Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/T4nE9uuUDr0wiJYJg1nPMAc4B8g.roa
File: T4nE9uuUDr0wiJYJg1nPMAc4B8g.roa (raw, json)
Hash identifier: AQhGK3sKKhWa83x4NQxZEACDjdftn2IREVFEmX9EnHQ=
Subject key identifier: 4F:89:C4:F6:EB:94:0E:BD:30:88:96:09:83:59:CF:30:07:38:07:C8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01902C0CCDF68C3FF6037D664B1485429F3A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/T4nE9uuUDr0wiJYJg1nPMAc4B8g.roa
Signing time: Tue 18 Jun 2024 15:52:34 +0000
ROA not before: Tue 18 Jun 2024 15:52:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 192.124.178.0/24 maxlen: 24
193.124.80.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
194.87.11.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.21.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.87.114.0/23 maxlen: 23
194.87.134.0/23 maxlen: 23
194.87.134.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
195.133.0.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
212.192.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 07:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2c:0c:cd:f6:8c:3f:f6:03:7d:66:4b:14:85:42:9f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 18 15:52:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f89c4f6eb940ebd308896098359cf30073807c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d7:30:6f:8a:01:21:00:a8:ea:49:48:6d:b6:
b1:20:ec:32:4c:68:70:41:17:b6:33:ba:8b:33:bd:
16:dd:e9:fc:03:8d:3d:4d:c4:fa:86:51:ad:88:5c:
2e:d6:81:eb:d6:83:88:ae:fb:11:90:f8:f8:86:29:
6d:51:ba:ed:88:9c:1e:fa:5f:22:db:43:74:5c:14:
c7:3e:7a:69:bd:37:c3:6c:1b:8a:32:1c:4f:e7:53:
1c:6d:c5:ae:1f:dd:ff:49:58:af:8f:d5:5b:36:f9:
45:cc:db:a2:6e:5d:6e:e8:e0:27:2a:25:4c:64:ba:
93:64:c9:9a:82:b9:50:d4:78:fe:23:94:aa:62:01:
c7:d1:42:58:9b:ef:0d:31:59:53:71:e5:dd:ef:b4:
37:88:5e:ea:29:21:48:fa:20:47:b0:b4:e1:ee:20:
2e:e9:ab:1a:36:8a:0e:32:cf:ee:2d:bb:65:6a:6f:
87:4d:21:1b:5f:4a:f0:6c:e9:22:b1:b1:ed:5d:af:
f3:9a:a5:5b:5d:c7:7e:a6:b7:b0:db:fe:29:f0:d1:
01:de:e5:37:ee:ad:71:69:e2:80:0e:d4:e7:c8:ec:
ee:60:6d:1e:d8:dd:38:ea:2e:f7:2e:eb:c2:e9:8c:
62:c7:cc:9b:9f:64:19:f5:5e:a6:59:7c:2c:ef:f9:
73:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:89:C4:F6:EB:94:0E:BD:30:88:96:09:83:59:CF:30:07:38:07:C8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/T4nE9uuUDr0wiJYJg1nPMAc4B8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.178.0/24
193.124.80.0/24
193.124.133.0/24
194.58.47.0/24
194.87.11.0/24
194.87.18.0/24
194.87.21.0/24
194.87.30.0/24
194.87.114.0/23
194.87.134.0/23
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.84.0/23
212.192.222.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d7:91:61:ca:b4:01:be:fd:fc:05:38:dd:4a:dc:aa:ad:3e:
35:b1:8f:84:88:9c:b1:2b:99:2e:35:fd:0f:32:fd:31:cb:f1:
b1:55:9d:2f:c4:7c:aa:e1:59:97:25:f8:2f:83:02:7d:bd:9b:
a7:63:99:17:ca:20:70:e1:e6:2e:2c:c6:75:9e:cc:4b:48:7f:
4a:a2:a1:23:7f:86:b9:4c:58:49:52:78:e7:70:8f:81:71:2d:
fe:76:cd:ef:49:c9:16:a5:16:62:c8:72:11:16:f1:5b:41:d4:
32:bd:7e:de:5b:82:37:73:77:61:27:06:ae:6d:68:02:f0:79:
71:8d:e5:aa:3c:da:b9:8b:35:49:aa:07:fd:59:46:e4:c7:9d:
94:2a:44:7b:b6:cf:46:42:40:8d:cd:6c:c4:db:0d:2d:d4:e1:
d2:e8:ea:60:93:53:3f:ca:25:13:c2:28:93:40:5f:9c:8d:3f:
2b:e0:1e:52:32:60:be:c7:91:6a:63:f9:d1:ab:a9:04:fb:6b:
14:58:87:50:39:bc:7a:d8:5b:a9:31:f4:73:eb:d3:5b:1a:f5:
eb:45:3b:e3:fe:d4:a1:1a:36:42:b8:eb:4e:12:6d:d8:2c:8a:
27:99:a5:7c:84:09:b0:1b:c4:fd:5a:bf:67:d7:be:84:a1:2c:
ed:2d:41:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 10:25:22 2024 by rpki-client on console-ams.rpki-client.org