Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CEBbe1R_nqea3DJzUXRURak-ooc.roa
File: CEBbe1R_nqea3DJzUXRURak-ooc.roa (raw, json)
Hash identifier: b0RcBydyzYFsb11wZg3dzO+lW/tf3OSWYauhfHJMZT0=
Subject key identifier: 08:40:5B:7B:54:7F:9E:A7:9A:DC:32:73:51:74:54:45:A9:3E:A2:87
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0192363AFF7419B2485E26AE8CE79CC3A873
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CEBbe1R_nqea3DJzUXRURak-ooc.roa
Signing time: Sat 28 Sep 2024 01:24:49 +0000
ROA not before: Sat 28 Sep 2024 01:24:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
195.133.67.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.192.223.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 09:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:36:3a:ff:74:19:b2:48:5e:26:ae:8c:e7:9c:c3:a8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 28 01:24:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08405b7b547f9ea79adc327351745445a93ea287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:46:06:f3:52:ef:8e:80:df:3a:63:fc:c6:bf:
bc:7e:de:77:25:01:40:ea:d7:ed:ad:af:17:d6:67:
4b:36:b1:a5:6f:ad:ac:b8:73:86:18:24:bb:e1:e7:
96:44:b3:ee:cf:54:48:23:60:c3:cb:19:f7:e3:9f:
08:47:b9:69:fd:f6:e3:a7:c3:bc:26:70:9f:74:60:
39:9c:8e:99:30:c5:9e:1b:f9:f1:8a:1c:9b:d3:2f:
31:87:57:dd:fb:9a:9e:e9:87:d9:e6:22:c0:8f:fd:
b2:60:5c:43:6f:26:6b:dc:d7:8f:ea:3e:00:16:f8:
6a:d1:86:bd:bb:62:cd:70:1f:6b:42:40:52:d8:5a:
8c:b5:88:44:65:5d:16:1b:26:4e:9a:f2:01:15:7a:
a2:ce:a1:8f:81:17:58:ff:77:12:63:15:2c:b5:1a:
49:65:96:6e:ba:5e:b8:51:d9:f4:bc:49:7e:f1:bb:
5a:5d:b1:4a:a4:84:1f:02:fc:2d:8c:4e:07:03:81:
76:17:07:d1:5e:67:d1:ed:9b:7c:6a:41:d0:87:56:
96:e2:d7:8c:9c:0f:a4:63:64:43:e0:79:2e:96:b9:
03:9c:2b:45:bd:40:ba:8f:6a:bc:63:97:c4:d2:e6:
d4:c0:6c:9f:b4:93:da:79:51:21:6d:14:23:91:e7:
97:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:40:5B:7B:54:7F:9E:A7:9A:DC:32:73:51:74:54:45:A9:3E:A2:87
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/CEBbe1R_nqea3DJzUXRURak-ooc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
192.124.209.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.39.0-194.58.40.255
194.58.44.0/23
194.58.66.0/24
194.58.68.0/24
194.87.10.0/24
194.87.18.0/24
194.87.30.0/24
194.87.39.0/24
194.87.47.0/24
194.87.82.0/24
194.87.198.0/24
194.87.227.0/24
194.87.230.0/24
195.133.67.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.192.223.0/24
212.193.1.0-212.193.2.255
212.193.6.0/24
Signature Algorithm: sha256WithRSAEncryption
37:64:ea:fb:f5:41:46:2d:88:49:e5:ac:03:83:05:a1:54:43:
54:45:d5:d6:97:18:fe:83:da:be:ec:1a:e6:67:f4:82:89:70:
48:c7:59:30:79:26:76:6a:93:4c:d1:dd:6f:f0:f6:fe:60:da:
b8:25:a3:3f:f5:e0:4f:29:9f:3e:7b:ce:e0:74:bb:95:3c:59:
75:95:83:20:7d:f0:e6:b6:6b:04:19:ef:56:49:05:43:b6:6a:
8c:2e:1c:a4:87:09:b9:99:83:a3:0f:17:46:0f:41:c5:6a:ef:
6b:11:d5:1e:af:b2:c7:99:38:fe:ec:0f:0e:78:74:be:7e:44:
10:5c:85:e2:84:b4:96:25:dc:ec:d3:32:c8:97:d6:6c:7f:00:
0e:a4:07:14:f5:5d:2a:df:49:26:12:ab:4f:cd:84:96:fc:f8:
f7:9f:bc:4c:27:c2:87:30:a6:01:ab:7a:dd:7b:1f:c6:8f:32:
29:56:f1:ce:b3:ad:68:e3:18:e0:fa:f9:ac:cf:79:52:ff:38:
f9:a2:df:6b:c3:2d:4e:62:55:05:aa:15:1e:23:58:51:9a:13:
a7:88:27:f0:70:bb:e7:10:c2:fb:3d:d3:11:92:2f:c6:e2:7d:
7a:8d:11:76:d6:7b:db:e1:75:8d:c4:d0:36:d7:e6:41:47:d6:
8c:ff:ae:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 11:59:33 2024 by rpki-client on console-fra.rpki-client.org