Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SGFgIx2ljf9ZY0mS-dXOMKFq8Lk.roa
File: SGFgIx2ljf9ZY0mS-dXOMKFq8Lk.roa (raw, json)
Hash identifier: NteclUymxi5I+vbuD6iWQ1qt5Q7qLsCqPE2NO8xsq2Q=
Subject key identifier: 48:61:60:23:1D:A5:8D:FF:59:63:49:92:F9:D5:CE:30:A1:6A:F0:B9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189DA7529D451FBE7A7D58F27C33A95F05C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SGFgIx2ljf9ZY0mS-dXOMKFq8Lk.roa
Signing time: Wed 09 Aug 2023 13:20:58 +0000
ROA not before: Wed 09 Aug 2023 13:20:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.1.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.26.0/23 maxlen: 23
195.58.36.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
212.192.241.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
194.87.108.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.122.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
195.133.6.0/24 maxlen: 24
195.133.7.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
194.87.222.0/24 maxlen: 24
194.87.151.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 17:26:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:75:29:d4:51:fb:e7:a7:d5:8f:27:c3:3a:95:f0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 9 13:20:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=486160231da58dff59634992f9d5ce30a16af0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:33:cd:d8:43:67:0e:59:5f:7e:3b:f2:7a:17:
5d:00:c0:ad:bd:0e:59:c6:29:fb:cd:a9:b4:93:81:
37:9a:23:54:34:04:11:56:d5:a1:95:22:08:f5:1f:
df:b3:3b:7d:f1:15:2f:78:f8:5d:79:6d:8f:4a:95:
53:1e:35:7b:e6:2f:82:7a:49:1c:87:6d:0a:cc:fd:
f5:c9:44:84:89:28:2b:66:e2:9f:6c:d1:dc:fa:90:
5d:0b:04:e9:78:b4:40:b1:78:9a:2d:f0:01:06:16:
f2:01:7d:b7:0b:0b:2c:0a:2c:5d:1e:2c:0c:69:d4:
67:a7:cf:e0:b2:56:cf:ed:23:e9:0c:df:ae:55:1a:
a9:a1:3a:1b:a8:95:9e:ce:7b:e3:df:f2:43:4f:03:
60:45:9f:a2:15:9d:72:ae:99:b0:b5:26:6f:5d:ef:
36:52:29:ef:f8:b4:23:3e:00:b2:a3:8d:b8:d3:4c:
d0:a8:8e:89:bb:6c:33:b2:ad:e0:e2:96:c4:e2:b7:
8a:34:d4:62:2e:00:36:77:a3:57:d0:d1:07:d6:d2:
54:f0:23:f1:24:ec:6a:49:b1:5c:7f:28:77:f1:81:
d3:3f:c3:64:2f:3f:d0:f7:b8:42:52:6c:57:d7:a3:
dc:9e:38:7d:34:a7:c8:e7:ac:81:91:c4:60:59:68:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:61:60:23:1D:A5:8D:FF:59:63:49:92:F9:D5:CE:30:A1:6A:F0:B9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SGFgIx2ljf9ZY0mS-dXOMKFq8Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.178.0/24
192.124.182.0/24
193.124.16.0/24
193.124.80.0/24
193.124.133.0/24
193.124.200.0/24
194.58.47.0/24
194.58.154.0/24
194.87.1.0/24
194.87.11.0-194.87.12.255
194.87.24.0/22
194.87.40.0/24
194.87.56.0/24
194.87.73.0/24
194.87.83.0/24
194.87.108.0/24
194.87.114.0/23
194.87.122.0/24
194.87.124.0/24
194.87.130.0/23
194.87.134.0/23
194.87.151.0/24
194.87.168.0/24
194.87.179.0/24
194.87.190.0/24
194.87.200.0/24
194.87.222.0/24
195.58.36.0/24
195.58.54.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.6.0/23
195.133.30.0/24
195.133.73.0/24
195.133.84.0/23
195.133.194.0/24
212.192.241.0/24
Signature Algorithm: sha256WithRSAEncryption
38:37:8d:61:41:58:45:00:0f:26:c4:0f:40:78:c4:a5:13:ac:
0d:4b:07:0a:e2:48:fb:fb:29:2e:8b:36:59:e7:bb:d1:09:1a:
64:f0:22:52:98:a9:00:31:91:54:27:10:1d:f3:16:2c:56:26:
81:74:92:c0:8f:a3:39:34:5e:06:62:f5:ee:7f:75:b6:5f:d9:
61:36:05:a6:7b:ce:1a:ac:e6:50:e3:2c:d5:f8:4e:84:52:89:
ef:9d:e0:55:f0:a4:ac:2c:52:c3:b8:97:f5:39:62:8c:3b:10:
d1:61:b3:9d:8d:6f:51:93:c0:7c:6e:0c:cc:d3:b0:c4:dc:c4:
4c:09:1d:08:f5:70:9b:c5:c7:13:54:39:63:74:c9:ff:5a:9b:
71:af:23:6e:a0:08:9d:58:e6:16:34:0d:bc:51:f8:11:77:1b:
8c:44:aa:d4:b4:e5:a5:c2:84:e3:de:28:89:38:42:0f:4b:10:
f6:ca:a8:db:69:43:dd:9f:1b:2c:7e:aa:b0:99:cd:ba:b3:32:
b4:cf:52:df:f0:dd:6c:e7:f3:62:84:8b:50:87:91:09:5e:b6:
b1:52:3b:de:d3:b6:5d:11:0a:63:99:e7:8f:70:d4:5d:eb:8b:
10:51:d4:08:b6:33:c6:7a:8c:df:6d:e1:dd:dc:7a:c7:76:cf:
c5:89:93:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org