Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6_UItDbHKGxvQXPyI3XOpe20-eU.roa
File: 6_UItDbHKGxvQXPyI3XOpe20-eU.roa (raw, json)
Hash identifier: kkGgPuHYmNs00eMy02VbOSmTndDVxAiBnEupQoR1glA=
Subject key identifier: EB:F5:08:B4:36:C7:28:6C:6F:41:73:F2:23:75:CE:A5:ED:B4:F9:E5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01882E6C5FD7AB25E484996C0BC591AE5E21
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6_UItDbHKGxvQXPyI3XOpe20-eU.roa
Signing time: Thu 18 May 2023 10:33:54 +0000
ROA not before: Thu 18 May 2023 10:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.27.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:6c:5f:d7:ab:25:e4:84:99:6c:0b:c5:91:ae:5e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 18 10:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebf508b436c7286c6f4173f22375cea5edb4f9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:62:ee:e4:3f:7f:48:05:a9:d1:5a:e0:f9:52:
a7:86:2d:63:60:6e:3c:9b:d5:2e:09:9e:a0:58:70:
82:2a:26:02:b1:f8:f1:b2:a9:59:5c:3c:98:a0:44:
9c:e3:29:2a:10:e5:23:a8:02:1c:80:0f:80:24:c2:
a6:50:9b:6b:db:52:de:5d:4f:82:3a:58:f2:38:e5:
1a:15:78:a7:0d:88:b6:8b:5d:80:7c:db:0b:8c:e1:
f3:80:cb:94:31:36:93:46:40:b9:d1:e3:20:4a:e4:
5f:a4:7b:40:10:47:48:36:4a:3f:d3:53:be:d5:e5:
85:57:89:22:d6:17:16:ce:6a:7c:64:77:b5:12:75:
49:13:3e:ca:18:b7:00:d6:9e:66:31:7f:d7:2a:56:
4f:53:3d:87:60:dc:ff:63:53:30:96:3b:ff:d8:ba:
81:db:16:7b:54:15:e6:42:c0:fa:04:84:21:6c:0d:
03:53:fa:9f:28:2c:ee:c0:3f:6e:d3:31:d2:ae:77:
bd:09:59:37:3f:77:30:b2:47:2d:19:39:3c:c7:10:
00:76:18:08:d3:c7:0c:96:13:86:d0:98:62:75:3d:
93:0d:99:07:77:cd:11:3f:98:2c:77:9e:c9:0e:56:
50:af:b4:2b:15:cc:86:19:a4:4a:7a:e4:7c:af:ff:
ff:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F5:08:B4:36:C7:28:6C:6F:41:73:F2:23:75:CE:A5:ED:B4:F9:E5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6_UItDbHKGxvQXPyI3XOpe20-eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
194.58.45.0-194.58.47.255
194.87.27.0/24
194.87.118.0/24
194.87.136.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.56.0/21
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:6a:15:16:af:f3:66:46:6e:1d:1d:2a:85:cc:e9:2c:1d:ea:
bd:98:11:db:4f:53:f7:96:05:9c:55:8c:b6:e8:37:6d:3f:52:
6f:ff:f0:46:95:00:16:9f:28:1f:b7:fc:25:65:53:2d:a5:09:
ad:eb:44:da:9c:38:50:e6:fd:40:76:e9:a9:cb:f1:83:9b:aa:
ce:8e:30:db:c5:f5:34:b1:14:60:c1:64:6e:f8:c4:1f:45:bb:
69:89:40:c1:f5:3d:bd:90:32:ac:8b:1b:e1:c5:b6:d7:4e:6f:
85:f8:5c:d6:87:3f:cb:82:bf:aa:01:f0:ba:aa:8d:c9:d7:d0:
66:4b:2e:86:12:53:c7:2b:f1:54:c4:12:77:8b:58:94:71:76:
25:44:68:37:55:fe:4d:96:a0:b0:89:bb:0d:e1:1f:24:62:09:
75:a6:77:72:c3:ef:92:44:90:25:a6:96:7c:7c:44:40:b2:8f:
b6:aa:b5:64:39:48:23:08:91:94:b8:6f:e0:74:9a:2a:8b:f3:
2f:0f:80:c7:78:eb:ad:17:42:81:2d:e8:2f:33:bf:60:61:9d:
a6:d9:19:c8:fc:22:ec:64:ff:49:55:58:0c:47:73:9f:56:e2:
56:1a:47:29:7b:52:ba:3a:ca:2c:a8:e2:66:b9:a9:ee:54:8e:
53:c1:b1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org