Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-OZuVp1UGQwFdwj2gxxp8yn9T1Y.roa
File: 1-OZuVp1UGQwFdwj2gxxp8yn9T1Y.roa (raw, json)
Hash identifier: JzSK1pX6RF5Il3dPgEBbtoj7zMhUyPoX0LIE53felxc=
Subject key identifier: F8:E6:6E:56:9D:54:19:0C:05:77:08:F6:83:1C:69:F3:29:FD:4F:56
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CD93D63CA96D8A0D0EE70EE6EF3E86FCB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-OZuVp1UGQwFdwj2gxxp8yn9T1Y.roa
Signing time: Fri 05 Jan 2024 10:48:48 +0000
ROA not before: Fri 05 Jan 2024 10:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 212.193.12.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
62.76.227.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d9:3d:63:ca:96:d8:a0:d0:ee:70:ee:6e:f3:e8:6f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 5 10:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8e66e569d54190c057708f6831c69f329fd4f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8d:d9:1b:3c:4d:1f:20:bc:92:5a:42:aa:66:
f0:15:ac:f6:c2:d5:05:a9:bb:11:f5:10:e5:c5:e0:
c7:41:45:60:9f:7d:30:85:cb:2b:93:87:a5:a5:94:
8e:c9:be:6a:1b:db:4a:af:39:c9:68:b2:4d:1b:ca:
5c:fb:5d:99:65:49:9f:ca:8e:5a:38:b0:10:8d:18:
3c:e7:ff:8e:9a:57:95:4b:ff:cf:0b:57:2b:12:e0:
36:bd:96:91:1f:f8:b8:8b:f3:8a:93:e5:29:2b:71:
16:12:0a:be:4c:58:89:2f:93:6f:0b:f3:13:e6:04:
f2:21:d2:80:ad:9c:c7:5a:8b:64:68:49:fd:04:7c:
80:a8:c9:38:6c:43:87:17:9c:f4:b6:6b:4d:b6:3e:
89:b3:a1:e3:ee:b5:0a:42:7a:94:c9:59:c0:c5:72:
6a:a6:a8:be:fe:50:f6:83:d2:7c:90:8e:83:7a:90:
0c:db:20:55:28:06:4d:a9:8b:27:10:41:d6:5e:ab:
1a:67:27:58:a5:10:c4:14:aa:3e:d9:38:ef:47:7e:
20:36:d6:d4:30:40:6f:d6:fe:1f:e9:5d:dc:95:e1:
29:e7:54:c7:5d:6b:34:4a:53:ba:46:b9:6f:df:cd:
82:ee:36:41:20:42:eb:81:11:85:4a:84:16:9f:0a:
de:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E6:6E:56:9D:54:19:0C:05:77:08:F6:83:1C:69:F3:29:FD:4F:56
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-OZuVp1UGQwFdwj2gxxp8yn9T1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
193.124.47.0/24
193.124.95.0/24
193.124.200.0/24
194.58.66.0/24
194.87.26.0/24
194.87.128.0/24
194.87.170.0/24
194.87.224.0/24
194.87.229.0/24
194.135.33.0/24
195.58.54.0/24
195.58.63.0/24
195.133.25.0/24
195.133.27.0/24
195.133.84.0/24
212.192.1.0/24
212.192.214.0/24
212.192.222.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4f:73:cd:7c:9e:1b:d2:82:9d:30:85:7a:29:a5:d2:f4:a4:
