Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Szau9SpaxPLfrVHnoZ8h7_ul3_k.roa
File: Szau9SpaxPLfrVHnoZ8h7_ul3_k.roa (raw, json)
Hash identifier: VZFSkXxfed3b1SJQKG0qnqD/wZ0Vq4m5m3ch8VhZfgA=
Subject key identifier: 4B:36:AE:F5:2A:5A:C4:F2:DF:AD:51:E7:A1:9F:21:EF:FB:A5:DF:F9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D0375138C0064A17BF0EFACE3E60F40C0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Szau9SpaxPLfrVHnoZ8h7_ul3_k.roa
Signing time: Sat 13 Jan 2024 15:33:40 +0000
ROA not before: Sat 13 Jan 2024 15:33:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 212.193.13.0/24 maxlen: 24
62.76.227.0/24 maxlen: 24
212.193.25.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
195.133.2.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
194.87.81.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.215.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 04:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:03:75:13:8c:00:64:a1:7b:f0:ef:ac:e3:e6:0f:40:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 13 15:33:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b36aef52a5ac4f2dfad51e7a19f21effba5dff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ac:df:24:c0:da:bd:75:10:27:a4:e4:87:35:
f6:a9:b5:7d:05:56:1d:73:6c:32:ff:d6:92:a6:9d:
ec:71:e7:4a:d5:66:f7:a1:6b:09:f6:6e:a3:58:8b:
e4:ef:84:b3:cc:3f:42:76:1d:28:27:c4:eb:8e:a8:
60:97:da:aa:00:5b:00:89:4f:b4:f2:b4:9a:67:5f:
ad:e8:64:ff:8a:f9:58:28:49:01:fc:0c:e6:b1:cb:
e0:b4:7d:48:35:66:96:64:d4:77:8f:86:aa:6e:49:
17:7c:7b:70:61:6c:35:4c:45:e3:ad:23:eb:e9:d5:
9e:31:42:7d:59:42:38:36:d0:8f:7d:c4:e3:4b:e9:
77:ad:fb:7b:3e:57:68:5e:25:b1:ae:6f:27:cd:94:
25:b2:b0:c1:14:54:d0:48:5e:f2:9f:6d:26:a9:a7:
32:f9:a1:aa:e6:df:c4:6e:be:55:22:a0:72:98:62:
f3:4f:30:c0:98:fc:c0:58:6e:09:75:85:ba:81:f1:
06:72:a7:c7:51:b4:fa:d1:3b:67:f0:95:fd:1f:bf:
cd:b3:d5:4d:6f:89:d3:5a:e0:7a:d7:e2:2c:ed:3e:
0e:69:57:69:5a:78:e2:53:55:c4:e1:58:12:d2:24:
50:07:6e:a0:22:ad:d5:c7:30:41:13:e0:5d:b9:c1:
83:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:36:AE:F5:2A:5A:C4:F2:DF:AD:51:E7:A1:9F:21:EF:FB:A5:DF:F9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Szau9SpaxPLfrVHnoZ8h7_ul3_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
185.72.10.0/24
192.124.183.0/24
193.124.47.0/24
193.124.95.0/24
193.124.202.0/24
194.58.42.0/24
194.58.66.0/24
194.87.26.0/24
194.87.76.0/24
194.87.81.0/24
194.87.128.0/24
194.87.149.0/24
194.87.170.0/24
194.87.172.0/24
194.87.190.0/24
194.87.215.0/24
194.87.224.0/24
194.87.229.0/24
194.87.231.0/24
194.135.33.0/24
195.58.54.0/24
195.58.63.0/24
195.133.2.0/24
195.133.25.0/24
195.133.27.0/24
195.133.74.0/24
195.133.84.0/24
212.192.1.0/24
212.192.214.0/24
212.192.222.0/24
212.193.13.0/24
212.193.25.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:61:e8:25:aa:ff:61:06:98:5b:d6:4b:a1:8f:78:6e:6d:c3:
38:20:76:75:9d:54:f1:9a:17:06:64:a7:c2:6a:d0:5d:81:2a:
9f:19:ef:65:1e:44:ec:40:83:61:ce:c5:51:61:f1:d2:58:5f:
d0:fb:2c:1c:8c:d2:bc:5b:e9:a8:cb:d1:f6:37:40:d3:e0:a6:
57:68:00:1a:66:5d:c0:fa:78:ac:36:81:f4:97:bf:cb:79:64:
4f:e4:60:5a:c1:48:e6:1e:95:f7:be:cf:72:54:ef:ff:cb:0d:
0d:ee:04:cc:27:f0:f5:e5:b1:92:65:b5:c1:bb:bf:34:81:72:
cc:22:7e:2f:ee:6a:c3:73:10:a8:9a:03:f0:e2:5c:09:83:9d:
c4:e8:7d:59:a2:60:1e:aa:d0:ef:2f:13:81:4b:7e:8d:94:d4:
38:30:6b:0e:48:6c:69:69:4e:50:6e:b0:9c:cc:f0:b4:ca:23:
4e:1c:89:28:00:19:dd:b9:2e:63:cd:ac:37:c3:ac:d9:bb:c8:
6d:76:8a:80:82:dd:68:5e:2e:bd:32:2d:66:38:96:fa:b5:1d:
1a:fd:23:99:68:85:cb:fa:d8:32:1a:aa:51:d1:f7:0e:37:69:
34:35:87:0c:2d:b3:26:82:84:e1:ac:17:a0:8c:aa:cc:cd:5d:
25:8c:10:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:17 2024 by rpki-client on console-fra.rpki-client.org