Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PR74e7ec-uNfBeWJ3t4rvqBKIu0.roa
File: PR74e7ec-uNfBeWJ3t4rvqBKIu0.roa (raw, json)
Hash identifier: vnRlbDFr0AW475X+RPONHDfNyi0L+4LyEg7t17Z8I8w=
Subject key identifier: 3D:1E:F8:7B:B7:9C:FA:E3:5F:05:E5:89:DE:DE:2B:BE:A0:4A:22:ED
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0187B803114BE8C659AFBEC9733A9066B4E7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PR74e7ec-uNfBeWJ3t4rvqBKIu0.roa
Signing time: Tue 25 Apr 2023 10:43:41 +0000
ROA not before: Tue 25 Apr 2023 10:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.255.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:03:11:4b:e8:c6:59:af:be:c9:73:3a:90:66:b4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 25 10:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d1ef87bb79cfae35f05e589dede2bbea04a22ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:21:7c:2a:c4:bb:b0:d4:75:6d:bf:7a:74:38:
da:45:25:2c:e0:6c:19:89:ba:40:05:9b:bf:bb:58:
2f:23:5b:7c:e0:9a:74:95:90:4d:ed:c9:54:16:72:
ee:dd:7a:f3:b5:02:97:63:74:b5:4c:5c:a5:9e:30:
36:2d:05:10:72:db:92:be:44:6b:10:0d:4e:d7:19:
d4:cf:9d:b4:eb:e6:ac:bf:5a:75:39:31:f6:f5:92:
ab:dd:74:d9:e4:45:8b:c6:ec:1e:08:03:9c:16:18:
6c:6c:48:14:8b:9b:a2:55:8f:08:63:c8:b2:ec:da:
b9:32:f1:b1:44:27:79:9d:51:ac:21:ed:33:67:6e:
09:51:62:2c:bc:18:81:7a:f8:31:72:8e:7e:18:60:
d0:6a:d4:c4:0d:41:55:c6:2f:af:ad:9f:b7:d0:34:
45:4d:41:7d:0e:e9:3a:f5:bb:8b:89:82:ae:b5:af:
60:f4:cd:50:76:fc:bd:c3:67:b4:38:5d:88:15:e2:
d5:22:b1:9e:ee:dd:bb:7f:ac:3b:4f:7e:85:fc:a6:
45:c5:cf:b3:e3:ee:22:d6:cf:ce:e5:0e:f5:19:32:
e4:8c:ea:82:c3:32:73:1c:0f:83:d6:ce:54:27:26:
2f:05:db:2a:38:37:5b:7c:00:b0:92:55:36:c9:2c:
2e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:1E:F8:7B:B7:9C:FA:E3:5F:05:E5:89:DE:DE:2B:BE:A0:4A:22:ED
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PR74e7ec-uNfBeWJ3t4rvqBKIu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
193.124.200.0/24
194.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
48:cd:40:b4:41:a0:da:bc:d6:b2:e1:32:38:1d:3d:40:73:d6:
94:bb:d9:a8:3e:1c:07:d3:09:db:62:90:e1:4e:11:00:ba:7c:
69:30:48:5d:c0:90:22:c3:14:8d:8e:c6:58:29:ed:dd:56:12:
f2:b7:16:32:f8:37:02:9b:0b:62:d4:c7:4a:31:35:ae:40:69:
01:88:51:f8:36:42:61:0e:38:d8:ad:86:4b:4b:4a:c6:e3:4b:
00:83:11:73:dd:4e:a8:b7:ea:5c:26:78:4b:18:83:7a:92:69:
6b:e9:b6:c0:d2:72:ba:f8:74:18:0e:6f:fb:3c:dd:02:3f:90:
87:97:da:20:e7:31:4e:c2:d1:ac:07:fe:fc:78:0c:46:80:27:
dd:ca:32:bb:5b:45:7c:16:03:14:a2:ee:c8:91:56:45:3f:5b:
e1:d3:62:e3:b2:31:d3:00:e2:8e:8d:df:f3:ad:9f:f0:4c:6d:
91:20:41:c0:71:71:63:5e:82:de:bb:56:4a:dd:d9:89:38:1b:
54:fc:71:27:73:56:1c:eb:62:88:8b:84:29:7f:8d:40:ac:26:
40:f9:42:a8:25:5c:db:31:f9:c1:87:53:21:99:68:11:36:49:
56:ef:92:86:00:cd:dc:41:ca:71:08:89:56:86:60:b0:56:59:
a9:cd:c7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-ams.rpki-client.org