Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GcViZwXsYGG41KacXRd2F-mf3Ns.roa
File: GcViZwXsYGG41KacXRd2F-mf3Ns.roa (raw, json)
Hash identifier: 8O6MJScWRffcXgxvZ9GwUTb7DYhcflHPNCDjccKTsgU=
Subject key identifier: 19:C5:62:67:05:EC:60:61:B8:D4:A6:9C:5D:17:76:17:E9:9F:DC:DB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A0D0BB362BD9D855E1312CDE9D960FEC4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GcViZwXsYGG41KacXRd2F-mf3Ns.roa
Signing time: Sat 19 Aug 2023 09:06:25 +0000
ROA not before: Sat 19 Aug 2023 09:06:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51722
IP address blocks: 194.87.21.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
195.58.55.0/24 maxlen: 24
212.192.251.0/24 maxlen: 24
194.87.181.0/24 maxlen: 24
212.192.250.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
212.192.248.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0d:0b:b3:62:bd:9d:85:5e:13:12:cd:e9:d9:60:fe:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 19 09:06:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19c5626705ec6061b8d4a69c5d177617e99fdcdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ae:60:91:8a:4b:e1:f9:fe:db:59:c6:d9:66:
54:a0:46:f1:cf:b6:bf:0a:8c:47:02:3a:81:2e:0c:
b1:da:ac:4f:fe:bf:e8:33:d2:8d:37:2b:db:2b:a2:
7d:4b:97:e0:fa:91:dd:06:22:2e:cb:4e:bf:2d:ff:
9c:b4:04:6f:d3:90:24:ca:59:ee:1f:4d:70:bf:42:
92:e3:9d:96:36:5d:fd:85:dc:56:c4:a3:4c:bb:68:
be:a3:11:1b:23:a7:b1:2d:72:db:82:a1:43:f5:7f:
50:a6:e4:e2:ac:dc:91:11:98:0c:ec:e5:b0:d8:43:
6c:31:f3:00:0e:38:f8:8a:9d:83:72:06:99:87:6f:
af:f5:50:5b:46:9e:71:07:cd:56:ce:cd:2b:83:13:
fc:ff:d0:8c:95:d3:47:0b:d6:48:c1:06:af:41:5b:
43:8c:75:68:75:97:3c:b7:c2:a3:23:c9:4e:8a:94:
2c:b1:5b:03:f2:65:dd:ad:bc:51:9b:e1:b8:ac:2b:
78:57:3b:b9:a9:58:08:78:f3:82:9c:a9:52:f4:0c:
62:23:1e:8d:7f:36:12:6c:d8:25:ef:58:dd:96:a3:
b2:8d:f6:a9:b7:6c:6a:9e:26:39:c4:b6:91:a6:d2:
2d:98:c2:85:8d:cf:c6:be:79:ac:e2:28:81:c3:f5:
f1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C5:62:67:05:EC:60:61:B8:D4:A6:9C:5D:17:76:17:E9:9F:DC:DB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GcViZwXsYGG41KacXRd2F-mf3Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.95.0/24
193.124.201.0/24
194.87.21.0/24
194.87.33.0/24
194.87.166.0/24
194.87.181.0/24
194.87.187.0/24
194.135.18.0/24
195.58.55.0/24
195.58.59.0/24
212.192.248.0/24
212.192.250.0/23
Signature Algorithm: sha256WithRSAEncryption
93:4c:e5:c2:06:82:dd:17:14:fc:c5:ed:89:e5:f9:9e:e5:47:
ae:2c:bd:ca:fc:8a:c2:d4:a2:8e:1e:46:27:8a:4f:79:50:5b:
6e:c0:a6:4f:d2:52:4e:69:ca:6b:db:57:6d:2b:c7:6d:50:6f:
59:81:66:5d:20:66:c4:d7:15:3b:1f:9a:0e:7b:08:33:e7:28:
a2:76:13:c1:e5:6d:29:ba:ac:01:a9:48:55:7c:1b:54:1b:c4:
9e:24:e1:b7:20:b2:35:32:78:cf:4c:86:4a:b0:f7:89:26:28:
45:19:a0:d8:75:04:d5:20:90:ac:f9:ed:50:c7:57:68:d4:f6:
2d:f3:77:a7:c2:36:9f:5d:c1:a4:99:d3:30:f4:ea:66:56:80:
61:56:e9:95:93:87:52:06:b4:e1:02:7c:3b:fd:0d:23:bc:e1:
50:e0:ad:4a:be:62:cf:63:58:78:1f:36:c8:d6:a0:06:b7:c4:
77:16:41:da:8b:3c:4a:53:f6:26:84:f1:1f:0d:5f:8a:f0:31:
77:a7:35:4c:e9:1f:63:0c:5a:63:27:a8:02:a7:9e:91:1c:34:
8d:07:be:d4:60:d1:b9:bf:c1:89:33:30:f4:ec:75:8f:7c:ff:
bd:ec:ac:f3:75:cc:7c:b9:ec:f1:f5:8a:2b:2f:8c:06:33:d7:
e0:9d:97:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 19 17:33:33 2023 by rpki-client on console-ams.rpki-client.org