Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zs37X8iwcbmlJ7IuWrSF47iyy4.roa
File: 5zs37X8iwcbmlJ7IuWrSF47iyy4.roa (raw, json)
Hash identifier: ODS9J60P+uOKY4klRppTNW+0bcn5zkmc8fgD8irwi50=
Subject key identifier: E7:3B:37:ED:7F:22:C1:C6:E6:94:9E:C8:B9:6A:D2:17:8E:E2:CB:2E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190EEEE2D2109FAB4C0347918D4AAF7D0AD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zs37X8iwcbmlJ7IuWrSF47iyy4.roa
Signing time: Fri 26 Jul 2024 12:05:04 +0000
ROA not before: Fri 26 Jul 2024 12:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.21.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.134.0/23 maxlen: 23
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
195.133.0.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
212.192.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 08:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ee:ee:2d:21:09:fa:b4:c0:34:79:18:d4:aa:f7:d0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 12:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e73b37ed7f22c1c6e6949ec8b96ad2178ee2cb2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:81:57:62:a5:70:f1:d2:17:8d:bb:81:20:a7:
ec:79:81:8b:73:8f:32:8c:13:80:47:a4:f5:ae:8b:
bf:5e:04:c6:5f:7c:38:b9:ea:6a:85:1b:57:94:3c:
2d:2c:6b:39:76:bc:12:4d:e4:79:03:43:bf:13:66:
c3:02:21:da:13:da:6b:e4:39:fe:af:a1:ab:11:40:
65:59:52:30:e6:5b:17:ee:74:41:11:a0:51:23:47:
bd:91:5c:85:b0:3b:41:b2:a0:c8:08:87:95:22:ef:
1f:19:5e:1d:56:45:4a:2a:88:c7:0e:6b:7c:1c:92:
45:d0:68:eb:88:c5:16:03:ea:e6:95:06:79:84:74:
80:4e:e5:37:d0:85:ae:a7:17:51:02:af:9a:48:4a:
6e:e7:d7:88:87:22:42:d9:51:0d:14:dd:29:53:12:
cf:57:5d:a2:98:03:92:7e:70:38:ff:86:5b:55:ab:
59:f4:c5:47:ea:fa:89:a3:b5:05:5b:e6:23:32:39:
d9:49:85:c9:f2:20:a5:51:f0:97:cb:4a:39:48:5a:
7d:d4:8d:4d:25:3c:6f:91:fd:79:ca:c8:f1:ed:17:
23:26:49:43:a8:55:97:77:2f:0a:d7:db:b6:0f:8b:
b1:ce:df:14:49:a7:97:fa:49:37:a4:46:18:6f:1e:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3B:37:ED:7F:22:C1:C6:E6:94:9E:C8:B9:6A:D2:17:8E:E2:CB:2E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5zs37X8iwcbmlJ7IuWrSF47iyy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.21.0/24
194.87.30.0/24
194.87.114.0/23
194.87.134.0/23
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.84.0/23
212.192.222.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:a2:c3:b4:0e:32:d5:2b:66:b9:c3:38:d7:43:6f:ac:58:c3:
15:3e:b8:df:2b:04:30:98:39:a4:55:d7:5e:23:fd:b4:6a:3d:
9b:92:aa:d3:e9:a1:42:b1:0e:c4:ab:02:09:ff:32:6c:d2:89:
f0:fa:7c:8b:8b:fc:11:f3:e6:d8:0b:77:a3:78:a9:90:ec:ec:
4c:a7:2d:36:46:f9:00:60:5c:fe:d6:98:41:ab:7f:e4:a3:48:
30:bd:b9:f3:a9:3d:21:1b:45:92:2f:15:85:95:84:ca:71:89:
54:01:fb:4d:db:69:9a:3d:73:fb:b5:89:3a:f3:6e:50:64:6d:
a1:81:54:85:1a:1f:94:c6:e2:59:09:c8:4b:40:84:7e:e6:b0:
0e:ae:46:d5:bd:a7:a1:f4:5f:b5:80:af:4f:02:be:ad:4c:16:
33:38:9f:28:8a:6e:34:6b:79:5d:93:2d:7a:49:ea:54:e8:e1:
2e:a9:f7:e0:0e:9d:2b:fb:90:74:9e:07:0d:85:2e:ca:17:77:
2e:06:73:47:d1:ad:10:34:6b:d2:5e:10:b0:76:50:a1:65:4b:
66:86:0d:f4:d2:fe:cc:1d:1d:93:d4:e7:04:df:25:aa:87:86:
60:70:18:79:07:23:e0:55:fe:7d:b8:46:fa:79:cd:8c:dd:64:
c2:c6:02:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:40:40 2024 by rpki-client on console-ams.rpki-client.org