Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/L-mCBIrN9zFxjooumyz-fZf4yMc.roa
File: L-mCBIrN9zFxjooumyz-fZf4yMc.roa (raw, json)
Hash identifier: pMy9tJYfmutlKSlF1rFIbqG8GuDchhrz//6JnwqtHlk=
Subject key identifier: 2F:E9:82:04:8A:CD:F7:31:71:8E:8A:2E:9B:2C:FE:7D:97:F8:C8:C7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0187FE94AEE5A58990A0CA8224B558645D2E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/L-mCBIrN9zFxjooumyz-fZf4yMc.roa
Signing time: Tue 09 May 2023 03:36:09 +0000
ROA not before: Tue 09 May 2023 03:36:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.27.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.165.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fe:94:ae:e5:a5:89:90:a0:ca:82:24:b5:58:64:5d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 9 03:36:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fe982048acdf731718e8a2e9b2cfe7d97f8c8c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:19:fe:52:83:d0:88:04:6b:a2:3e:a1:b1:eb:
cf:85:4a:4e:8f:9b:1b:3c:98:f8:2d:f5:8f:e8:82:
76:4a:bf:c0:77:f6:03:7a:07:42:a2:20:64:c3:57:
86:90:78:dc:c2:ae:4e:61:02:b5:c7:81:dd:ed:40:
91:88:e0:c7:20:39:d6:40:2e:1e:51:38:57:5f:a5:
e2:a1:e2:75:ce:c1:66:bb:16:c9:ed:4c:3c:57:d2:
0a:ec:cc:0b:7f:78:9f:99:c7:f8:67:51:d8:13:29:
ca:82:7d:d7:b1:e1:34:6d:ed:4d:06:ac:3d:ef:89:
8e:cc:db:5f:c5:f0:df:d3:4c:8f:24:63:24:e3:3d:
60:47:f2:cf:06:8e:c1:5c:55:a3:59:02:fa:f8:3d:
86:ac:3e:35:d6:a3:10:ff:23:74:1e:62:ab:5a:19:
5f:bf:54:da:05:d2:72:9a:55:57:9a:64:0a:b8:38:
ef:17:9c:35:75:1e:cf:5e:a4:36:94:7a:9c:40:80:
43:18:d7:7d:89:3d:39:0d:e5:c5:56:fe:43:4f:b9:
cf:ce:bc:ac:e6:4a:8c:50:82:a0:a1:f0:8e:08:d7:
a0:e0:a2:17:f7:f9:88:45:45:a3:91:78:41:97:45:
86:42:55:a6:55:3d:fc:7e:cc:36:81:b0:02:65:31:
2a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E9:82:04:8A:CD:F7:31:71:8E:8A:2E:9B:2C:FE:7D:97:F8:C8:C7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/L-mCBIrN9zFxjooumyz-fZf4yMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
194.58.45.0-194.58.47.255
194.87.27.0/24
194.87.118.0/24
194.87.136.0/24
194.87.165.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.56.0/21
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:e9:6e:32:31:18:c3:07:70:8e:d6:ce:08:53:0d:a7:75:64:
11:df:51:a9:bc:a9:7f:e0:08:af:65:bd:c9:9d:9b:a0:7c:24:
de:9d:72:86:ce:f6:78:69:24:1b:8a:2c:f0:4b:c0:c9:7f:f2:
2c:85:57:0a:a0:be:04:bb:59:39:2b:a3:f8:ac:43:6b:ec:51:
31:bf:17:37:35:94:64:84:a9:a1:e9:07:4a:45:6d:64:db:42:
56:46:88:e0:03:57:3b:c7:79:18:23:2a:46:3d:5c:d7:99:00:
e8:4b:94:c0:64:79:ad:1c:6f:9a:81:2c:2e:bb:44:3c:54:59:
9c:8b:da:8b:1f:1c:9c:c1:0a:60:2b:b1:e8:5b:60:12:d1:57:
39:22:f6:aa:70:db:70:e9:1d:5b:d2:67:e6:6e:d5:68:32:a5:
74:e1:b7:46:24:b9:05:31:20:df:15:ef:7d:53:1e:f4:32:b2:
a5:81:5c:bc:eb:3f:92:0c:71:05:59:ba:1c:28:8f:10:33:e2:
ea:30:1e:bc:17:2b:ad:23:96:e4:1d:5a:69:aa:dd:37:fc:96:
86:c1:27:72:8e:83:9a:25:69:f7:1a:cf:df:4b:6c:0f:51:46:
8f:69:48:21:23:af:76:7c:3f:fb:a2:0a:cb:4b:0a:e9:38:da:
b3:57:c8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-ams.rpki-client.org