Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DyEuM3oO31SkNxfIBsHqU_VlNb8.roa
File: DyEuM3oO31SkNxfIBsHqU_VlNb8.roa (raw, json)
Hash identifier: Pzwv/8Nane17pclhv+Og8dFHGZ+xVGAUc2Xz/kpXBXU=
Subject key identifier: 0F:21:2E:33:7A:0E:DF:54:A4:37:17:C8:06:C1:EA:53:F5:65:35:BF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018953CCBD01920530F0D67FA9A7495157A3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DyEuM3oO31SkNxfIBsHqU_VlNb8.roa
Signing time: Fri 14 Jul 2023 09:47:53 +0000
ROA not before: Fri 14 Jul 2023 09:47:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
195.133.79.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.105.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.129.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.87.81.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:cc:bd:01:92:05:30:f0:d6:7f:a9:a7:49:51:57:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 09:47:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f212e337a0edf54a43717c806c1ea53f56535bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:60:ba:1d:d2:d6:3e:79:3b:48:dc:e6:bf:01:
66:18:8e:b3:69:72:5e:c8:c0:fc:1e:24:82:50:20:
0f:8c:ee:88:53:8b:7a:f6:74:b5:e0:54:ea:b4:bf:
4d:0f:c0:04:06:b2:a3:dc:9f:94:b5:25:ec:0a:55:
f6:d2:a1:4b:16:21:56:8d:64:7f:0a:fc:f3:72:5a:
67:19:80:27:93:d3:51:0d:d8:d3:38:74:99:ba:b6:
77:4a:8b:6d:16:da:0f:9f:48:77:69:0a:13:f7:3e:
66:47:b5:ea:40:9b:c2:40:fc:fe:1a:b8:19:42:55:
f2:91:86:e9:dd:54:e1:46:1d:e2:a8:b2:4c:fa:19:
dd:4a:49:de:3c:21:fc:ab:11:fb:0b:2c:b7:cf:f8:
7c:d9:a0:9f:6a:50:7d:6f:0b:e9:e9:6b:0e:21:33:
e0:b8:8f:19:e5:39:14:eb:f9:ca:44:dc:03:ff:e5:
63:67:0d:1a:38:f1:15:c5:c7:ee:5b:40:a3:74:f1:
64:51:c7:e1:c6:0c:40:b9:e4:84:0e:a1:df:ee:09:
c7:e0:48:fe:bf:ba:00:1e:a7:be:64:f9:2f:26:a5:
3d:3f:8e:65:a7:a3:6f:8d:ae:ab:00:c4:15:0f:95:
1b:a6:23:99:90:f5:f8:b7:e9:b3:b4:53:e4:d2:3d:
cb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:2E:33:7A:0E:DF:54:A4:37:17:C8:06:C1:EA:53:F5:65:35:BF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DyEuM3oO31SkNxfIBsHqU_VlNb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
193.124.5.0/24
194.87.51.0-194.87.52.255
194.87.54.0/24
194.87.81.0/24
194.87.105.0/24
194.87.114.0/24
194.87.121.0/24
194.87.129.0/24
194.87.178.0/24
195.58.35.0/24
195.133.14.0/24
195.133.79.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f1:7a:c1:a2:42:eb:87:a3:b4:e1:8a:23:18:f6:e3:88:26:
af:c4:d3:93:18:85:76:f6:b2:f6:f6:7d:6b:46:23:46:c1:31:
11:8e:ca:62:87:c9:79:60:b0:4c:59:21:c5:c7:be:a4:fa:6a:
84:fb:12:c5:d2:c2:2e:4b:ca:5d:a8:13:82:8d:0f:05:b4:d6:
94:d5:4c:db:1e:83:7a:a2:80:47:98:2b:63:12:85:dc:61:57:
c0:79:f4:aa:38:86:89:34:64:6a:b7:b6:82:43:bc:01:5e:8b:
27:15:54:94:63:38:bd:dd:62:b4:97:5e:a3:77:29:af:c2:4c:
a4:f8:90:94:7f:ff:05:c5:36:03:38:10:f5:b9:ac:7d:5b:dc:
9c:a3:69:f2:2b:68:05:5a:05:98:74:a9:b3:e5:6c:f1:fb:6b:
85:c2:ef:fa:58:9b:e5:f8:8d:c6:f7:96:f7:be:58:45:10:4f:
2b:df:72:6a:45:3e:e3:a9:e4:b0:61:6b:e6:6a:19:0e:46:a6:
a2:52:ef:16:ee:55:a2:50:9a:ca:8f:e6:e4:a5:af:d6:42:72:
7a:73:91:6d:be:58:9b:92:ba:83:6c:61:90:57:66:d7:8b:40:
f2:90:59:0a:9f:c1:da:16:20:c7:f6:75:fa:af:a7:4e:5e:0f:
3a:30:64:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:58 2023 by rpki-client on console-fra.rpki-client.org