Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J1eZJxVjLVi5KXdcmKYz9JnzbUs.roa
File: J1eZJxVjLVi5KXdcmKYz9JnzbUs.roa (raw, json)
Hash identifier: cj/25UH7BEAdoSG0dMQcuKNKKjSLvCdnd9usF4yC+9E=
Subject key identifier: 27:57:99:27:15:63:2D:58:B9:29:77:5C:98:A6:33:F4:99:F3:6D:4B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185EE1AF40C118805DD834FE4DF810E32D0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J1eZJxVjLVi5KXdcmKYz9JnzbUs.roa
Signing time: Thu 26 Jan 2023 12:43:41 +0000
ROA not before: Thu 26 Jan 2023 12:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.170.0/23 maxlen: 23
194.87.168.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Jan 2023 05:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:1a:f4:0c:11:88:05:dd:83:4f:e4:df:81:0e:32:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 26 12:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2757992715632d58b929775c98a633f499f36d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bb:6f:02:03:61:87:a9:97:bf:55:33:de:34:
65:b1:fc:0d:7c:a4:40:09:f1:05:2c:52:16:fe:e9:
a9:e8:3f:5a:00:9a:3c:81:a9:e1:91:8e:1c:e6:d4:
e6:6e:ff:24:c4:d6:ae:9a:4c:90:95:c2:18:9f:c1:
c9:b4:f4:97:fa:d6:e7:e6:df:47:fc:82:8f:b4:1f:
03:37:5c:d1:cb:ac:bb:39:62:6c:29:5c:42:7a:27:
24:41:5b:04:d9:53:29:05:c4:be:c0:d8:bd:e1:94:
28:fa:ec:17:27:c2:b6:61:4e:ed:d7:db:59:44:3a:
8b:11:e8:a3:f7:f1:b1:03:a6:67:72:82:ff:a3:00:
31:11:e5:3e:e3:41:a3:44:b0:fc:e1:42:6f:95:c0:
76:8c:85:b3:7a:67:db:47:b9:29:7e:a7:62:92:4d:
7f:9f:a9:66:14:88:fb:9b:d6:2d:29:3c:18:f4:0d:
59:b7:83:53:1e:e9:8e:e9:49:82:70:ab:c8:51:fc:
97:e0:60:b4:74:09:d3:1d:2b:30:f2:23:10:1b:79:
a4:74:66:25:8d:ce:1c:11:ed:b3:a1:05:fb:23:4c:
a7:6c:62:e5:d8:b2:c3:0d:ed:c5:c0:40:9c:b9:ce:
86:c5:5c:78:9c:d9:da:f3:a2:af:88:82:a5:5b:c6:
6e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:57:99:27:15:63:2D:58:B9:29:77:5C:98:A6:33:F4:99:F3:6D:4B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J1eZJxVjLVi5KXdcmKYz9JnzbUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.3.0/24
193.124.6.0/24
193.124.9.0/24
193.124.44.0/24
193.124.201.0/24
194.87.1.0/24
194.87.42.0/24
194.87.73.0/24
194.87.76.0/24
194.87.130.0/23
194.87.166.0/24
194.87.168.0/24
194.87.170.0-194.87.172.255
194.87.176.0/24
194.87.178.0/23
194.87.182.0/24
194.87.187.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.56.0/24
195.133.0.0/24
195.133.30.0/24
195.133.35.0/24
195.133.195.0/24
212.192.10.0/24
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
62:24:55:63:b0:65:e9:19:5b:e8:70:25:6a:d8:80:00:88:d6:
db:6c:41:48:74:4d:87:5e:2a:d4:0c:8f:23:bb:48:6d:f5:36:
a5:1c:fb:3b:c5:ab:fa:15:07:c4:95:15:1e:ac:43:21:fc:bf:
c0:0c:0e:31:25:7c:b5:00:52:4b:66:3f:8f:18:07:09:92:4e:
cb:89:23:c6:3c:0e:b9:18:0e:ab:93:5e:68:72:19:94:95:b9:
f0:03:b7:e5:3c:07:c7:11:eb:c7:c4:5d:19:f6:50:08:b4:7f:
08:8c:f5:08:4f:65:99:13:49:c5:95:e3:d6:90:41:2b:af:10:
0b:45:88:0c:9e:9b:63:18:44:08:aa:97:bf:33:c4:39:21:ca:
bd:e5:18:9f:77:f5:8d:72:9c:11:c3:da:bd:aa:c5:35:6c:7b:
73:1f:1b:16:3b:57:2f:ab:1e:d5:82:9c:3f:5e:aa:08:6c:cc:
77:3c:91:84:8b:81:2a:04:8a:8d:9e:e4:7b:28:ae:0f:c4:80:
01:7a:64:10:a4:4c:46:04:8f:04:e6:40:cd:14:2d:e0:56:74:
31:ef:a3:a7:62:f0:ee:45:e9:b3:93:07:78:01:11:da:6c:5b:
7e:23:0e:10:69:24:e8:c7:2a:1e:67:fb:b7:ef:3c:19:f8:7a:
17:d7:74:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:12 2024 by rpki-client on console-fra.rpki-client.org