Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Ous2E0CQpuzfkGRRZay5uH2kjjo.roa
File: Ous2E0CQpuzfkGRRZay5uH2kjjo.roa (raw, json)
Hash identifier: bHI985EtN7oKg+58LlPfy7iK7QjZEJhlvLY/ckAjLAk=
Subject key identifier: 3A:EB:36:13:40:90:A6:EC:DF:90:64:51:65:AC:B9:B8:7D:A4:8E:3A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01860308B6AABC0CD73531A722AEE481D826
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Ous2E0CQpuzfkGRRZay5uH2kjjo.roa
Signing time: Mon 30 Jan 2023 14:15:48 +0000
ROA not before: Mon 30 Jan 2023 14:15:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 62.76.232.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:08:b6:aa:bc:0c:d7:35:31:a7:22:ae:e4:81:d8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 30 14:15:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aeb36134090a6ecdf90645165acb9b87da48e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:cc:e4:b1:16:ed:c1:4d:05:42:15:f2:ec:
e0:04:4e:0d:e9:31:cf:1b:c2:af:e5:ea:e2:77:1a:
01:aa:5c:0a:0e:c9:2b:c7:24:e2:a3:17:87:60:2a:
03:3d:5d:c6:80:7e:06:16:93:f3:6e:5c:84:9a:e7:
5c:f3:d1:33:68:ad:cc:55:95:98:1a:84:7a:dc:93:
80:1d:c4:a7:d0:40:75:90:13:cc:36:d9:73:49:39:
0a:94:5c:57:67:fb:3f:09:50:cc:a7:69:db:37:a5:
32:69:2b:2d:39:20:32:f6:51:5b:98:dd:65:30:e3:
36:f6:dc:a6:a2:4a:e5:3b:9f:eb:c8:7e:ba:8c:6c:
ce:3a:00:33:92:a7:22:cb:63:4e:5a:3a:5f:7a:e1:
c6:ea:2f:a8:d9:28:3f:91:a8:63:a9:b6:df:a8:3a:
af:15:e4:d2:e1:28:02:28:98:dd:d0:11:28:58:f6:
bc:da:02:29:b6:83:c3:4a:32:c2:93:de:f8:bf:88:
45:46:18:10:a6:85:d5:53:e5:0b:a5:64:89:e7:16:
7b:5e:04:ab:28:cc:cc:17:6c:c2:21:2a:f2:62:3f:
c8:22:1c:94:79:d3:f6:7f:29:57:fa:4d:b3:2c:c2:
8a:be:90:f7:50:47:5c:03:8e:de:3d:cf:f3:88:62:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:EB:36:13:40:90:A6:EC:DF:90:64:51:65:AC:B9:B8:7D:A4:8E:3A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Ous2E0CQpuzfkGRRZay5uH2kjjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
62.76.235.0/24
193.124.93.0/24
194.87.36.0/23
195.58.54.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a8:0f:ed:25:f3:6e:84:c0:e6:fd:74:5f:ef:87:6a:a7:c9:
dc:f4:76:84:f9:36:bb:82:53:5e:b6:18:36:49:08:4d:8d:70:
f8:e3:1a:09:cb:c8:04:21:dd:bf:eb:46:1a:01:d0:d6:20:9c:
a4:40:b0:f5:a2:94:0e:c9:ed:2e:e6:91:12:ce:e2:dd:5c:be:
84:52:ea:43:47:00:07:de:94:a9:7d:3f:1a:e9:ed:ac:b1:7f:
c8:29:f4:25:cc:fe:40:de:a5:08:d3:07:f0:ca:4b:c0:5a:7b:
85:12:bb:41:3c:55:a7:40:23:bb:50:0b:31:08:21:f7:cd:3c:
e4:ce:1e:e8:13:df:09:02:97:97:a0:f1:ec:72:07:2a:54:5d:
59:e4:aa:85:d5:f7:21:fd:90:af:70:75:79:66:26:00:7e:c9:
df:21:11:65:89:ba:f7:e6:09:9b:68:de:09:7f:53:33:87:08:
9c:cf:ee:62:e9:a7:45:79:a7:d9:a6:4f:c9:93:1c:20:79:8c:
f5:f1:9b:05:6b:56:a3:af:82:4e:9c:27:f3:cd:5a:e7:8d:ce:
26:c2:72:a4:f6:1f:74:e3:39:e6:d2:c1:a5:61:81:69:1f:43:
f1:4b:df:a2:68:30:9a:0b:d2:dd:d1:4c:78:7b:93:6f:7c:d1:
4e:ff:0b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-ams.rpki-client.org