Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8Uvr1nCskj4JZi5sXgDiz5boKgU.roa
File: 8Uvr1nCskj4JZi5sXgDiz5boKgU.roa (raw, json)
Hash identifier: AHchjIKJUsueIygKemec2UlPOJPGS+sUdFh5xqvV1oE=
Subject key identifier: F1:4B:EB:D6:70:AC:92:3E:09:66:2E:6C:5E:00:E2:CF:96:E8:2A:05
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191E0E59ABD7838959020C71B1FADD621AE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8Uvr1nCskj4JZi5sXgDiz5boKgU.roa
Signing time: Wed 11 Sep 2024 11:43:49 +0000
ROA not before: Wed 11 Sep 2024 11:43:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
195.133.67.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Sep 2024 01:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e0:e5:9a:bd:78:38:95:90:20:c7:1b:1f:ad:d6:21:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 11 11:43:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f14bebd670ac923e09662e6c5e00e2cf96e82a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:81:cb:0c:fd:26:88:e2:91:aa:65:e2:09:5e:
8d:48:f5:76:03:7c:6e:a0:fb:47:19:76:d1:6b:d9:
48:da:33:c5:77:3b:59:10:4a:78:2f:37:e4:34:94:
b3:f3:51:67:b6:30:8b:56:64:9d:92:7d:ca:03:0a:
87:14:77:13:e1:61:e5:29:09:20:88:9f:8a:ab:c8:
1b:e6:c2:e3:7d:b4:73:20:97:84:f0:a6:6a:cf:f6:
ff:fa:27:01:2b:81:cc:ff:4e:70:94:80:7c:fc:17:
5a:f4:09:5b:15:f4:76:4f:9c:04:c8:e6:db:6a:49:
29:2b:36:d2:a1:45:1c:60:ca:65:0a:41:24:a2:b9:
7b:74:44:a5:9c:1d:9c:3b:6c:1c:f1:0a:f3:03:2f:
4e:a3:e6:34:ea:e0:51:8c:03:14:8d:46:18:13:6c:
e3:16:b0:04:f6:03:ba:f3:86:6a:fa:ea:60:c8:b0:
ca:f4:ce:de:16:40:68:a4:68:c9:77:ed:b4:11:91:
d5:87:96:b7:99:51:96:d7:eb:b2:03:6c:6e:92:dc:
f9:b1:f6:b7:67:b4:fc:5e:b1:4d:e5:59:47:e6:03:
20:d7:8f:5d:c5:6c:ce:76:cb:ea:e8:18:27:a2:67:
7e:eb:8c:49:79:3b:be:69:cf:e9:23:88:5f:65:ce:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4B:EB:D6:70:AC:92:3E:09:66:2E:6C:5E:00:E2:CF:96:E8:2A:05
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8Uvr1nCskj4JZi5sXgDiz5boKgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
192.124.209.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.39.0-194.58.40.255
194.58.44.0/23
194.58.66.0/24
194.58.68.0/24
194.87.10.0/24
194.87.18.0/24
194.87.30.0/24
194.87.39.0/24
194.87.47.0/24
194.87.198.0/24
194.87.227.0/24
194.87.230.0/24
195.133.67.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.192.223.0/24
212.193.1.0-212.193.2.255
Signature Algorithm: sha256WithRSAEncryption
24:dd:5a:3e:a7:57:cc:23:1e:36:dc:bd:59:ad:b8:9b:79:3c:
c7:04:d0:9f:d3:64:ba:5b:e4:11:af:8f:9e:45:80:f2:70:9d:
ff:8b:48:45:bf:f9:c2:4f:fd:f2:2f:e8:f9:a7:fd:b7:7e:9e:
27:7c:6c:d2:7b:0f:f4:97:a4:fc:16:43:63:ec:62:f9:82:89:
1e:b7:64:99:fd:20:60:c5:90:7f:ff:b2:5a:b8:3f:9e:a8:33:
fb:bb:23:71:35:eb:f9:27:01:89:2d:d1:dc:44:9c:44:17:69:
bf:fb:50:9c:d6:47:37:7d:0e:5b:1f:ba:e5:e2:67:28:38:72:
24:1b:2c:f5:9d:47:17:30:4f:d3:8c:db:a2:3c:d4:fd:41:5d:
f2:e3:ee:21:59:07:2a:08:b4:c8:cb:4d:f0:3b:7a:c9:2d:85:
05:9e:ec:c2:ef:3a:45:07:39:d6:42:50:a1:cc:e4:0a:10:81:
5f:f1:37:08:34:ee:0b:e9:76:c6:80:7e:db:62:f7:43:5f:03:
22:64:7f:0a:bb:41:b4:fd:da:60:10:7a:4a:b0:f1:f4:af:d7:
f9:f0:64:9e:79:1f:e0:ed:d7:13:55:01:c3:da:5b:70:c4:6b:
bd:70:5f:ed:4a:f4:e2:85:8b:e3:36:37:7f:c8:24:b9:86:2e:
72:30:fe:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 05:07:49 2024 by rpki-client on console-ams.rpki-client.org