Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dDC_yC19Z8fQ5twxjEBga7rlQVI.roa
File: dDC_yC19Z8fQ5twxjEBga7rlQVI.roa (raw, json)
Hash identifier: 36HpUUlAAU26Y855b3dXVdqAglXMwPBqwzthjsYQ18c=
Subject key identifier: 74:30:BF:C8:2D:7D:67:C7:D0:E6:DC:31:8C:40:60:6B:BA:E5:41:52
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CD0168E5675271CDA250012C3CA723E16
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dDC_yC19Z8fQ5twxjEBga7rlQVI.roa
Signing time: Wed 03 Jan 2024 16:09:48 +0000
ROA not before: Wed 03 Jan 2024 16:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 212.193.12.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
195.58.63.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d0:16:8e:56:75:27:1c:da:25:00:12:c3:ca:72:3e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 3 16:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7430bfc82d7d67c7d0e6dc318c40606bbae54152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:69:fa:42:d6:62:a3:46:2f:63:16:50:23:
d9:cb:9c:88:d4:4d:8e:2f:fe:8a:3c:b8:82:c8:7a:
18:12:0f:a7:cf:33:4b:f5:2f:e6:2e:d9:47:b4:bf:
d4:5e:dd:11:ae:6b:ff:1f:bf:19:b0:7d:3e:86:d6:
d1:03:a1:f9:ed:69:43:ab:07:48:02:21:97:99:5e:
a0:5a:26:58:56:a2:7b:17:0b:9a:dc:18:a6:d3:e5:
09:bd:74:0b:0d:1c:ee:09:4f:73:8f:41:e5:12:6f:
da:17:9c:20:6c:a0:cb:94:7c:d4:ac:14:55:aa:20:
64:3d:61:bf:dd:59:9e:b3:3b:d8:2f:06:77:54:9f:
bf:03:74:de:b9:ad:0a:df:45:e4:b7:42:88:51:e0:
51:96:19:fc:37:8b:5e:dd:fb:65:1f:37:d0:30:d0:
ce:ea:41:44:27:ce:1d:63:22:ce:48:90:bf:66:21:
69:7a:2c:a8:85:83:ca:7a:2a:0d:c1:7a:a9:f3:45:
7c:f0:47:19:63:7d:dd:0c:65:ba:bc:bf:e0:38:1f:
35:0d:02:d0:97:ea:46:48:85:cf:56:6a:85:70:97:
7e:c9:d8:51:00:84:89:2c:21:2e:f2:1a:2b:74:b9:
d2:a7:63:b6:17:b6:1a:3f:a8:5b:f8:13:a6:23:52:
cc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:30:BF:C8:2D:7D:67:C7:D0:E6:DC:31:8C:40:60:6B:BA:E5:41:52
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dDC_yC19Z8fQ5twxjEBga7rlQVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.47.0/24
193.124.95.0/24
194.87.26.0/24
194.87.128.0/24
194.87.170.0/24
194.87.224.0/24
194.87.229.0/24
194.135.33.0/24
195.58.54.0/24
195.58.63.0/24
195.133.84.0/24
212.192.1.0/24
212.192.214.0/24
212.192.222.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
57:7e:8a:2e:ed:88:7c:93:83:0f:ba:96:5a:ae:5b:bd:f2:16:
c4:de:78:6c:de:49:2b:a9:89:4e:af:eb:c5:2f:6f:8c:f5:a9:
9c:a4:a0:63:99:3c:59:c9:4c:ed:2b:3b:35:36:be:3a:08:7a:
c6:8c:60:f7:db:fd:8f:29:35:38:51:e4:ee:14:bf:4a:1d:e9:
49:5c:b7:d1:fb:70:ab:6e:30:46:f3:c3:27:69:cc:03:48:c5:
7b:ff:e5:2b:79:b3:bd:be:a9:e2:39:71:42:a8:42:db:c6:a5:
61:e4:d5:f8:14:0f:38:40:b9:b0:0f:0a:44:a2:aa:ef:fe:2a:
8c:96:a6:9b:e4:b5:54:6c:58:a8:a9:e0:48:ed:0b:99:11:1b:
ad:c8:a6:5a:98:fa:11:31:c8:f3:50:a8:d9:2f:4e:8e:92:80:
f5:59:50:21:58:3f:0b:37:c1:9a:a7:d4:13:d1:26:75:80:1a:
92:b8:69:95:ef:f8:4f:ed:49:60:e8:5e:46:48:23:39:70:94:
a1:1b:0c:27:d4:7b:2e:69:97:bc:85:85:52:ac:7a:ba:13:34:
2a:f3:d4:29:dd:b6:74:21:72:73:83:e7:b8:11:a0:77:ca:5f:
c5:ff:aa:74:b9:a5:05:07:6f:cc:79:a6:62:3d:c7:5e:5b:58:
13:cd:da:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 08:48:36 2024 by rpki-client on console-ams.rpki-client.org