Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_EertUShv26_xo-iN54McxjASQQ.roa
File: _EertUShv26_xo-iN54McxjASQQ.roa (raw, json)
Hash identifier: Se8NNeqk0IgIZgweL5WL25XpeeMNyNDr7sEG3r8VrV4=
Subject key identifier: FC:47:AB:B5:44:A1:BF:6E:BF:C6:8F:A2:37:9E:0C:73:18:C0:49:04
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A97EE9640E85977668632C7C5C8B43D2C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_EertUShv26_xo-iN54McxjASQQ.roa
Signing time: Fri 15 Sep 2023 08:21:50 +0000
ROA not before: Fri 15 Sep 2023 08:21:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.224.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
62.76.234.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:97:ee:96:40:e8:59:77:66:86:32:c7:c5:c8:b4:3d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 15 08:21:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc47abb544a1bf6ebfc68fa2379e0c7318c04904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:10:3e:9b:4c:83:cd:53:c9:15:59:01:37:
c8:74:41:65:2a:7e:98:45:1d:4f:98:f6:91:f6:ff:
13:db:c9:a7:3f:89:ee:6e:75:48:5d:4c:14:11:ba:
b9:9e:b8:63:c4:0f:5f:a9:e7:d0:42:19:66:28:c7:
14:c1:a8:17:47:12:9e:3a:be:c2:fb:03:f6:9e:2d:
96:91:8a:1b:d7:ed:a1:07:a0:45:d1:45:ed:63:9d:
9c:36:dd:a4:2d:55:c1:a2:9d:b5:6d:05:cd:ea:5d:
df:b6:cc:2e:d8:01:04:08:c4:8e:91:74:6a:7e:5f:
b1:bc:f4:ba:28:c1:a1:e8:82:ef:7c:c9:f4:4d:e5:
16:3b:a6:bd:97:8d:49:9e:7b:a0:11:b9:c7:9d:f1:
32:79:e3:9f:56:f0:7a:59:ce:bc:c7:aa:7b:b4:1c:
1b:ac:22:50:5e:ac:6e:4a:d1:c8:8b:36:dd:12:a9:
11:0f:eb:42:fa:b4:b7:2f:50:b8:0d:46:5d:50:4c:
05:e3:2d:73:90:3c:d2:29:ae:aa:99:5a:49:da:49:
ac:5c:4f:2b:de:d4:18:95:1c:2e:39:a3:39:d5:f6:
a6:e4:e4:42:a4:87:59:46:bc:d3:73:b3:1b:72:04:
ea:8d:11:7e:4b:9a:e6:1a:6e:d8:ca:c2:16:41:e3:
16:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:47:AB:B5:44:A1:BF:6E:BF:C6:8F:A2:37:9E:0C:73:18:C0:49:04
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_EertUShv26_xo-iN54McxjASQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.224.0/24
62.76.234.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.68.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.227.0/24
212.192.12.0/24
212.192.15.0/24
212.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
13:72:e0:98:ed:35:5c:8c:e4:aa:05:07:52:59:82:d4:6b:ec:
02:7c:9d:c4:07:43:63:91:ba:8d:fd:f5:38:ea:b0:4b:78:b8:
db:6a:b8:58:1c:f9:18:f5:f8:5e:57:93:c0:45:a3:26:dd:cf:
89:8a:19:da:df:59:d9:80:ec:d7:0b:e4:ed:d8:0a:1b:98:c3:
8b:1a:09:89:53:ad:d5:a0:f9:78:5e:59:5c:37:db:10:71:d2:
4c:13:1a:65:03:c3:04:07:53:d9:15:1e:40:69:24:04:c2:c9:
79:eb:3c:06:bc:51:fa:0b:18:11:a9:14:13:e7:74:88:d7:8c:
e4:a0:16:51:24:ba:e8:77:4f:cf:7c:3a:c5:cf:35:db:61:6d:
ed:39:68:e8:93:08:49:a1:ae:53:55:df:e7:f7:3d:52:d6:e6:
ac:0a:ec:5d:40:eb:d9:bf:eb:f6:78:b0:8a:4d:29:46:66:c2:
62:89:2c:6b:68:2d:62:78:17:82:c7:87:ec:2f:a1:9c:a5:85:
7d:00:03:86:d7:d2:f4:26:92:eb:83:92:d9:d3:55:ac:62:ee:
15:f0:53:c2:89:27:dc:38:94:82:6f:95:b2:03:86:a4:12:28:
b3:32:84:d4:5b:b9:68:c2:a1:79:a8:82:ac:58:db:9c:26:c3:
cc:f9:f3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 29 16:31:59 2023 by rpki-client on console-ams.rpki-client.org