Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_oLe2BXO0soxZdl8hS6nZZcrgFE.roa
File: _oLe2BXO0soxZdl8hS6nZZcrgFE.roa (raw, json)
Hash identifier: 1Gp9AksYMLX3fOqnWtFhknLamDJNqz4ex9PthT6JlWY=
Subject key identifier: FE:82:DE:D8:15:CE:D2:CA:31:65:D9:7C:85:2E:A7:65:97:2B:80:51
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01894F4027A0A2414653397BF53FABE0F511
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_oLe2BXO0soxZdl8hS6nZZcrgFE.roa
Signing time: Thu 13 Jul 2023 12:35:51 +0000
ROA not before: Thu 13 Jul 2023 12:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.224.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
62.76.234.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:40:27:a0:a2:41:46:53:39:7b:f5:3f:ab:e0:f5:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 13 12:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe82ded815ced2ca3165d97c852ea765972b8051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:5e:9e:d3:b6:63:46:5b:9f:da:00:5c:bc:
28:a7:fe:3a:7b:69:da:4c:40:5a:29:58:8e:36:5f:
19:c7:dd:04:7b:6b:02:02:63:a2:68:ba:1f:79:17:
35:68:30:5d:e9:85:6f:ae:d9:94:00:ba:f3:85:e2:
ef:5a:d5:88:a4:c6:f2:94:ca:e1:66:cb:9a:ee:da:
3e:f2:7a:50:bb:2b:3f:23:c9:f1:ac:fc:c4:fb:69:
62:ea:49:d2:79:8a:88:50:58:66:c5:eb:c9:19:4f:
a3:00:52:fc:70:59:6c:9a:41:61:1a:f2:45:35:51:
7a:d5:cd:69:72:16:84:94:e0:36:8b:46:30:3f:10:
69:7f:5d:66:02:07:75:63:cd:cd:db:97:a0:66:5a:
f2:c7:a7:5f:de:a7:aa:0e:a8:ca:66:c6:c1:09:8b:
ea:10:88:b7:ed:42:6c:cd:4d:8a:45:68:82:1a:b9:
84:c5:e0:d0:31:7b:05:e5:2f:6e:33:4d:79:8b:52:
87:27:bc:66:48:25:ab:94:2e:1e:d2:78:65:09:f5:
51:87:03:fe:fd:94:13:4e:22:b3:bc:70:0e:d2:b6:
f4:42:02:26:2d:e6:df:2a:1a:1a:55:57:02:2f:16:
33:dc:bc:9a:40:e8:ad:09:f6:3d:f2:8a:67:54:ba:
5f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:82:DE:D8:15:CE:D2:CA:31:65:D9:7C:85:2E:A7:65:97:2B:80:51
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_oLe2BXO0soxZdl8hS6nZZcrgFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.224.0/24
62.76.234.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.68.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
212.192.12.0/24
212.192.15.0/24
212.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c9:9c:b8:90:90:47:9e:7e:06:25:1e:7b:ad:60:b8:db:c9:
3c:ff:e7:b5:70:b3:be:9c:89:6c:81:68:bb:ad:ec:af:3e:b3:
37:80:73:aa:b8:33:71:de:52:6b:fe:2b:ff:af:39:7d:fe:33:
a1:18:7a:5b:14:b0:a2:94:be:57:1e:7c:ba:e7:b0:09:bf:4a:
56:8a:c4:5a:4f:70:df:c8:11:3f:85:95:1b:34:78:6a:e4:81:
9b:73:f2:2c:fa:c6:bf:78:fe:2b:eb:a9:8b:4b:9f:14:28:90:
dc:2a:ac:b8:8a:6e:f6:2e:a4:e5:25:17:ac:15:5d:7b:fb:2b:
b5:f8:17:d3:d7:41:6c:0b:2d:c2:a4:fe:33:02:4e:fc:b8:0d:
20:8e:4c:77:d9:43:79:64:36:c6:4a:21:ac:d7:e3:dd:c9:90:
85:b4:9e:46:a4:97:60:a9:5b:e3:7b:7d:b2:03:18:6d:b6:01:
ed:91:89:61:10:15:5a:db:cd:c2:44:90:30:b0:61:a2:56:25:
a9:5c:ef:96:f5:0d:6a:21:43:22:c6:bc:51:6b:08:bf:d6:f5:
71:c5:88:75:e1:f8:34:ca:1d:ba:a1:b6:0c:36:b0:ab:17:e7:
b2:9b:24:27:82:ba:67:d9:08:ca:5e:88:4e:9d:04:ab:2d:3b:
f4:d3:88:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 15 09:04:26 2023 by rpki-client on console-ams.rpki-client.org