e4:7e:64:a1:8c:e3:cf:f9:70:db:b0:82:1c:ac:8c:1e:87:cf:
78:f5:54:bf:58:1b:e7:a2:32:f5:5b:5c:7a:c9:38:fc:79:90:
77:04:ae:03:eb:dc:60:67:2a:25:f7:a9:ba:7d:62:e6:68:88:
eb:9f:16:c7:f1:7b:51:2a:dd:1c:6e:c3:38:f8:7b:05:bf:3c:
8d:01:90:aa:93:d8:08:8b:bd:ed:17:39:ab:47:38:3d:cc:f3:
96:c6:b6:ec:5a:72:72:81:e3:57:11:93:cb:37:ff:73:9c:89:
a2:e1:2c:90:61:ba:4a:f9:6f:c5:20:3e:b4:8a:a4:41:f9:83:
b6:ef:db:04:17:8b:09:bc:35:a7:de:ec:f9:7c:d3:19:33:e8:
21:92:87:6a:5a:82:60:4c:53:f3:dc:2e:53:bf:35:bd:01:d3:
59:86:45:98:5b:98:82:54:74:b6:32:88:2d:5e:72:20:0a:08:
e9:31:88:b6:cd:c3:40:e8:41:1b:a9:7e:b1:f3:7e:0b:18:bb:
5b:26:81:6b:db:89:54:e9:f4:c8:c4:35:5a:51:bd:6f:57:e3:
bb:74:c1:ac:53:54:03:a2:5a:e5:a1:aa:91:39:46:6c:8c:7e:
12:b6:b6:fa
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzZPWPKltig0O5w7m7z6G/LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMTA1MTA0ODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGU2NmU1NjlkNTQxOTBjMDU3NzA4ZjY4MzFjNjlmMzI5ZmQ0ZjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyY3ZGzxNHyC8klpCqmbwFaz2wtUF
qbsR9RDlxeDHQUVgn30whcsrk4elpZSOyb5qG9tKrznJaLJNG8pc+12ZZUmfyo5a
OLAQjRg85/+OmleVS//PC1crEuA2vZaRH/i4i/OKk+UpK3EWEgq+TFiJL5NvC/MT
5gTyIdKArZzHWotkaEn9BHyAqMk4bEOHF5z0tmtNtj6Js6Hj7rUKQnqUyVnAxXJq
pqi+/lD2g9J8kI6DepAM2yBVKAZNqYsnEEHWXqsaZydYpRDEFKo+2TjvR34gNtbU
MEBv1v4f6V3cleEp51THXWs0SlO6Rrlv382C7jZBIELrgRGFSoQWnwrenQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFPjmbladVBkMBXcI9oMcafMp/U9WMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvMS1PWnVWcDFVR1F3RmR3ajJneHhwOHluOVQxWS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0
My8xL05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCBkwYIKwYBBQUHAQcBAf8EgYMwgYAwfgQCAAEweAMEAD5M
4wMEAMF8LwMEAMF8XwMEAMF8yAMEAMI6QgMEAMJXGgMEAMJXgAMEAMJXqgMEAMJX
4AMEAMJX5QMEAMKHIQMEAMM6NgMEAMM6PwMEAMOFGQMEAMOFGwMEAMOFVAMEANTA
AQMEANTA1gMEANTA3gMEANTBDDANBgkqhkiG9w0BAQsFAAOCAQEAfU9zzXyeG9KC
nTCFeiml0vSk5H5koYzjz/lw27CCHKyMHofPePVUv1gb56Iy9Vtcesk4/HmQdwSu
A+vcYGcqJfepun1i5miI658Wx/F7USrdHG7DOPh7Bb88jQGQqpPYCIu97Rc5q0c4
Pczzlsa27FpycoHjVxGTyzf/c5yJouEskGG6SvlvxSA+tIqkQfmDtu/bBBeLCbw1
p97s+XzTGTPoIZKHalqCYExT89wuU781vQHTWYZFmFuYglR0tjKILV5yIAoI6TGI
ts3DQOhBG6l+sfN+Cxi7WyaBa9uJVOn0yMQ1WlG9b1fju3TBrFNUA6Ja5aGqkTlG
bIx+Era2+g==
-----END CERTIFICATE-----
Generated at Fri Jan 5 17:29:05 2024 by rpki-client on console-fra.rpki-client.org