Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/R3Pn2hJbe0KeuhV0Q_e7vbjbq3U.roa
File: R3Pn2hJbe0KeuhV0Q_e7vbjbq3U.roa (raw, json)
Hash identifier: TTaY2PjxwhszbCJFSS9wWa66KEpQ73xKHrZZrD83u9Q=
Subject key identifier: 47:73:E7:DA:12:5B:7B:42:9E:BA:15:74:43:F7:BB:BD:B8:DB:AB:75
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A0768D295BDA0BAA25AD239004706FED6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/R3Pn2hJbe0KeuhV0Q_e7vbjbq3U.roa
Signing time: Fri 18 Aug 2023 06:50:24 +0000
ROA not before: Fri 18 Aug 2023 06:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 62.76.226.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 14:35:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:68:d2:95:bd:a0:ba:a2:5a:d2:39:00:47:06:fe:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 18 06:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4773e7da125b7b429eba157443f7bbbdb8dbab75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9b:5b:d4:9c:95:37:cf:53:c1:b2:67:e0:71:
a4:3e:0e:a9:29:0c:f0:a0:1e:af:eb:05:90:1f:bb:
30:c1:1a:ae:eb:ca:1a:c3:4b:cf:1b:97:f6:c0:a2:
d2:90:76:56:f1:7f:e8:fe:6f:b9:e5:23:1b:7b:22:
7c:26:69:f2:95:c6:37:76:74:12:c5:52:f7:31:09:
37:33:26:7a:0d:7e:38:a7:6b:26:5d:b9:cd:aa:eb:
5c:11:e7:d3:4d:be:c2:cb:1e:40:bd:d3:6f:99:42:
26:71:ff:dc:1e:ef:d0:5d:aa:ea:f4:2c:98:b6:91:
92:d4:82:bb:32:f7:6d:fc:72:7a:2e:1e:93:0a:84:
bb:02:6c:1a:83:ed:2d:59:90:6f:cf:d6:d5:93:59:
41:6f:30:65:e6:ba:9c:38:0e:2f:42:42:67:17:a0:
1c:48:3a:54:03:f0:45:27:0c:0a:c7:3d:c5:6e:be:
53:16:9b:3a:80:17:2c:8d:9a:03:7c:97:a6:cd:55:
76:74:53:c2:07:e2:a6:c9:e9:75:d8:de:3a:fe:aa:
de:25:90:0d:5e:bd:3d:9e:36:ab:e1:47:85:a9:25:
a0:07:cb:ac:6f:57:18:8d:42:b6:6c:c5:2a:ac:b7:
10:e4:63:bc:e5:9f:57:ad:01:9f:f0:ab:b2:4f:fd:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:73:E7:DA:12:5B:7B:42:9E:BA:15:74:43:F7:BB:BD:B8:DB:AB:75
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/R3Pn2hJbe0KeuhV0Q_e7vbjbq3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
193.124.17.0/24
194.87.3.0/24
194.87.16.0/24
194.87.36.0/24
194.87.117.0-194.87.120.255
194.87.176.0/23
195.58.56.0/24
212.192.0.0/24
212.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a5:42:c4:cf:68:65:85:99:01:3a:8d:13:d9:b6:84:ac:47:
6d:35:0c:de:4e:76:b2:dc:c9:16:67:ac:8f:dd:bb:7d:33:99:
e3:b9:71:95:05:77:8f:91:2c:7d:dd:9e:7e:90:40:e2:6e:25:
44:b5:f7:54:43:58:45:39:97:64:3c:9c:2e:eb:20:f8:68:f2:
eb:61:71:31:6e:dc:10:00:d7:3e:cd:5d:a1:1a:04:37:dc:e2:
44:fd:b5:f7:6a:61:9b:78:63:02:57:23:e3:6a:e0:3a:7f:ba:
66:12:d5:c0:6b:3c:61:62:d3:cd:67:11:1d:ff:b0:37:6d:f5:
d9:e5:4e:88:35:66:e2:68:51:d1:63:8e:ed:3c:e4:5b:42:17:
43:7b:e9:60:dd:17:12:ae:5c:f3:a4:20:f1:3c:13:74:8f:ed:
1a:05:55:29:f1:7e:30:42:0c:c7:8e:b0:3d:7b:52:70:15:e8:
52:a8:ef:6c:36:9f:e5:02:72:5f:8c:95:ff:69:1a:46:11:c8:
fb:58:d4:2e:99:2c:48:ee:52:68:4a:f5:cf:cc:ce:3a:24:d8:
7d:92:f2:a0:84:51:29:e7:d1:ee:6c:20:b5:e8:96:9c:2d:90:
1c:bf:4e:d3:f2:ed:e6:c5:af:b0:5b:e6:33:df:1a:db:de:47:
cf:c2:f3:f7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org