Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PxBEGawK78sjcsdo_qFV0IwJ7gI.roa
File: PxBEGawK78sjcsdo_qFV0IwJ7gI.roa (raw, json)
Hash identifier: d8LXAdiW46E2f/BJfZtPkiIT+0o6fhq9eNaZrAefts0=
Subject key identifier: 3F:10:44:19:AC:0A:EF:CB:23:72:C7:68:FE:A1:55:D0:8C:09:EE:02
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189B618B61AE44EC7932113E0E05BC66093
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PxBEGawK78sjcsdo_qFV0IwJ7gI.roa
Signing time: Wed 02 Aug 2023 11:53:40 +0000
ROA not before: Wed 02 Aug 2023 11:53:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
194.87.188.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:18:b6:1a:e4:4e:c7:93:21:13:e0:e0:5b:c6:60:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 2 11:53:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f104419ac0aefcb2372c768fea155d08c09ee02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:6b:e3:db:c8:df:eb:9d:8f:37:33:37:39:
d3:de:b6:e0:47:21:4e:03:89:56:49:99:65:05:05:
a5:b6:e9:68:4c:07:e8:b9:7c:ba:11:25:09:84:7e:
f6:fa:2f:63:73:2a:ac:08:6e:7f:f7:7e:d2:54:e6:
a1:91:75:b8:0c:70:ca:fe:b5:18:dd:56:64:ed:45:
0f:be:7b:54:dc:a4:62:1f:87:2f:64:37:4a:13:5d:
ba:14:77:d1:13:a3:fd:e8:8c:f8:70:36:bc:99:9a:
0b:89:2b:76:9e:a5:03:32:22:20:1f:8d:07:52:e4:
15:da:45:4e:df:5b:b1:be:04:a7:fe:1c:f9:ad:76:
e0:88:ff:02:3f:91:d0:71:2d:3c:26:e1:59:be:2d:
be:73:cf:89:12:c2:84:07:54:82:bf:89:5c:1e:ff:
92:0d:49:d8:c3:3d:d9:91:5b:af:70:55:87:67:e5:
b4:62:8b:25:38:ae:ba:03:87:7c:f1:82:53:00:f5:
50:a3:14:38:b2:3c:ac:68:c1:b8:c6:51:1a:89:98:
4b:58:d6:59:bf:e6:77:a8:6b:af:5f:7e:c2:96:77:
2e:ef:2c:33:70:ed:2d:49:b0:b3:fb:ca:ff:41:4c:
e1:1d:6a:c0:ce:8e:b9:e6:29:2a:11:dd:14:a2:a2:
63:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:10:44:19:AC:0A:EF:CB:23:72:C7:68:FE:A1:55:D0:8C:09:EE:02
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/PxBEGawK78sjcsdo_qFV0IwJ7gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
194.87.3.0/24
194.87.16.0/24
194.87.34.0/24
194.87.42.0/24
194.87.86.0/24
194.87.91.0/24
194.87.104.0/24
194.87.117.0-194.87.120.255
194.87.176.0/23
194.87.188.0/24
195.58.56.0/24
195.58.59.0/24
195.58.61.0-195.58.62.255
212.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
50:86:62:38:03:d5:6a:5b:aa:d9:39:d2:dc:8e:34:ce:50:8b:
d4:c5:97:9c:44:59:88:66:c6:dc:ab:d3:73:6d:78:a9:9b:e1:
bd:12:2e:02:ab:d0:2c:34:42:78:56:37:bd:d9:85:d7:7c:ca:
82:42:10:1d:1a:9a:14:6e:b3:95:3a:99:92:0a:8b:a4:34:00:
5b:3e:49:3b:28:1c:5a:13:01:6a:85:74:16:d1:14:97:a8:20:
2c:0a:5f:f5:79:b4:6d:44:cc:42:5c:0c:f2:69:a3:b6:b5:36:
d2:72:74:b4:0e:34:0b:3b:a1:36:c7:54:0f:66:46:99:e4:d7:
16:97:6f:1f:ad:b3:34:b4:4c:0d:16:3e:48:4f:dc:e4:79:95:
67:d3:90:9c:e5:a4:41:a4:51:5d:e6:a0:1a:47:30:02:4e:78:
e5:1d:51:72:fd:76:4a:21:06:67:f5:e3:7b:d2:51:b2:11:38:
5e:84:4f:8c:74:01:e5:7b:13:0b:f1:aa:eb:b2:ed:2e:1f:13:
b9:27:09:82:f6:31:fa:3a:dc:ce:d5:02:7b:e1:49:ba:b1:f6:
0d:e6:01:f5:bb:3a:62:4a:b2:ae:ed:27:d6:9e:05:ba:1d:e4:
fb:d4:9d:3c:1b:73:68:4a:db:c2:ee:ff:e2:d0:90:a7:35:3d:
a4:d1:9c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 2 12:40:08 2023 by rpki-client on console-fra.rpki-client.org