Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dVXciielGlQIojh0VtvzMijE82o.roa
File: dVXciielGlQIojh0VtvzMijE82o.roa (raw, json)
Hash identifier: o8i6YdRDLaIujO9B6JYRl9X6oYnrtlCnxyFEGLYOsHo=
Subject key identifier: 75:55:DC:8A:27:A5:1A:54:08:A2:38:74:56:DB:F3:32:28:C4:F3:6A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018896DF8A12AFA080AFF9ECDDA713E8A0D9
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dVXciielGlQIojh0VtvzMijE82o.roa
Signing time: Wed 07 Jun 2023 17:20:12 +0000
ROA not before: Wed 07 Jun 2023 17:20:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 194.87.205.0/24 maxlen: 24
62.76.224.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
194.87.246.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:df:8a:12:af:a0:80:af:f9:ec:dd:a7:13:e8:a0:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 7 17:20:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7555dc8a27a51a5408a2387456dbf33228c4f36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1d:6a:88:f8:8b:32:e3:ba:87:36:fd:70:f0:
5a:67:95:ae:43:db:94:9f:72:04:c3:04:f8:33:78:
36:3f:ea:f5:fd:52:0b:6d:e3:05:3f:e6:b8:a5:fd:
54:79:f0:e2:94:00:d6:ed:6d:0e:81:a4:7d:b7:f4:
45:e3:36:85:52:cf:20:6f:79:dc:61:79:e5:f8:ec:
49:e0:36:5a:53:7c:39:82:14:2f:61:77:fc:c0:19:
26:53:ea:5c:3e:3e:a0:fe:ba:84:c2:9f:8b:4c:21:
2e:11:73:8f:d4:15:55:da:f1:d4:9d:b0:51:7a:ea:
f4:70:21:27:43:ea:71:9c:5f:39:5a:ea:e5:95:73:
f4:ec:46:ac:88:4e:8b:5f:9b:17:d8:98:75:82:6c:
7b:4e:35:19:4b:d5:71:09:94:f1:2d:bc:b7:ce:fb:
2b:73:e7:e1:ff:a3:b4:56:25:98:b9:c9:d9:90:a4:
d6:b9:49:12:bc:1c:cc:21:a6:07:79:93:e7:43:6c:
45:1d:99:ae:cd:69:6e:11:9e:e3:89:9f:d6:ca:51:
aa:73:af:ef:40:87:98:03:59:89:3e:60:37:ea:4f:
f1:d3:80:3f:f0:3f:82:da:9f:02:86:d0:a9:15:5c:
28:26:8e:00:af:79:ef:74:ac:ba:01:c6:d4:ec:e4:
48:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:55:DC:8A:27:A5:1A:54:08:A2:38:74:56:DB:F3:32:28:C4:F3:6A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dVXciielGlQIojh0VtvzMijE82o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.224.0/24
193.124.46.0/24
194.58.44.0/24
194.87.170.0/24
194.87.205.0/24
194.87.246.0/24
195.133.85.0/24
Signature Algorithm: sha256WithRSAEncryption
77:e5:bf:dc:44:4a:84:dd:d5:5d:e0:aa:e9:e0:ec:d9:4f:da:
48:9a:97:5f:ea:fb:68:8c:9e:97:55:db:5b:73:37:6f:44:84:
da:d2:70:d9:3c:18:51:54:98:6e:c0:1c:53:af:de:52:65:72:
55:00:5d:79:a4:c7:07:a5:25:c2:e4:97:ad:db:53:d4:57:09:
46:d1:75:39:f3:13:b4:e1:a1:e6:fe:cf:83:b4:5a:15:68:6e:
d1:23:68:97:f3:e0:83:33:64:b7:00:92:d0:2a:b7:f2:f3:81:
fd:af:24:16:a6:d0:50:20:55:35:8d:3d:b6:dc:2f:fd:8d:a5:
d4:4e:f5:ec:17:30:6c:19:7d:ac:d0:2e:a8:fe:35:8e:ee:42:
64:55:0f:91:61:18:31:80:1b:b1:76:21:fa:d4:d1:bf:76:0a:
46:eb:b2:b5:91:23:54:6a:f2:54:98:fe:3b:ec:97:87:95:63:
73:dc:b8:78:15:5c:f0:3b:6f:4e:a9:ae:cc:f3:6c:2d:be:6b:
26:3e:8c:6c:47:a4:cd:17:66:73:35:20:95:1f:90:9c:1f:6f:
56:9d:01:34:65:03:3c:03:69:dd:62:3c:e1:52:d4:d3:81:c1:
34:73:04:3d:01:2b:88:92:41:46:59:02:64:6d:42:27:da:d9:
fb:f5:2e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:08 2023 by rpki-client on console-fra.rpki-client.org