Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dZF2WVo-z7-oDb766359k68QKH4.roa
File: dZF2WVo-z7-oDb766359k68QKH4.roa (raw, json)
Hash identifier: HN+46yCLU7df+IuMMWt0p3csj3y1gd0EdDKg7KpqTdU=
Subject key identifier: 75:91:76:59:5A:3E:CF:BF:A8:0D:BE:FA:EB:7E:7D:93:AF:10:28:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018AE1A8555818DE2A9925033E0ECB64052B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dZF2WVo-z7-oDb766359k68QKH4.roa
Signing time: Fri 29 Sep 2023 15:57:00 +0000
ROA not before: Fri 29 Sep 2023 15:57:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.224.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
62.76.234.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 06:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:a8:55:58:18:de:2a:99:25:03:3e:0e:cb:64:05:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 29 15:57:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=759176595a3ecfbfa80dbefaeb7e7d93af10287e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:98:9c:5b:0a:39:05:ee:07:c0:e8:06:92:14:
4e:e8:1e:28:56:a3:1f:65:68:1f:d5:e9:cf:fb:eb:
19:11:83:d0:f6:a7:5d:40:66:8a:bf:06:f5:0c:bf:
02:5c:8c:71:50:d2:91:d4:a4:8d:3d:e6:9a:91:52:
d3:6b:6c:de:d3:07:e6:44:4b:7f:ac:d1:4a:04:b7:
23:41:6e:75:2e:82:71:48:81:a3:aa:90:85:37:2f:
e1:b1:a2:5b:0e:c3:4c:24:27:75:63:f7:2e:79:e7:
a4:81:5d:8e:7f:e6:26:1f:ca:cb:6d:1b:00:bd:1a:
fb:22:65:7d:41:e5:57:2a:79:af:06:2b:87:c3:49:
41:f4:e8:f8:4c:51:70:f0:4f:8b:72:81:6b:c2:a1:
6e:1a:e1:24:73:4d:e7:a8:e8:bc:ae:56:f1:fb:da:
26:55:35:69:19:5b:61:3a:e1:23:27:de:0d:ad:07:
6e:4b:04:76:94:67:6d:a7:f5:98:ca:87:8f:0e:27:
ed:60:fc:7b:e5:cb:fd:ff:68:24:25:23:b5:f6:ed:
00:7f:7e:b1:9e:62:65:6c:e0:5e:86:34:e5:30:4c:
d8:fa:71:94:7c:75:ed:c5:4d:98:0c:71:a5:ae:a5:
c8:60:1b:91:6e:3b:3b:59:81:21:dd:2f:54:95:fe:
c8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:91:76:59:5A:3E:CF:BF:A8:0D:BE:FA:EB:7E:7D:93:AF:10:28:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dZF2WVo-z7-oDb766359k68QKH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.224.0/24
62.76.234.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.68.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.227.0/24
212.192.12.0/23
212.192.15.0/24
212.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ee:19:89:c8:32:70:8e:f7:c4:4d:ff:21:79:56:14:a5:74:
0c:96:05:fa:8b:f1:ed:5d:0f:5b:9c:96:38:cc:61:8c:83:09:
fd:09:96:af:7b:0d:d4:20:f8:16:7e:b9:01:0e:d8:37:41:bf:
cf:49:eb:90:4c:d1:3f:ab:31:c7:4c:66:80:c6:09:f2:c6:b9:
d5:04:ca:10:f4:5d:ba:9d:16:46:bb:47:a6:20:27:cc:5e:90:
18:48:28:85:d5:93:5a:0f:59:3e:30:67:09:8f:f0:96:7d:d3:
74:24:de:77:e8:a4:4c:a6:74:2b:01:4d:1e:50:51:bf:8f:c0:
12:4e:c1:d9:bc:6b:a3:63:06:17:9c:6f:a4:32:90:62:81:46:
e2:48:55:fa:64:da:3f:20:d4:4c:51:c4:17:17:72:fe:fd:4b:
75:60:30:ad:32:14:ff:37:53:eb:ba:64:c5:6c:f0:c7:90:f2:
47:c6:98:f6:d7:62:0b:cd:46:d3:1a:2d:7c:90:e8:8b:2e:5a:
ad:2b:6b:9a:d4:b1:95:a2:16:21:f3:79:b6:60:f9:22:1c:87:
54:54:dc:b0:eb:65:0f:93:b3:95:25:4e:f9:da:62:52:2a:6f:
5d:19:5b:0d:5b:6e:fb:a6:d0:68:f1:d1:3e:a1:60:32:17:22:
b3:f4:0e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org