Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UjajEMZNt91yvIlVA8__2G4XPVs.roa
File: UjajEMZNt91yvIlVA8__2G4XPVs.roa (raw, json)
Hash identifier: iExVOwAvKToPCXI038zCKQXvSAZX1C+ZFzAo7B1/q54=
Subject key identifier: 52:36:A3:10:C6:4D:B7:DD:72:BC:89:55:03:CF:FF:D8:6E:17:3D:5B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019175A5734CB7BF5D40ADAEBF26EABD1AF3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UjajEMZNt91yvIlVA8__2G4XPVs.roa
Signing time: Wed 21 Aug 2024 15:54:22 +0000
ROA not before: Wed 21 Aug 2024 15:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
195.133.67.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 09:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:75:a5:73:4c:b7:bf:5d:40:ad:ae:bf:26:ea:bd:1a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 21 15:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5236a310c64db7dd72bc895503cfffd86e173d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e1:75:b9:59:b5:4a:fe:d4:97:0d:28:e7:bb:
7d:06:53:ba:c2:1e:c8:b8:f9:8a:8e:71:1a:93:1d:
96:e0:eb:ee:26:bc:6e:1b:d7:4a:d2:41:97:a2:23:
80:db:50:3a:36:c1:64:8b:e3:fb:1a:99:f1:d3:93:
97:23:49:19:e0:7b:51:db:a5:52:50:74:67:91:d8:
57:95:23:e7:75:8d:ed:99:38:ad:94:ee:4e:c2:82:
88:ee:a0:f3:d6:ca:ab:e8:b5:e6:60:cc:ae:2c:6e:
5d:b1:1b:98:84:9b:90:d6:18:3c:29:30:8a:3e:79:
1e:e6:8f:88:fb:2a:14:de:91:e5:f1:d3:35:ce:a0:
f2:bd:b3:d9:48:be:a0:12:69:1a:94:48:62:3f:90:
6b:7d:64:94:c4:8a:62:49:3f:59:e1:60:df:14:be:
dc:ea:23:82:e7:a5:c0:b7:ca:7d:c5:66:f1:d6:b7:
e3:03:c3:0f:81:79:dd:bf:f5:79:ff:95:35:4d:99:
0f:66:a7:08:67:c9:41:44:f7:5f:71:2e:8e:f3:e2:
b4:2b:97:f5:24:6d:41:54:66:e5:41:0e:0d:93:51:
85:c1:51:74:32:d7:c7:aa:b2:96:c5:ef:31:dd:cd:
7a:52:88:59:ca:c3:b6:80:27:45:b4:6b:15:e4:cd:
19:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:36:A3:10:C6:4D:B7:DD:72:BC:89:55:03:CF:FF:D8:6E:17:3D:5B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UjajEMZNt91yvIlVA8__2G4XPVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.40.0/24
194.58.45.0/24
194.58.68.0/24
194.87.10.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.198.0/24
194.87.227.0/24
194.87.230.0/24
195.133.67.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.193.1.0-212.193.2.255
Signature Algorithm: sha256WithRSAEncryption
41:cd:bc:55:c3:2d:e8:39:0c:86:3f:8f:66:cf:d8:6f:11:13:
96:79:27:0c:c5:ff:53:7c:fb:fa:d3:68:a4:a7:76:ca:9e:e6:
cd:71:03:02:25:57:03:89:36:d0:45:f1:b0:53:25:2d:fa:d1:
9a:00:f4:e8:17:9e:0e:3c:44:b1:d2:5f:0e:9d:fe:b3:86:55:
b3:4e:84:35:b4:0f:0d:ef:9e:4a:9d:c1:50:f7:57:b8:de:9c:
e2:46:33:e3:f2:bc:9d:67:55:a0:cb:4f:e7:01:48:3e:c2:8f:
45:e0:0d:8d:29:83:52:4e:2d:7e:1f:bf:c7:d2:8f:96:fb:83:
fe:46:34:be:64:27:39:94:55:c8:6f:7d:75:38:de:d0:24:a2:
cf:0f:e8:60:33:14:cb:e9:77:74:02:fa:ad:d5:0e:2f:09:ce:
38:9e:f4:f5:4d:78:c4:08:d4:01:5f:79:74:e9:9b:3e:e2:58:
eb:46:cd:db:4d:e1:33:d0:e6:56:1e:84:b1:a1:01:bc:4c:6c:
e5:9b:bc:2a:71:b2:87:ff:a9:86:84:75:f2:5c:cf:37:1b:2c:
8d:c6:e4:37:ab:f7:65:c2:10:51:78:36:36:bf:b7:b1:e0:e3:
9a:26:d8:dc:86:50:64:4b:5c:dc:e6:e3:7b:9f:b1:bc:4b:0e:
c7:12:46:b6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:03 2024 by rpki-client on console-ams.rpki-client.org