Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq9kdWax-h-nA5vFQrsItin9x5M.roa
File: Jq9kdWax-h-nA5vFQrsItin9x5M.roa (raw, json)
Hash identifier: 6n3AXe3c5cNImB2TaA08Isg3d9OSiUt2pqv2yOt5x+g=
Subject key identifier: 26:AF:64:75:66:B1:FA:1F:A7:03:9B:C5:42:BB:08:B6:29:FD:C7:93
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186EDEB511486F66B1E005046559A5D5B26
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq9kdWax-h-nA5vFQrsItin9x5M.roa
Signing time: Fri 17 Mar 2023 04:54:27 +0000
ROA not before: Fri 17 Mar 2023 04:54:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ed:eb:51:14:86:f6:6b:1e:00:50:46:55:9a:5d:5b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 17 04:54:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26af647566b1fa1fa7039bc542bb08b629fdc793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a7:4e:42:f2:f6:9f:d4:df:a3:7c:50:56:32:
3e:bf:47:a1:32:98:9f:dc:2e:a3:00:dd:99:57:8d:
87:a1:09:37:e5:87:12:3f:55:ac:e9:91:00:26:13:
0b:00:98:3a:4e:14:77:d9:d6:34:78:eb:50:0a:8c:
07:97:f3:04:3a:b4:8b:02:c3:6c:f8:8c:f4:0f:60:
a4:52:77:8b:14:70:09:b1:a8:93:b8:eb:bd:bf:c3:
9c:73:ce:54:87:64:35:b6:18:20:11:73:0d:9c:45:
bf:ce:21:5e:77:16:8b:d3:e4:f3:f4:1e:e9:c4:c2:
04:1a:33:b2:62:e9:7c:f5:b5:fb:4a:29:b8:36:76:
b2:ba:f8:6e:59:2c:ba:65:65:db:a6:59:16:2e:fc:
23:98:e8:09:cd:65:11:8c:2d:c5:f8:2c:e3:63:9d:
5f:59:d4:93:a4:a0:93:c4:69:13:4d:4b:be:9e:98:
26:17:3b:07:12:d3:35:30:17:eb:61:17:82:0c:ab:
d4:d1:12:2d:68:1a:ef:76:04:1d:de:e2:c4:ae:ce:
86:73:07:a1:de:af:9d:3b:ee:59:01:d4:de:d4:32:
60:a5:08:46:36:4f:a9:34:72:ba:32:b4:52:89:74:
c3:ce:45:f2:fb:62:50:79:4a:c5:69:74:88:96:a5:
c6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AF:64:75:66:B1:FA:1F:A7:03:9B:C5:42:BB:08:B6:29:FD:C7:93
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq9kdWax-h-nA5vFQrsItin9x5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.182.0/24
193.124.133.0/24
193.124.203.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.87.27.0/24
194.87.82.0/24
194.87.114.0/23
194.87.118.0/24
194.87.136.0/24
194.87.165.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f1:1e:5f:ac:e4:8d:c2:f8:9a:d1:d1:fe:8f:ee:bb:ca:7c:
56:05:8b:1b:b0:42:9f:6b:4b:de:26:df:94:d1:78:bc:f4:4a:
f5:f4:89:4d:61:c9:0f:23:f7:07:67:fb:da:96:ca:d5:cd:4a:
7c:95:e6:27:b0:c5:34:75:2f:01:bf:db:ea:86:5d:e8:d4:4b:
49:e5:e3:53:63:24:75:1d:a3:02:29:a6:55:95:63:b1:bd:19:
eb:58:1c:b5:b1:33:67:b1:d3:43:14:c4:6e:88:9c:12:48:cb:
6c:f7:40:1d:71:39:42:3a:04:fb:0d:df:16:78:97:e0:b3:ea:
f1:2a:21:49:49:c9:d1:a5:ad:dc:dc:16:e5:b4:a8:40:98:39:
ab:79:de:3c:9f:3b:02:5c:58:a0:9f:64:55:27:f7:b4:f8:7f:
29:1c:42:b2:68:b9:ac:7b:85:21:25:9e:84:b1:5e:ef:4e:39:
b7:bc:8b:3d:c9:c8:a6:7a:df:eb:f2:53:a3:73:9b:40:24:25:
aa:17:20:9d:4c:d0:7c:80:28:d1:98:14:c8:30:23:fa:a3:09:
d5:92:78:f3:59:dd:88:f3:b1:79:bf:66:42:da:bf:25:5f:11:
cf:97:c9:68:42:37:db:97:42:ad:2f:35:eb:af:48:12:a3:08:
a1:dd:d0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:13 2024 by rpki-client on console-fra.rpki-client.org