Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7eDay0jpI5zLqBR9SsnzDEX7P2M.roa
File: 7eDay0jpI5zLqBR9SsnzDEX7P2M.roa (raw, json)
Hash identifier: 6ffCqdGYqI30Bn6n2dq8MNNPJmpNHWLUIrdWFdl/y2M=
Subject key identifier: ED:E0:DA:CB:48:E9:23:9C:CB:A8:14:7D:4A:C9:F3:0C:45:FB:3F:63
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188942992E00B0108DDA6C49BBFBE19F14A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7eDay0jpI5zLqBR9SsnzDEX7P2M.roa
Signing time: Wed 07 Jun 2023 04:42:12 +0000
ROA not before: Wed 07 Jun 2023 04:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49392
IP address blocks: 193.124.226.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.254.0/24 maxlen: 24
194.135.32.0/24 maxlen: 24
195.133.26.0/23 maxlen: 24
192.124.176.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
195.133.52.0/23 maxlen: 23
195.133.56.0/22 maxlen: 22
195.133.59.0/24 maxlen: 24
194.87.118.0/23 maxlen: 24
195.133.10.0/23 maxlen: 23
195.133.6.0/23 maxlen: 23
185.72.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 13:37:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:29:92:e0:0b:01:08:dd:a6:c4:9b:bf:be:19:f1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 7 04:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ede0dacb48e9239ccba8147d4ac9f30c45fb3f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:29:34:9a:2d:3a:b0:b7:14:15:85:a3:55:ef:
9c:c5:c5:52:f2:55:34:13:39:ba:1e:4b:97:3c:56:
df:9f:7a:54:9d:35:2b:c5:45:ff:fc:ea:e3:b7:63:
1b:92:b5:82:ed:3e:e3:c1:55:8b:4c:55:e4:e7:be:
0b:24:d3:de:7b:0c:2d:a3:ce:94:97:a2:81:e5:99:
7f:b0:5d:ec:36:75:93:87:29:a8:aa:95:bc:d6:0f:
54:c5:92:06:3d:7a:5f:97:63:82:d0:d0:19:64:06:
a7:a9:46:01:5b:60:10:e8:75:e9:92:10:a6:ed:cd:
df:0f:e3:4d:18:89:a3:fd:82:b8:d7:b0:f3:1d:54:
ba:ed:84:5c:cc:0d:81:4e:81:a2:28:16:4d:62:95:
21:1a:36:98:58:49:48:36:ab:9b:5e:79:11:d5:b9:
49:25:34:af:09:e7:b2:b9:fc:85:8b:cd:42:f2:c6:
58:a6:20:3d:51:7d:2c:19:33:da:30:26:bb:ed:b3:
40:21:d9:d0:12:f8:9b:ee:eb:d4:17:9e:04:ed:83:
27:42:4a:47:79:e9:51:fb:59:f5:8e:75:8c:21:fc:
a2:e6:9c:52:42:1d:db:d4:b3:db:f6:88:12:7e:49:
d5:bc:7b:59:ab:60:14:39:89:68:36:43:18:2e:6f:
ba:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E0:DA:CB:48:E9:23:9C:CB:A8:14:7D:4A:C9:F3:0C:45:FB:3F:63
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7eDay0jpI5zLqBR9SsnzDEX7P2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.10.0/24
192.124.176.0/24
193.124.36.0/24
193.124.226.0/24
193.124.254.0/24
194.87.118.0/23
194.87.221.0/24
194.87.227.0/24
194.135.32.0/24
195.133.6.0/23
195.133.10.0/23
195.133.26.0/23
195.133.52.0/23
195.133.56.0/22
212.192.13.0/24
Signature Algorithm: sha256WithRSAEncryption
63:eb:25:89:91:8b:e3:0f:ad:ed:6e:5a:af:e6:8c:fe:8a:a1:
a4:17:ff:78:c8:c9:6b:43:dd:0c:3f:85:8d:78:c8:fb:e4:43:
f1:f9:cd:d2:58:cf:64:da:9f:42:1b:a5:eb:01:dc:f1:1d:26:
c0:7d:fe:19:cd:f2:43:de:bd:f6:30:11:84:61:2e:2a:15:d5:
d1:2c:0d:ca:75:93:0e:29:2c:36:a1:2d:e7:2b:c9:c1:1a:99:
b6:06:dc:08:64:8a:db:05:80:56:6e:9d:1d:4f:ef:ba:15:d5:
02:8a:b6:9a:13:a7:e8:ad:2d:63:25:0d:a2:5b:37:05:e8:b0:
81:83:b0:1d:60:21:a3:b0:05:38:f2:99:42:a8:08:e4:2c:4c:
82:b5:b1:bd:22:a1:7d:fc:da:66:41:be:45:4c:78:37:dd:65:
b1:67:b3:66:a5:00:c9:27:9b:e1:76:95:01:09:94:78:27:fa:
b4:54:58:58:07:8c:db:5a:da:3d:5a:d0:3e:0f:2e:f4:16:10:
c0:08:e9:38:86:fd:ae:3c:2c:8d:3c:09:ca:ab:f9:24:57:f2:
fc:c0:4d:9a:26:fa:e1:b4:e7:d1:cc:e1:13:38:06:4e:29:3f:
c9:81:46:c9:91:a2:63:f4:9a:87:cb:66:7e:b1:aa:c3:06:24:
59:8c:9e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:07 2024 by rpki-client on console-fra.rpki-client.org