Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/52WqWEoi_c-vBMMSfC-eq0dycLo.roa
File: 52WqWEoi_c-vBMMSfC-eq0dycLo.roa (raw, json)
Hash identifier: BgNSCFEcWpaIju9AnBL0HzzdqECq43Kj9HDLNt0B+CA=
Subject key identifier: E7:65:AA:58:4A:22:FD:CF:AF:04:C3:12:7C:2F:9E:AB:47:72:70:BA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01858199DC0702DB68BA6AC70838020AD4EE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/52WqWEoi_c-vBMMSfC-eq0dycLo.roa
Signing time: Thu 05 Jan 2023 11:03:42 +0000
ROA not before: Thu 05 Jan 2023 11:03:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 194.87.3.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
62.76.232.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:81:99:dc:07:02:db:68:ba:6a:c7:08:38:02:0a:d4:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 5 11:03:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e765aa584a22fdcfaf04c3127c2f9eab477270ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d3:b1:98:a1:d6:82:69:1d:53:42:07:53:e5:
60:2e:35:e4:99:0a:d6:98:47:97:6a:b5:b6:60:f5:
75:c4:bd:8a:d5:b9:98:08:d1:70:31:38:ee:44:ce:
d5:c6:85:29:3d:38:a8:9b:8b:69:05:e8:3a:d0:fd:
c9:a2:c6:06:12:72:d5:e2:82:c8:9e:63:c9:f0:f2:
0e:ef:b5:72:e1:ad:4f:98:8e:d7:0a:a8:72:b0:bf:
47:bf:49:68:58:bc:70:8d:cf:e7:c8:7f:ea:2a:6d:
40:f9:9b:33:04:6d:03:8e:18:00:ea:28:8b:9d:3f:
8b:17:00:d9:fe:6d:71:8b:1a:4f:8f:2a:37:7f:bf:
c0:e2:49:33:c8:f5:6b:c7:40:ed:48:93:eb:75:cf:
c0:28:39:59:1d:59:c3:ae:bf:9c:33:0e:ce:9f:d8:
99:da:0c:2e:ee:a1:05:7b:a9:b3:b8:e8:99:57:99:
97:b0:2a:8b:a6:fb:73:7c:11:8f:e2:6d:ab:68:9e:
dd:b1:6a:dd:72:6f:7d:92:e1:93:a2:e5:87:30:9a:
89:84:cc:bf:2f:23:b9:97:44:85:da:6b:8e:af:f9:
f1:71:65:45:20:31:13:ef:88:e8:00:bb:5e:18:7c:
44:b7:3d:fe:eb:54:f6:12:06:da:ab:1c:d8:db:a8:
03:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:65:AA:58:4A:22:FD:CF:AF:04:C3:12:7C:2F:9E:AB:47:72:70:BA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/52WqWEoi_c-vBMMSfC-eq0dycLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
62.76.235.0/24
193.124.16.0/24
193.124.202.0/24
194.58.47.0/24
194.87.3.0/24
194.87.16.0/24
194.87.22.0/24
194.87.37.0/24
194.87.83.0/24
194.87.177.0/24
195.133.86.0/24
195.133.194.0/24
212.192.211.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:40:73:d5:54:d8:63:85:76:00:e0:a5:cb:51:99:63:65:6e:
af:a2:ee:12:44:14:df:84:e4:4c:26:1e:bb:66:50:10:68:52:
62:bb:a6:c8:b8:17:f3:a4:be:59:f4:85:e8:61:d7:25:c7:a7:
ae:87:ad:73:66:5c:fb:38:21:b1:88:23:e0:30:06:f3:93:3b:
86:50:bb:2c:da:12:3f:d4:1e:bd:be:70:9b:0c:c0:ab:ef:4b:
0f:01:b0:94:d1:41:8a:f7:ea:be:75:49:d2:d1:6e:45:e4:80:
99:5d:da:da:43:b5:76:f6:0f:6e:2f:4a:63:f0:7c:1b:f3:0d:
eb:53:a9:38:3b:b8:af:57:f4:c2:88:3a:fc:df:38:07:45:eb:
89:8a:c6:be:a4:21:a5:a2:f9:61:6a:ae:27:34:d6:9e:75:c4:
d4:e6:0e:e3:2e:00:d1:bf:bf:58:a1:47:96:90:49:88:78:a5:
14:b3:8a:9a:a7:8e:d8:b4:a3:31:95:5c:eb:a4:1e:1a:66:10:
5d:19:19:aa:60:49:7d:9e:4d:36:d6:ea:26:7b:32:7f:98:fd:
16:90:75:b9:f4:73:33:05:58:7b:19:73:2a:f8:6d:c9:8a:85:
2d:27:2e:33:02:ac:14:de:ae:1b:eb:aa:c8:c0:8e:63:3d:67:
2b:02:24:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org