Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7t953tV2YFADribdXraPTwtlTVU.roa
File: 7t953tV2YFADribdXraPTwtlTVU.roa (raw, json)
Hash identifier: j9F9SppaBfDUAeG5+sPXDiItPejSl1VqmAXrKD1gpUs=
Subject key identifier: EE:DF:79:DE:D5:76:60:50:03:AE:26:DD:5E:B6:8F:4F:0B:65:4D:55
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01872695FE4FC144321104DC73117A991A3D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7t953tV2YFADribdXraPTwtlTVU.roa
Signing time: Tue 28 Mar 2023 04:59:36 +0000
ROA not before: Tue 28 Mar 2023 04:59:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 15:49:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:26:95:fe:4f:c1:44:32:11:04:dc:73:11:7a:99:1a:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 28 04:59:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eedf79ded576605003ae26dd5eb68f4f0b654d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a6:91:84:6c:d4:55:27:03:f2:6e:33:fd:28:
80:6b:43:d4:87:7e:5a:41:44:45:1b:3f:45:37:f1:
8c:c0:ee:02:a1:17:64:93:e1:8a:b2:e7:4c:b1:c8:
07:c3:d2:f9:3e:0c:53:16:18:28:11:b2:b2:f3:e6:
3a:e7:46:1c:8f:09:9c:12:34:23:68:e1:1b:13:65:
82:4d:e1:ae:2e:f1:0b:a4:43:66:75:23:f1:66:28:
61:4c:9a:3c:ef:92:8a:cf:8d:60:dc:c6:62:6e:26:
48:0d:e5:eb:b5:44:85:b9:b1:8d:72:2b:44:be:e4:
32:b9:f6:37:37:30:4e:0f:e6:5b:bd:ab:5a:64:da:
07:d8:de:ff:7f:e1:00:b7:68:03:9c:d0:1c:a8:07:
8c:4c:89:26:a9:13:2d:1c:7d:89:ac:b1:f3:df:dc:
c9:25:7e:57:82:e7:2b:4b:02:2a:ee:34:0b:24:a2:
45:20:d5:c8:7d:94:36:25:37:20:23:89:dd:84:fc:
7a:99:5a:1d:4a:db:56:43:25:2b:1f:00:d0:6b:ed:
de:84:bd:ee:bc:50:e4:52:82:16:17:99:58:65:81:
e0:dc:48:4a:6b:39:e4:25:45:2f:05:a8:92:75:fb:
8d:3c:f6:47:28:30:d8:00:42:d1:d9:28:2c:1e:e7:
51:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DF:79:DE:D5:76:60:50:03:AE:26:DD:5E:B6:8F:4F:0B:65:4D:55
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/7t953tV2YFADribdXraPTwtlTVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.133.0/24
193.124.203.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.87.27.0/24
194.87.82.0/24
194.87.115.0/24
194.87.118.0/24
194.87.136.0/24
194.87.165.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
93:02:61:17:1c:96:c3:da:8f:8a:47:15:8d:5e:4e:91:a4:cc:
62:8a:74:b6:7c:f1:36:6c:65:63:fc:c3:6e:fd:c6:08:14:42:
52:2d:3e:22:e8:9d:95:e9:0d:f0:5c:1f:cb:53:12:2d:55:16:
7a:d5:ad:e6:21:f3:83:dc:04:bb:63:70:12:7a:3b:d5:1f:1f:
f5:88:4e:a6:5b:69:5b:6b:f8:e6:c2:3a:eb:27:ee:5e:cd:37:
3d:9d:ed:b1:30:07:8a:ea:94:24:1e:fc:93:f5:0c:2f:a8:d3:
d4:78:68:cc:5d:19:b3:de:b0:60:fb:35:e1:da:df:2f:88:ad:
66:54:66:9c:7a:69:fb:09:7c:78:61:69:ec:c3:ac:c0:17:7f:
9b:93:e3:50:a0:ac:99:ca:fd:67:a8:cb:de:e1:1b:7f:7a:ad:
43:41:7a:eb:9a:74:eb:0b:63:ca:d3:dc:a4:36:40:47:77:28:
3f:79:2e:4d:1e:bf:83:da:76:92:4c:38:1a:f8:cf:f5:88:e1:
6a:2e:d4:94:bd:02:58:2e:c7:ad:85:19:21:a3:53:ac:59:8f:
ef:a1:e6:74:fa:46:4f:52:75:61:2c:1d:d6:7e:89:27:a4:87:
5c:4a:6c:09:7c:15:e0:33:89:2c:43:71:4a:f6:dc:2d:0f:e9:
c4:b0:b6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:07 2024 by rpki-client on console-fra.rpki-client.org