Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TiCsaW3tqCuy4-hNViRxombiJFU.roa
File: TiCsaW3tqCuy4-hNViRxombiJFU.roa (raw, json)
Hash identifier: bnW9aR5/Sr7TDpsnBMRA3kxsrghJJaT11YPx07ObM40=
Subject key identifier: 4E:20:AC:69:6D:ED:A8:2B:B2:E3:E8:4D:56:24:71:A2:66:E2:24:55
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019141EFDEF7F2A81B2F55C980864A42AD19
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TiCsaW3tqCuy4-hNViRxombiJFU.roa
Signing time: Sun 11 Aug 2024 14:55:24 +0000
ROA not before: Sun 11 Aug 2024 14:55:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 16:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:41:ef:de:f7:f2:a8:1b:2f:55:c9:80:86:4a:42:ad:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 11 14:55:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e20ac696deda82bb2e3e84d562471a266e22455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c8:37:e2:0b:c2:59:77:52:be:4b:11:b1:13:
90:a4:54:07:4f:5e:d0:8c:63:8f:6d:64:1c:53:71:
34:2e:93:2f:2c:9a:30:39:b3:90:8d:12:6d:5b:69:
98:9d:ea:26:fb:c3:71:64:7f:6a:7f:88:14:34:7a:
a7:ee:3b:7b:45:83:6e:03:95:59:04:b9:d2:29:3e:
ae:02:09:2a:15:74:34:40:f0:06:11:1a:51:b2:79:
99:25:fa:62:d5:cc:f9:27:37:ce:cc:aa:85:19:97:
4d:b4:49:7c:2f:a9:3b:ed:f6:9f:db:78:1c:5e:af:
65:82:cc:3c:6d:da:cb:dc:5a:e3:e2:ed:2e:5d:af:
89:3e:f0:8b:24:8d:fc:a1:fe:66:25:23:b6:fd:78:
8c:99:f3:b0:9b:af:cb:a9:03:d9:b6:69:37:69:ea:
0b:af:82:b7:61:2f:21:3b:26:96:0d:7f:24:20:95:
d2:cb:95:ef:b8:61:6e:2a:86:b5:e2:77:83:9f:3d:
ac:e3:7e:83:78:b4:bc:05:9b:b5:47:90:76:85:f8:
b3:ba:73:33:9d:66:32:86:37:02:10:70:46:d7:ff:
99:fe:25:ce:2b:39:32:1d:cd:c8:41:e7:d5:05:12:
52:bc:1a:87:a3:8a:f8:34:fb:4d:45:75:92:c3:09:
56:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:20:AC:69:6D:ED:A8:2B:B2:E3:E8:4D:56:24:71:A2:66:E2:24:55
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TiCsaW3tqCuy4-hNViRxombiJFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.40.0/24
194.58.45.0/24
194.58.68.0/24
194.87.10.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.198.0/24
194.87.227.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.193.1.0-212.193.2.255
Signature Algorithm: sha256WithRSAEncryption
95:18:40:92:bf:4a:a8:99:b6:43:bd:dc:d6:3e:a4:e9:4b:71:
c6:13:61:62:e5:b4:1a:9b:74:b7:00:dc:9b:7d:d7:2a:69:55:
9d:72:c0:1b:13:68:8f:aa:5e:a0:5b:4d:c3:44:7e:de:06:5e:
1c:bb:2f:27:7a:8f:8e:35:d7:e5:8d:62:cd:2b:95:f2:7d:bb:
ef:85:16:0b:06:03:29:2e:42:6e:f1:5d:8f:94:62:be:7e:03:
7d:b2:ac:11:ee:23:96:3a:02:64:85:a3:36:49:65:24:86:99:
0d:e2:b8:e7:63:14:a4:f7:29:d7:78:e7:5c:ec:1b:94:13:13:
a6:eb:b4:88:03:9c:40:8b:b0:20:eb:9c:60:f5:4b:c8:84:29:
ae:ac:b8:52:6c:33:63:38:04:5e:51:14:59:b4:ee:cf:f5:32:
d1:d0:53:ed:20:f0:8f:5d:88:3e:0f:b2:90:ad:02:d5:0a:c8:
60:aa:cc:0c:e3:2a:56:64:b3:e9:4b:bf:f0:d8:3b:96:5f:78:
24:66:bc:fa:a0:df:d7:8f:3a:1f:a7:ad:d7:76:2d:ad:6f:4c:
a7:f3:8e:79:e7:32:4c:11:a8:fd:e2:7b:60:0f:06:a4:e5:58:
2f:72:92:6f:49:c6:d4:fd:04:b2:08:5e:69:8f:54:fe:47:4f:
f0:db:a5:93
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgISAZFB79738qgbL1XJgIZKQq0ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwODExMTQ1NTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTIwYWM2OTZkZWRhODJiYjJlM2U4NGQ1NjI0NzFhMjY2ZTIyNDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sg34gvCWXdSvksRsROQpFQHT17Q
jGOPbWQcU3E0LpMvLJowObOQjRJtW2mYneom+8NxZH9qf4gUNHqn7jt7RYNuA5VZ
BLnSKT6uAgkqFXQ0QPAGERpRsnmZJfpi1cz5JzfOzKqFGZdNtEl8L6k77faf23gc
Xq9lgsw8bdrL3Frj4u0uXa+JPvCLJI38of5mJSO2/XiMmfOwm6/LqQPZtmk3aeoL
r4K3YS8hOyaWDX8kIJXSy5XvuGFuKoa14neDnz2s436DeLS8BZu1R5B2hfizunMz
nWYyhjcCEHBG1/+Z/iXOKzkyHc3IQefVBRJSvBqHo4r4NPtNRXWSwwlWKwIDAQAB
o4ICmjCCApYwHQYDVR0OBBYEFE4grGlt7agrsuPoTVYkcaJm4iRVMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvVGlDc2FXM3RxQ3V5NC1oTlZpUnhvbWJpSkZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGvBggrBgEFBQcBBwEB/wSBnzCBnDCBmQQCAAEwgZIDBAA+
TOoDBAA+TO8DBAC5SAgDBADAfLADBADBfBYDBADBfCkDBADBfC4DBADCOiIDBADC
OigDBADCOi0DBADCOkQDBADCVwoDBADCVycDBADCVy8DBADCV70DBADCV8YDBADC
V+MDBADDhVwDBAHUwAwDBADUwA8DBADUwNcDBADUwN0wDAMEANTBAQMEANTBAjAN
BgkqhkiG9w0BAQsFAAOCAQEAlRhAkr9KqJm2Q73c1j6k6UtxxhNhYuW0Gpt0twDc
m33XKmlVnXLAGxNoj6peoFtNw0R+3gZeHLsvJ3qPjjXX5Y1izSuV8n2774UWCwYD
KS5CbvFdj5Rivn4DfbKsEe4jljoCZIWjNkllJIaZDeK452MUpPcp13jnXOwblBMT
puu0iAOcQIuwIOucYPVLyIQprqy4UmwzYzgEXlEUWbTuz/Uy0dBT7SDwj12IPg+y
kK0C1QrIYKrMDOMqVmSz6Uu/8Ng7ll94JGa8+qDf1486H6et13YtrW9Mp/OOeecy
TBGo/eJ7YA8GpOVYL3KSb0nG1P0EsgheaY9U/kdP8Nulkw==
-----END CERTIFICATE-----
Generated at Sat Aug 17 20:21:28 2024 by rpki-client on console-ams.rpki-client.org