Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cp6Hbnrby2M_Y6KBGtg7UuaMPvo.roa
File: cp6Hbnrby2M_Y6KBGtg7UuaMPvo.roa (raw, json)
Hash identifier: zvTzZEtmxFAg+e+5owdY8qAxQtVKF3/w0KsmqxEs/HU=
Subject key identifier: 72:9E:87:6E:7A:DB:CB:63:3F:63:A2:81:1A:D8:3B:52:E6:8C:3E:FA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189F9AA81B7AABB33FCA7D3C3BF4E8DBE29
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cp6Hbnrby2M_Y6KBGtg7UuaMPvo.roa
Signing time: Tue 15 Aug 2023 14:47:28 +0000
ROA not before: Tue 15 Aug 2023 14:47:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 194.87.131.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
194.87.63.0/24 maxlen: 24
192.124.191.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 10:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f9:aa:81:b7:aa:bb:33:fc:a7:d3:c3:bf:4e:8d:be:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 15 14:47:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=729e876e7adbcb633f63a2811ad83b52e68c3efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:02:40:d9:34:53:1e:8c:68:2c:ed:07:c2:ab:
54:7c:2c:d2:a6:0b:d9:ba:c7:d6:5c:bd:7b:ce:70:
27:e9:17:3e:5b:2f:0e:d7:c3:2e:21:d9:c8:45:e3:
0d:60:83:2c:cd:cb:0b:18:e4:84:5d:ab:10:55:b2:
7c:6f:8c:93:03:6d:cd:bf:ee:72:79:1d:84:4f:67:
67:6e:35:10:20:6a:1c:c9:04:0e:7f:56:d2:16:a9:
89:78:68:92:9a:dd:21:b8:ec:43:3d:ce:02:c4:f2:
c1:8f:d3:c4:8e:26:22:fd:4f:47:ce:cc:b2:fe:02:
25:1f:4f:51:6b:29:09:1f:f1:79:4e:8b:8d:82:b4:
1c:21:66:f4:31:33:9c:f6:33:0b:c3:ae:f5:3b:4d:
f2:42:d6:e0:9f:f7:6e:71:b7:ea:1a:d3:6c:2c:74:
55:54:9a:37:f6:3a:88:03:ed:3c:fa:7f:40:04:0f:
61:9f:97:93:6a:9d:d0:82:4c:df:35:3e:85:a7:a4:
12:b8:02:cc:10:db:b2:18:62:e0:4e:bc:c9:4a:c8:
51:94:c8:c5:00:59:a8:44:59:0f:32:b8:34:ed:bd:
42:c2:f4:d6:98:ad:64:90:9a:a9:ac:fa:b5:2a:47:
b5:26:66:1d:be:7b:98:84:46:3e:b9:88:59:f7:44:
0b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9E:87:6E:7A:DB:CB:63:3F:63:A2:81:1A:D8:3B:52:E6:8C:3E:FA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cp6Hbnrby2M_Y6KBGtg7UuaMPvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.191.0/24
194.58.67.0/24
194.87.34.0/24
194.87.63.0/24
194.87.131.0/24
Signature Algorithm: sha256WithRSAEncryption
72:eb:cb:c9:e6:d8:00:d7:83:ef:5c:2e:e4:31:b1:1a:1b:b3:
4a:bb:81:54:ba:a8:42:3a:89:9a:1a:47:44:7e:0e:30:d9:ff:
5a:9d:86:13:d3:f5:ca:88:9c:e5:98:25:21:f2:d7:19:10:69:
59:d2:7d:1f:2c:dc:12:4a:88:52:fa:a6:75:28:4c:34:c5:e7:
e1:31:bd:42:26:e7:bc:f6:35:3c:1b:de:b4:f5:ec:ce:c0:6a:
d4:4d:00:aa:9f:db:d8:b5:59:cf:ec:51:7b:af:b9:f2:2e:b3:
88:00:85:a0:37:4a:0c:ef:8c:50:6b:e5:8e:c2:9c:db:b9:be:
e7:8c:7c:e3:d8:b0:6d:40:63:10:df:72:df:b9:0b:32:ec:11:
c7:38:e8:97:a6:0b:91:66:94:ae:f0:aa:64:67:e9:95:5f:ae:
de:c8:2e:77:e4:01:20:d1:e8:fe:af:7e:93:9f:42:4a:e7:0f:
4e:74:a4:08:63:3a:50:db:5d:a3:67:90:8a:72:0f:ff:3f:0a:
d3:55:80:8b:89:97:e1:ea:d8:9e:11:85:3b:16:62:e9:4d:84:
39:79:21:40:1f:e5:b7:63:6d:ab:04:50:9b:58:cf:8e:d2:32:
16:84:67:fd:fd:f3:47:cf:40:4e:aa:b4:2c:ae:f1:2a:87:4e:
7b:25:6c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org