Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WY9n-hn3JOAq5jhAwAcj-r6ynl8.roa
File: WY9n-hn3JOAq5jhAwAcj-r6ynl8.roa (raw, json)
Hash identifier: ZyPo/KvHsle2BNU4CNmQSAor8id/KpRQyc7a9uILuvk=
Subject key identifier: 59:8F:67:FA:19:F7:24:E0:2A:E6:38:40:C0:07:23:FA:BE:B2:9E:5F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01917EA4EA6C1F85300C31A922B7EBC1D6F2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WY9n-hn3JOAq5jhAwAcj-r6ynl8.roa
Signing time: Fri 23 Aug 2024 09:50:22 +0000
ROA not before: Fri 23 Aug 2024 09:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
62.76.239.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.18.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
195.133.67.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Aug 2024 15:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7e:a4:ea:6c:1f:85:30:0c:31:a9:22:b7:eb:c1:d6:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 23 09:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=598f67fa19f724e02ae63840c00723fabeb29e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:20:b1:3f:9a:ae:89:c6:ec:32:f7:9b:7c:d6:
75:36:4f:bc:43:da:34:10:7d:4f:4c:2b:31:82:2a:
9d:21:25:f5:74:4c:b3:69:b9:9b:08:65:c1:20:5d:
b9:ca:25:e8:37:0c:e0:e0:79:f4:5e:af:2c:f6:d1:
c2:b0:3b:14:de:c4:25:6a:16:bf:51:1c:4f:0e:bd:
9b:f1:62:23:c0:6d:d8:ba:c1:24:39:ed:2f:53:26:
82:03:4b:16:50:e1:29:13:4c:cf:8c:41:0e:05:b6:
43:f2:03:56:74:3d:fe:75:a5:61:64:92:08:b7:14:
38:72:f7:ed:6c:28:ab:5c:94:38:7f:4c:36:50:7f:
b2:e5:7b:3d:8c:72:40:43:9e:92:ba:2e:dd:b5:dd:
c9:28:bf:1b:ae:9d:5e:c2:b0:f2:53:5b:3e:c7:74:
84:3a:90:37:d9:20:e3:f2:77:e3:7c:ca:6d:57:cb:
36:1b:2f:df:0e:69:b1:4c:d0:ce:77:33:95:52:c0:
b5:59:2e:e5:d4:73:be:19:e6:91:1f:fc:87:eb:dd:
4f:ec:9b:2d:2e:42:cb:5b:fb:b3:f6:06:34:c9:37:
63:dc:cc:b7:27:12:f2:1d:b5:c3:df:da:1f:3d:cd:
9f:ac:14:02:d5:49:a7:08:91:4c:99:4e:d6:de:4f:
8c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8F:67:FA:19:F7:24:E0:2A:E6:38:40:C0:07:23:FA:BE:B2:9E:5F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WY9n-hn3JOAq5jhAwAcj-r6ynl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
62.76.239.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.40.0/24
194.58.44.0/23
194.58.66.0/24
194.58.68.0/24
194.87.10.0/24
194.87.18.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.198.0/24
194.87.227.0/24
194.87.230.0/24
195.133.67.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.215.0/24
212.192.221.0/24
212.193.1.0-212.193.2.255
Signature Algorithm: sha256WithRSAEncryption
1a:07:29:50:2f:3c:bf:05:0b:dd:ce:98:63:19:8b:c1:ae:ca:
94:b9:9e:2f:83:53:2e:0d:76:06:a8:c1:f3:3d:9d:71:0b:f5:
cd:06:df:7b:9f:fe:43:0f:fa:2f:42:c7:7c:f2:48:73:ef:2f:
b0:6f:ff:f8:d8:96:15:ef:4c:ee:46:e0:a1:23:4a:05:02:7b:
74:bb:5d:de:14:b7:27:89:e3:ca:3a:e3:f7:f9:c8:a2:ba:e4:
86:f9:c8:64:1c:c1:b2:84:e1:49:d2:eb:ae:bd:82:5c:e8:e4:
04:82:a3:e0:79:ce:b1:ea:cc:36:66:13:b2:2d:62:a3:9c:46:
ba:60:4c:7a:49:c5:0b:a0:e6:87:ee:56:87:75:12:03:2f:ef:
7b:84:fa:01:dd:a1:52:a6:f3:ae:43:03:60:e1:c1:72:2c:b8:
21:e6:de:6e:4d:55:ca:43:ac:f2:a3:e3:06:df:70:52:c3:14:
7d:86:31:9e:d2:81:f4:5c:18:03:43:3d:bc:d5:a1:35:20:31:
68:58:ae:b0:c7:63:05:db:ca:55:d7:08:be:a5:92:69:bd:89:
e4:19:b2:5d:aa:c5:a0:34:8a:60:f6:26:8b:44:ac:f4:ad:18:
5f:33:58:11:47:68:24:b2:9e:f1:f9:e0:77:77:b5:5d:77:29:
06:4e:3e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 17:46:28 2024 by rpki-client on console-fra.rpki-client.org