Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/U4FYXCqu25X1Pie4v3WJFesEY5k.roa
File: U4FYXCqu25X1Pie4v3WJFesEY5k.roa (raw, json)
Hash identifier: blWrsQeaXC2gVuWZV4Te3RmlZZPG7haCTPldaXPeFNM=
Subject key identifier: 53:81:58:5C:2A:AE:DB:95:F5:3E:27:B8:BF:75:89:15:EB:04:63:99
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01869DCBE0738C21AECEB62DAD2BEC663BF0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/U4FYXCqu25X1Pie4v3WJFesEY5k.roa
Signing time: Wed 01 Mar 2023 15:30:29 +0000
ROA not before: Wed 01 Mar 2023 15:30:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 194.87.207.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 09:09:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:cb:e0:73:8c:21:ae:ce:b6:2d:ad:2b:ec:66:3b:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 1 15:30:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5381585c2aaedb95f53e27b8bf758915eb046399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:48:03:f9:cf:95:10:0c:c9:5d:da:02:b1:13:
77:20:24:d1:b4:58:80:b8:43:cd:ea:21:e0:22:bd:
e6:5b:07:e7:15:60:50:cd:69:c9:9f:6a:b3:07:5b:
ca:06:35:29:83:28:f9:3a:be:04:a4:dd:9c:5a:d0:
91:d9:c7:09:0f:38:3e:5f:dd:42:ed:b4:27:d4:4f:
54:1f:8f:7e:3f:6b:0f:18:dd:71:48:df:10:a5:a5:
8c:5e:f5:78:0c:4d:94:0e:34:90:60:45:dc:d6:ba:
21:4b:fd:c1:87:4e:5d:45:bd:f9:7e:84:e2:cc:10:
23:35:07:9b:eb:4d:f7:7b:24:9d:6c:4a:4b:89:8f:
e7:51:c8:f7:45:3f:ae:ac:85:eb:d2:33:b1:d6:f5:
fc:60:66:ca:4c:1e:15:99:49:66:d0:80:37:65:d4:
ef:42:f5:ac:12:9f:7b:1a:1c:b1:74:78:96:00:2e:
28:01:ae:a8:8f:28:50:e0:d0:77:f3:60:18:f7:46:
06:14:b4:1c:ce:45:54:1b:4f:dd:99:73:2e:a6:26:
94:2d:77:71:78:92:61:da:d1:4e:36:84:63:7f:fe:
72:7e:a4:99:56:6a:d8:1e:07:88:e8:f9:28:e1:e0:
a2:08:dc:85:cd:ca:1c:d0:52:1b:63:c1:07:cf:d0:
cc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:81:58:5C:2A:AE:DB:95:F5:3E:27:B8:BF:75:89:15:EB:04:63:99
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/U4FYXCqu25X1Pie4v3WJFesEY5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.18.0/24
193.124.41.0/24
193.124.47.0/24
193.124.205.0/24
194.58.43.0/24
194.58.46.0/24
194.58.155.0/24
194.87.30.0/24
194.87.64.0/24
194.87.108.0/24
194.87.161.0/24
194.87.163.0/24
194.87.207.0/24
195.133.12.0/24
212.192.7.0/24
212.192.30.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d2:b0:ad:ed:5b:b2:97:a2:21:1b:79:9c:03:42:1e:4e:3d:
85:4e:af:60:ce:18:df:40:71:ec:8e:68:3e:14:59:8d:1c:75:
2e:4c:ba:e4:f0:64:e8:85:44:b3:6c:07:4a:7c:fb:03:a2:cc:
92:06:3e:ef:e0:2e:02:0c:25:e8:b5:6d:18:d9:9e:3d:e8:e7:
8a:d2:d3:6a:4a:43:02:7c:5f:02:2f:ca:93:67:01:d7:49:1e:
6b:24:7e:3d:03:bf:d1:6f:10:f5:d4:7c:80:c8:c2:6a:3a:e6:
04:08:6a:59:eb:b9:ab:58:e5:00:11:ae:4b:f0:18:6e:ed:ca:
25:b7:be:c2:5a:f3:3f:62:3b:ad:d9:ed:c5:c2:ba:6d:bf:b7:
7e:18:25:e5:06:bc:7b:3a:e1:29:60:34:11:54:0d:7c:cd:df:
73:b6:ec:47:2b:55:0c:69:ad:3f:b4:47:43:5e:13:5c:2b:ec:
67:78:14:01:4a:52:4c:09:d9:1f:05:e3:2d:d6:a7:b0:ef:e9:
0c:82:8d:ad:08:54:86:a8:b7:93:c3:e9:13:d0:fb:3c:ce:54:
ae:f6:29:90:c3:c4:6b:17:84:83:8a:0d:e7:0d:68:ca:98:07:
19:72:dc:9f:af:e5:99:e2:09:b4:39:54:68:33:fc:90:6a:98:
3f:51:42:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:17 2024 by rpki-client on console-fra.rpki-client.org