Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DIEUeAp-n9VANpGQYULTzoBSRJE.roa
File: DIEUeAp-n9VANpGQYULTzoBSRJE.roa (raw, json)
Hash identifier: Z+IHCW/A51wKEAMYZAiFMQeS/Ltve4L7hbAibdnK50s=
Subject key identifier: 0C:81:14:78:0A:7E:9F:D5:40:36:91:90:61:42:D3:CE:80:52:44:91
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189CB66C8CA0B4134C663EE18F3C203C32F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DIEUeAp-n9VANpGQYULTzoBSRJE.roa
Signing time: Sun 06 Aug 2023 15:10:58 +0000
ROA not before: Sun 06 Aug 2023 15:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49392
IP address blocks: 193.124.226.0/24 maxlen: 24
194.87.221.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
193.124.254.0/24 maxlen: 24
194.135.32.0/24 maxlen: 24
195.133.26.0/23 maxlen: 24
212.192.13.0/24 maxlen: 24
195.133.56.0/23 maxlen: 23
195.133.52.0/23 maxlen: 23
195.133.59.0/24 maxlen: 24
194.87.118.0/23 maxlen: 24
195.133.10.0/23 maxlen: 23
185.72.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 08:10:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cb:66:c8:ca:0b:41:34:c6:63:ee:18:f3:c2:03:c3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 6 15:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c8114780a7e9fd5403691906142d3ce80524491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:53:5c:38:73:2f:95:e6:78:bb:2f:72:bc:c4:
37:b0:fb:b8:39:81:c0:00:45:d2:cb:08:eb:a7:52:
8f:65:0a:88:d5:8d:06:ba:17:19:79:2f:35:72:c2:
4e:a2:1b:75:0b:f6:70:e1:b0:2e:b8:e3:96:87:ab:
b9:49:63:a0:41:c9:cf:4f:82:08:b9:1a:7c:52:fc:
42:23:6f:29:ab:65:32:3d:5b:82:c1:55:74:58:74:
05:56:7c:f9:54:78:70:d5:cb:aa:1d:23:13:89:35:
e7:2e:7f:a5:09:73:17:25:2a:e6:c7:79:b8:91:3c:
5a:a0:7b:54:5d:b0:ab:04:bd:58:67:cd:93:6c:35:
6d:9f:bc:62:17:67:3b:b7:15:e1:1d:c4:16:be:85:
a6:87:24:ed:0f:f9:50:dc:7d:ae:ab:34:d1:0a:27:
6f:2d:0d:9b:df:2c:47:b3:55:3e:34:1b:4a:dd:a5:
e7:9c:e3:cc:37:59:ec:51:43:c1:59:ff:4a:63:92:
04:db:a2:08:fe:94:4f:99:eb:87:82:39:6b:a3:22:
09:0b:54:50:1b:46:0b:88:db:fa:f1:65:a4:c2:f9:
96:f5:e1:de:59:0c:11:d0:6f:82:4c:32:d1:0e:d4:
ff:6d:ac:5a:4f:d6:3f:43:9c:80:9b:65:cf:ba:f7:
db:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:81:14:78:0A:7E:9F:D5:40:36:91:90:61:42:D3:CE:80:52:44:91
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DIEUeAp-n9VANpGQYULTzoBSRJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.10.0/24
193.124.36.0/24
193.124.226.0/24
193.124.254.0/24
194.87.118.0/23
194.87.221.0/24
194.135.32.0/24
195.133.10.0/23
195.133.26.0/23
195.133.52.0/23
195.133.56.0/23
195.133.59.0/24
212.192.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:74:3a:fb:da:10:e3:2b:07:d6:89:3b:c2:97:62:0e:19:99:
77:78:4f:c0:2b:3b:39:af:29:80:99:3f:18:cd:ef:7b:a2:ff:
8d:1a:31:7d:04:9d:61:ff:d1:c2:af:9b:f2:2c:2f:d9:53:3a:
12:3e:8b:63:26:da:74:22:19:3c:73:18:89:7f:df:8c:4d:1f:
33:34:eb:67:07:5d:ae:fc:d2:da:38:2c:01:19:46:c6:f0:ae:
06:7d:d6:94:40:0b:38:2d:e7:c5:7b:bd:22:f9:5c:c5:07:18:
eb:bd:15:ad:82:59:20:0b:73:fc:b0:50:7d:8d:8e:08:17:32:
6a:8a:58:9c:e8:4b:35:ed:92:de:70:aa:10:36:f5:8b:25:dc:
7a:51:26:2e:9d:36:1b:95:37:fe:d9:85:b1:79:8e:5f:9b:c1:
32:da:34:cd:19:3f:15:5e:50:bc:63:9a:39:83:db:72:b3:cc:
ce:c1:26:79:d4:8e:4a:91:04:79:08:3a:49:30:f0:06:62:28:
03:b0:ff:df:15:a7:33:93:94:8c:46:0f:ba:9f:a5:03:ff:f9:
8e:e3:7a:26:f9:fc:2e:2a:cd:69:38:87:46:9c:22:2c:f0:56:
7e:9d:20:9f:cb:2d:07:9d:9f:df:55:fe:39:8a:0d:7e:82:c0:
65:bb:90:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:09 2024 by rpki-client on console-fra.rpki-client.org