwldMMAwDBADCV1MDBADCV1QDBADCV1YD
BADCV2gDBADCV3MDBADCV3YDBAHCV4IwDAMEAMJXhQMEAMJXhgMEAMJXigMEAMJX
jAMEAMJXjwMEAMJXlwMEAMJXoQMEAMJXuwMEAMJXvjAMAwQDwlfIAwQAwlfKAwQA
wlfQAwQAwlfXMAwDBALCV9wDBADCV94DBADCV+IDBADCV/MDBADCV/oDBADChyQD
BADChyYDBADCh2kDBADDOiIDBAHDOiQDBADDOj0DBAHDhQ4DBAHDhRQDBAHDhRgD
BADDhRsDBADDhR4DBADDhTIDBADDhT8DBADDhUkDBADDhUwDBADDhVEDBADDhcID
BADUwNkDBADUwRgDBAHUwRoDBADUwR4wDQYJKoZIhvcNAQELBQADggEBAFA8KNBe
TDxd+Q8z+8iN42eOU5QhDTVxVStSs6svcCtX7MX4E8BorjOAVdbzjTzVkkRFIN/l
ktaln88mRVTDkslCQble7l6C/MoCCzsCN6XcNfIe6lc5WSb5Kvzc+psgbndpOz3h
s4Bx5fodTmR4wJAJhK4SrUmqXaSdpYKe4lx0Dsc8agVgH9Q7/RB4yfxrEWSPJVaZ
fsXE9Mi39D/2sPW91Udm99xML+fGjSPN2CvTZGNaulXzzIdv9MLDjs59mUUOGKCk
FzprM+fixOZ2MD59ZOEpv9U8aw1b8E2zG9FWQFM23GtbOvRyKXWHzrhgADRScsXa
NEh13h4jBJktbR0=
-----END CERTIFICATE-----
Generated at Wed Sep 18 22:27:24 2024 by rpki-client on console-fra.rpki-client.org