Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e1bfWX6I2EcwTlxM5Ee6X-wE0BQ.roa
File: e1bfWX6I2EcwTlxM5Ee6X-wE0BQ.roa (raw, json)
Hash identifier: L2n2QqVXNyiyu0JkP+p4238d9Y6kXffAQJ5ZajmRYUM=
Subject key identifier: 7B:56:DF:59:7E:88:D8:47:30:4E:5C:4C:E4:47:BA:5F:EC:04:D0:14
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01899148FD22C0A8D0D94684788D62675720
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e1bfWX6I2EcwTlxM5Ee6X-wE0BQ.roa
Signing time: Wed 26 Jul 2023 08:20:26 +0000
ROA not before: Wed 26 Jul 2023 08:20:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 62.76.226.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
194.87.188.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:48:fd:22:c0:a8:d0:d9:46:84:78:8d:62:67:57:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 08:20:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b56df597e88d847304e5c4ce447ba5fec04d014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5a:82:43:23:c0:ba:64:80:4c:66:b4:8d:8c:
33:82:a1:df:73:c5:8b:dc:c9:07:65:89:58:d2:be:
d2:57:9f:03:39:b2:da:48:45:33:de:1c:b6:15:4f:
1b:2a:35:cc:62:75:71:18:ec:63:30:62:82:64:a4:
75:bb:24:e7:e1:20:62:41:aa:67:58:da:1e:a4:c0:
de:7a:df:b0:65:e7:98:f0:1b:9a:e9:4e:e2:61:a5:
cd:85:b1:8a:92:53:e0:41:9c:b4:8d:21:29:1e:c3:
ce:98:22:d8:99:cd:94:ec:a4:14:b1:97:b7:27:84:
ab:2d:01:e1:94:16:98:c7:f9:71:00:20:4d:42:e4:
d7:77:2f:b3:75:7b:e9:76:a9:30:fa:03:b3:46:e9:
08:96:1c:86:a4:f5:de:f7:a5:0e:49:16:87:ee:9f:
cb:bc:7f:c0:47:77:b9:20:92:21:3b:71:31:a4:36:
03:fc:79:49:fc:77:0a:55:a5:d6:20:cc:7a:d7:38:
a3:97:9b:65:9b:ff:8d:6e:5b:96:6a:f2:6e:57:d4:
6f:e2:6f:93:08:31:90:44:dd:04:c0:a6:fe:09:67:
eb:de:1c:43:e9:b4:49:86:09:d5:c4:41:a4:45:f3:
ce:b7:45:b6:4c:99:e1:ab:af:9b:39:0f:eb:56:02:
af:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:56:DF:59:7E:88:D8:47:30:4E:5C:4C:E4:47:BA:5F:EC:04:D0:14
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e1bfWX6I2EcwTlxM5Ee6X-wE0BQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
194.87.34.0/24
194.87.42.0/24
194.87.86.0/24
194.87.91.0/24
194.87.104.0/24
194.87.117.0-194.87.118.255
194.87.188.0/24
195.58.56.0/24
195.58.59.0/24
195.58.61.0-195.58.62.255
195.133.84.0/24
Signature Algorithm: sha256WithRSAEncryption
80:35:03:32:a2:d8:ca:99:ca:f1:0f:9e:0f:2d:da:99:a0:b5:
d2:08:ca:da:e9:dc:c9:df:ea:c4:61:65:27:f3:66:9f:e1:08:
38:2f:48:3b:d0:38:0a:22:b6:7f:fb:06:87:87:ae:10:ec:f8:
6e:65:89:67:aa:44:cd:72:60:8a:33:01:d0:dd:98:0d:8a:37:
3b:d9:5b:0e:51:a7:94:cf:ee:2b:7c:fe:5d:7a:33:b8:a3:75:
0e:11:65:0b:73:56:1b:b5:25:e1:e1:66:35:89:1c:61:f7:05:
0a:cb:4c:4a:73:9c:ac:01:6f:f3:62:fd:cf:24:d8:8b:f7:47:
0e:cd:46:a4:b8:c3:3e:5c:91:fd:bf:11:be:29:97:c1:67:66:
37:ec:9b:31:9e:fd:ee:57:86:ab:0b:8e:b9:ed:d1:24:82:18:
91:5f:49:14:95:98:08:42:e3:93:f5:1b:61:a7:5e:ca:13:f4:
d7:3a:2a:f8:74:50:8e:93:87:3a:57:56:2c:20:b5:22:6c:23:
20:c1:cb:c0:8f:ff:72:e5:ae:35:1b:ef:8a:2a:7a:ea:6a:39:
fc:2e:56:8d:86:3d:ec:9e:3e:5f:db:9a:36:54:3c:36:53:11:
d8:56:ef:a7:b0:d5:f5:64:0c:a0:bb:0c:4a:e4:89:42:ee:58:
e1:fc:b2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 27 15:15:21 2023 by rpki-client on console-ams.rpki-client.org