Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WwoI1QVgvyhHgqlSBT7PIO7UIa8.roa
File: WwoI1QVgvyhHgqlSBT7PIO7UIa8.roa (raw, json)
Hash identifier: rDpjXSGZIC/bnqwp/zD5JUpB07aUOJ/moKG0SYOJfos=
Subject key identifier: 5B:0A:08:D5:05:60:BF:28:47:82:A9:52:05:3E:CF:20:EE:D4:21:AF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F67075AD12DB9045A7D341EE2C51D0B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WwoI1QVgvyhHgqlSBT7PIO7UIa8.roa
Signing time: Sun 01 Jan 2023 22:15:01 +0000
ROA not before: Sun 01 Jan 2023 22:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 194.87.3.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
62.76.232.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.37.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.58.39.0/24 maxlen: 24
194.58.47.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
194.87.190.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
212.193.8.0/24 maxlen: 24
195.133.194.0/24 maxlen: 24
212.192.211.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 14:54:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:07:5a:d1:2d:b9:04:5a:7d:34:1e:e2:c5:1d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b0a08d50560bf284782a952053ecf20eed421af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d7:2e:e7:20:78:77:49:17:e6:a8:9c:bc:58:
03:45:11:bf:96:99:e6:be:7d:e6:00:57:25:92:28:
74:9c:80:d2:5f:dc:a5:6b:bd:20:ae:ba:d9:27:6f:
37:87:d5:93:40:2d:8a:9c:a5:70:84:19:c0:f0:a2:
18:2a:0e:5b:63:65:34:eb:02:af:57:dc:e1:3d:b0:
85:b7:c6:05:7e:4d:67:b6:7f:6b:2a:e3:10:5e:89:
29:a7:79:a1:39:60:30:d8:51:b3:85:fd:c3:76:de:
48:8b:1f:d7:a4:e3:76:cd:25:a4:cc:a8:e9:2d:e9:
84:58:76:88:54:01:d0:03:0d:58:65:4c:e0:ea:1d:
61:4c:45:1f:6f:ae:d4:7c:8d:d3:24:15:78:ec:56:
d9:51:86:87:4c:1c:6d:19:de:ba:1f:f7:c9:97:c2:
44:2f:dd:ac:d7:fa:88:1d:2c:96:46:ca:7e:99:47:
36:54:b7:a9:3a:92:86:59:39:f0:79:d6:fb:82:7c:
bc:a0:5c:79:f7:df:aa:4c:1d:62:bc:ce:5b:16:f6:
14:70:21:8a:00:43:9a:72:2b:f8:49:82:7f:0a:26:
bf:17:dd:4f:b1:a5:b8:b1:ad:9f:f0:46:d4:25:09:
b7:93:e9:25:ec:03:79:14:36:3e:5c:ec:7a:17:7e:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0A:08:D5:05:60:BF:28:47:82:A9:52:05:3E:CF:20:EE:D4:21:AF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WwoI1QVgvyhHgqlSBT7PIO7UIa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
192.124.190.0/24
193.124.16.0/24
193.124.93.0/24
193.124.202.0/24
194.58.39.0/24
194.58.47.0/24
194.87.3.0/24
194.87.16.0/24
194.87.22.0/24
194.87.36.0/23
194.87.83.0/24
194.87.177.0/24
194.87.190.0/24
195.58.54.0/24
195.58.58.0/24
195.133.86.0/24
195.133.194.0/24
212.192.211.0/24
212.193.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d5:f9:ba:e9:c5:8f:19:75:b5:59:c8:8e:5f:d0:1a:06:ba:
83:53:1f:80:b0:d1:57:ba:6a:8d:14:7c:68:d2:1f:79:12:ec:
0b:8e:fc:f4:05:47:f1:2b:c6:f3:fe:e6:3e:a8:33:e4:fa:75:
24:dc:46:23:dd:74:ee:47:be:d2:d5:9d:87:cb:a9:72:94:16:
9e:c8:79:ad:b3:78:c8:fc:ba:32:c2:1c:fc:8b:b3:02:0e:43:
ac:94:ad:ed:62:28:0d:98:96:c5:b4:be:95:f1:59:86:13:48:
22:69:02:30:8e:27:5d:ca:4e:bf:33:a0:6a:86:94:39:ab:ac:
62:43:1c:a2:cb:a9:16:46:8b:9c:3d:5a:8a:3a:c5:d7:f7:ef:
a5:98:86:a0:c0:a3:8a:49:46:7f:b2:bd:b6:d5:1b:01:73:ee:
b2:74:c9:e3:dd:46:29:09:c4:67:a0:95:63:96:cc:be:cd:2f:
99:52:5e:f5:f0:83:e4:83:3f:a3:1a:52:c0:b3:06:87:8a:f5:
eb:a0:eb:ee:ea:00:6e:19:c7:94:1f:b6:88:72:32:3d:83:f0:
59:ba:df:1c:d5:2c:26:a3:24:38:ec:b6:de:47:9f:e6:ef:bc:
39:7a:2e:f1:97:d0:ec:b6:68:f7:96:42:0b:bf:48:85:e9:1f:
b5:79:3e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:18 2024 by rpki-client on console-fra.rpki-client.org