Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5aXtmDDlqZhwAcs62uutMTEiRO4.roa
File: 5aXtmDDlqZhwAcs62uutMTEiRO4.roa (raw, json)
Hash identifier: exw9Gcseesjp3RG/7venYx3cvLRGOWhs1GQHyCW26vU=
Subject key identifier: E5:A5:ED:98:30:E5:A9:98:70:01:CB:3A:DA:EB:AD:31:31:22:44:EE
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C6411542CC6410D87663DB081AAE4C0EE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5aXtmDDlqZhwAcs62uutMTEiRO4.roa
Signing time: Wed 13 Dec 2023 16:45:06 +0000
ROA not before: Wed 13 Dec 2023 16:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.21.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
212.193.5.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.56.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
212.192.11.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
192.124.189.0/24 maxlen: 24
195.133.40.0/23 maxlen: 23
195.133.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 15:45:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:11:54:2c:c6:41:0d:87:66:3d:b0:81:aa:e4:c0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 13 16:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5a5ed9830e5a9987001cb3adaebad31312244ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b8:6a:cc:87:b1:21:7e:f8:dd:99:d3:4c:01:
80:4a:16:da:4a:2a:52:f8:89:e8:70:64:44:c8:10:
9c:ba:a6:b4:a3:87:cb:db:08:f7:9e:d0:6e:74:ae:
d5:69:f7:32:2b:5b:20:a2:bd:d3:91:5e:16:2d:fb:
3c:7d:97:0a:9b:3e:e4:e9:e9:10:f2:93:da:7e:1e:
b0:f3:66:e3:f0:1b:29:b5:e0:f7:af:44:7f:6a:fb:
43:94:aa:25:2e:79:24:7c:96:40:62:d7:24:6c:96:
60:18:46:a7:96:45:5a:05:64:05:a3:02:d6:49:77:
2d:c9:88:4c:3f:dc:f4:ba:35:ed:62:43:36:76:33:
97:36:66:34:01:f3:e9:9f:ae:dd:f3:56:2f:25:38:
1c:c2:5a:0d:3c:91:49:91:39:e3:82:67:fd:25:ea:
43:ca:5b:8f:f8:3f:62:cc:7c:3c:cd:89:e8:0b:d6:
2c:93:ad:b8:99:96:fa:4f:ad:9a:11:3b:6a:9f:48:
f1:1d:37:be:5d:83:e8:de:95:8e:55:b2:db:ae:47:
51:07:aa:0b:96:7b:71:f6:ba:45:b7:56:a0:7d:19:
32:7e:94:4e:ef:f8:ce:0b:7a:a6:9b:76:01:db:f2:
63:e2:8c:0a:d1:5c:fc:5b:73:fe:b9:12:7a:dd:ac:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A5:ED:98:30:E5:A9:98:70:01:CB:3A:DA:EB:AD:31:31:22:44:EE
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5aXtmDDlqZhwAcs62uutMTEiRO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.178.0/24
192.124.189.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
194.58.47.0/24
194.87.1.0/24
194.87.11.0-194.87.12.255
194.87.18.0/24
194.87.21.0/24
194.87.30.0/24
194.87.56.0/24
194.87.83.0/24
194.87.104.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.131.0/24
194.87.134.0/23
194.87.179.0/24
194.87.200.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.40.0/23
195.133.73.0/24
195.133.84.0/23
195.133.194.0/24
212.192.11.0/24
212.192.214.0/24
212.193.5.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e2:0f:7a:b5:cc:24:c1:e2:24:fe:c0:9f:7d:1e:8e:25:a8:
5b:04:89:9b:e3:ff:74:c1:51:e8:19:9d:26:b6:a7:4b:3a:2f:
df:66:3b:fc:3c:89:f0:cc:35:51:ec:9e:0d:7f:d9:74:34:c1:
39:0c:e3:60:f4:01:65:1a:eb:0a:76:fb:7d:d8:7b:13:35:9d:
cc:56:55:f8:a5:4e:0d:f3:0f:bd:16:23:83:62:2c:35:de:4b:
e9:86:b2:ef:05:c9:1e:57:fb:02:35:5d:24:ba:0d:b4:ee:4e:
c2:85:68:0a:7f:1a:3d:64:62:4b:f8:a6:86:11:d9:4a:3e:1b:
2c:e1:48:e2:65:37:dd:50:42:de:d1:b4:68:38:1d:09:2c:a3:
4c:6e:9c:5b:58:eb:d8:b9:f2:18:10:9b:5c:de:2f:1a:a5:72:
2e:d4:cf:1e:b4:c2:8d:42:6a:30:df:07:c6:11:20:0e:fd:ed:
c9:85:27:92:49:34:f3:58:85:55:95:50:97:70:4c:80:71:93:
4e:3c:51:2c:c1:da:fc:e8:e5:05:f9:a3:23:fb:23:ca:9f:eb:
e7:6f:b7:99:ca:4d:50:ef:67:0d:3e:47:04:a1:f4:40:ce:dd:
fe:ca:ce:ec:30:a4:1b:70:c3:b8:53:c7:ac:8a:9d:e3:da:55:
b3:81:42:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:06 2024 by rpki-client on console-fra.rpki-client.org