Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/P2vcEz0vkuNW97lMvu63WmIzvwk.roa
File: P2vcEz0vkuNW97lMvu63WmIzvwk.roa (raw, json)
Hash identifier: wi7mN/jm/N3MTPRMSQFGiyFQcJm3oTpYd6WjheMzAu0=
Subject key identifier: 3F:6B:DC:13:3D:2F:92:E3:56:F7:B9:4C:BE:EE:B7:5A:62:33:BF:09
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A5A77A4DF021C4BFE5C3DF49E998DC7CF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/P2vcEz0vkuNW97lMvu63WmIzvwk.roa
Signing time: Sun 03 Sep 2023 09:55:04 +0000
ROA not before: Sun 03 Sep 2023 09:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211256
IP address blocks: 194.87.25.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.54.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.87.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:77:a4:df:02:1c:4b:fe:5c:3d:f4:9e:99:8d:c7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 3 09:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f6bdc133d2f92e356f7b94cbeeeb75a6233bf09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:81:1b:26:4c:7a:e6:37:a0:8e:ae:ba:3a:7c:
aa:8e:15:ea:e8:e4:bc:8d:fd:e9:7b:7e:f3:34:44:
12:10:0f:13:0e:8b:4f:8b:cf:3c:6e:9e:a1:66:b9:
3e:02:29:3e:85:9e:d2:ff:19:3a:84:29:05:dc:a7:
c0:a4:20:3c:45:ef:b3:d3:c9:8f:32:20:d8:8e:c5:
05:20:b2:67:e5:fb:9c:eb:9a:59:f2:68:37:7c:90:
c9:5e:71:0e:98:7c:46:81:12:ed:64:1a:11:5b:37:
01:bc:bf:50:ff:07:79:d3:b1:c3:a2:74:8d:e5:d3:
5e:39:48:5a:3a:d9:31:e0:e1:1e:78:61:c8:3c:de:
58:36:3c:ab:f9:9b:b3:c9:28:be:09:96:87:38:52:
16:75:14:d2:5f:cd:2b:fc:87:bd:37:11:9f:73:a5:
8e:64:5b:5b:f7:fa:41:4e:26:5b:3a:2d:e1:7b:42:
12:a7:d1:94:14:61:6c:a8:6f:1d:c5:36:dc:65:b1:
96:ae:65:53:73:62:4c:19:01:90:17:66:f6:d7:b8:
0c:02:15:c1:7c:55:2a:ec:99:86:aa:ab:9b:51:26:
dd:ac:30:40:b9:b9:e6:08:0f:94:ce:b1:c7:ee:de:
fd:e7:93:ec:57:4c:d3:fc:5b:b9:3b:1d:d4:6e:89:
5a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6B:DC:13:3D:2F:92:E3:56:F7:B9:4C:BE:EE:B7:5A:62:33:BF:09
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/P2vcEz0vkuNW97lMvu63WmIzvwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.44.0/24
194.87.25.0/24
194.87.51.0/24
194.87.54.0/23
194.87.163.0/24
195.58.35.0/24
195.58.38.0/24
195.133.14.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e2:1b:90:63:e5:5e:e6:66:25:9f:13:03:2f:be:ba:26:dd:
a8:c4:1f:fa:16:ec:71:d7:5b:4f:9d:89:be:8b:0d:74:53:bf:
c4:d9:1a:e0:e8:0b:48:35:69:f8:ac:30:59:a4:b5:c7:41:fb:
14:03:1f:d2:49:a8:a4:64:9c:87:9f:ce:4a:7d:6c:0e:8c:85:
79:af:9a:d6:5e:28:71:40:f8:7e:80:8f:d8:0c:ba:89:ab:8f:
36:d2:d3:f1:50:fb:61:bb:cc:4b:c1:bb:24:84:31:f3:b4:f3:
9b:19:29:da:6e:94:c9:22:eb:c2:39:36:6e:2f:7c:f0:ed:2f:
54:e1:cf:31:ac:3d:fb:bd:e1:70:3d:a8:d6:de:23:e2:6c:f4:
07:62:b7:02:c3:d4:26:2f:a0:52:a6:6a:0b:43:29:94:f1:ee:
7f:0c:12:5a:d6:05:d8:e3:47:3a:90:6f:9d:12:5f:18:7f:60:
70:a1:c5:d0:fb:6e:38:c6:a1:ee:a5:cd:e7:7c:c2:e9:78:4c:
df:f8:6f:1a:31:f9:c1:c1:65:01:99:01:e4:f1:0a:07:49:82:
9d:d8:6e:c6:a5:3d:c7:cc:3a:04:0d:dd:07:d0:91:72:11:b4:
8b:89:6f:c5:8f:08:3d:b7:24:f0:18:2e:9d:16:95:88:b0:a5:
eb:b8:94:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 12:48:08 2023 by rpki-client on console-ams.rpki-client.org