Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FeEr0Nss0rxPCv4vBT-ps0yCSWY.roa
File: FeEr0Nss0rxPCv4vBT-ps0yCSWY.roa (raw, json)
Hash identifier: bqUQYci8T+OPrXon30VUU7PtUk4Mesl8bJWok1nkeLQ=
Subject key identifier: 15:E1:2B:D0:DB:2C:D2:BC:4F:0A:FE:2F:05:3F:A9:B3:4C:82:49:66
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189B4CD3DF331938B824986101D74D44C3E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FeEr0Nss0rxPCv4vBT-ps0yCSWY.roa
Signing time: Wed 02 Aug 2023 05:51:36 +0000
ROA not before: Wed 02 Aug 2023 05:51:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
195.133.79.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
194.87.121.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.52.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b4:cd:3d:f3:31:93:8b:82:49:86:10:1d:74:d4:4c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 2 05:51:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15e12bd0db2cd2bc4f0afe2f053fa9b34c824966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b9:cb:89:1b:0a:62:f9:ab:d9:5e:1a:cf:3f:
9f:de:48:30:df:11:6e:ee:0e:b1:d2:54:3c:e8:e8:
39:bd:80:2d:74:e6:d5:de:39:67:0d:c2:df:ef:ec:
8e:83:39:7a:ac:79:4d:9b:52:b0:dd:e9:e7:a0:1b:
a8:f3:27:f4:dd:73:4a:f7:54:67:eb:52:bb:44:00:
3c:74:74:04:5b:6d:91:6c:59:be:2e:a8:05:ea:85:
9a:69:49:18:a6:99:a4:1d:b3:17:bd:41:ac:00:a0:
f8:a9:a3:f6:f3:7d:b1:59:5d:d5:d8:46:38:d5:e5:
0e:10:8c:d9:e9:91:a7:fd:94:a0:59:69:6b:a7:d4:
3c:5e:0d:43:c2:8d:9b:ba:8a:15:41:93:3b:2c:0a:
60:4a:79:b7:3d:6c:8a:22:f9:ab:c0:b3:dd:36:59:
9a:10:c8:65:16:c4:04:9d:7a:7c:c8:72:c4:4f:39:
ba:0c:f7:62:0b:00:d8:a3:cb:65:c9:56:88:69:2c:
b7:2f:da:c1:2d:97:d0:e3:54:1a:9f:d4:ef:d4:90:
05:37:85:cf:71:82:69:f2:2a:b5:50:96:e8:72:05:
9c:95:c6:d5:d6:6d:0f:77:e3:15:a1:bf:bb:b5:ac:
a0:9e:04:dc:ad:a8:ff:0f:50:41:08:16:e2:03:3f:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E1:2B:D0:DB:2C:D2:BC:4F:0A:FE:2F:05:3F:A9:B3:4C:82:49:66
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FeEr0Nss0rxPCv4vBT-ps0yCSWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
193.124.5.0/24
193.124.91.0/24
193.124.95.0/24
194.87.51.0-194.87.52.255
194.87.54.0/24
194.87.114.0/24
194.87.121.0/24
194.87.178.0/24
195.58.35.0/24
195.133.14.0/24
195.133.79.0/24
195.133.81.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
10:74:c3:51:1a:d2:3d:5c:fc:56:19:67:8a:91:fa:65:c2:a0:
9b:41:aa:78:f4:38:84:fb:fb:66:60:57:7d:20:ac:8a:c3:24:
db:27:d9:fb:d9:58:10:b9:ec:7b:3d:89:02:ac:74:67:ff:bf:
f3:c8:24:75:29:b7:e9:61:dc:fe:62:36:fd:ea:3a:f4:04:fd:
93:6c:92:44:13:57:08:a3:42:2a:cb:92:ee:a2:5d:68:46:51:
92:f0:26:1c:fe:35:32:6c:32:52:f6:c6:31:fd:a6:44:ab:cb:
d0:a7:81:95:a5:bb:b5:5d:ef:c2:96:b4:4f:99:b3:8e:cb:e6:
d2:46:32:c4:af:fd:1e:30:72:6b:9a:f4:24:0e:b8:44:ca:cb:
b3:1e:89:2a:e6:09:36:02:04:60:2e:04:2e:86:8a:65:3d:2b:
c5:b7:2c:f0:dc:bf:23:ef:66:87:11:30:01:7a:3b:36:3c:8f:
43:ca:92:b3:34:00:8b:82:b0:1e:a7:1f:90:08:11:ec:5e:a2:
83:88:f6:0f:8d:52:4d:fb:15:c8:39:41:f2:6c:8e:50:b5:31:
3c:d9:c2:ef:d1:26:83:77:29:5c:de:90:dc:17:aa:08:35:3e:
f1:2d:7e:8b:83:c2:64:26:2e:00:7f:1d:98:94:10:9a:88:bf:
54:bc:f5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 2 06:56:02 2023 by rpki-client on console-fra.rpki-client.org