Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e506fPbkhPiTtq6koP8_VdfZHAM.roa
File: e506fPbkhPiTtq6koP8_VdfZHAM.roa (raw, json)
Hash identifier: h142KzFXO1e5oMnAe6U7mwCPUKTbxM/Z2/n0zCwG/Kk=
Subject key identifier: 7B:9D:3A:7C:F6:E4:84:F8:93:B6:AE:A4:A0:FF:3F:55:D7:D9:1C:03
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189D98F824BE4F125CFFC5A41C459EE2659
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e506fPbkhPiTtq6koP8_VdfZHAM.roa
Signing time: Wed 09 Aug 2023 09:10:08 +0000
ROA not before: Wed 09 Aug 2023 09:10:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.120.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
212.192.0.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
194.87.177.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.188.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 08:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d9:8f:82:4b:e4:f1:25:cf:fc:5a:41:c4:59:ee:26:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 9 09:10:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b9d3a7cf6e484f893b6aea4a0ff3f55d7d91c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cd:ad:8f:7c:7e:92:1b:bf:ae:47:e8:8b:3a:
52:db:25:27:96:c8:99:a1:73:e8:47:19:1e:65:40:
29:e5:ce:24:7a:81:46:9c:b8:27:c8:b4:f1:16:d6:
00:df:a1:d5:04:f9:3c:82:84:1c:ba:0c:4d:65:41:
1b:4b:77:a5:be:9d:d9:79:08:17:53:b6:2c:67:37:
cf:4a:e6:26:28:64:30:da:8d:14:84:1e:52:18:cb:
34:32:c1:29:5d:af:ab:16:e7:8f:b9:ea:6b:80:4e:
e9:e1:05:25:f5:ed:c6:c3:77:5e:81:a9:ad:5b:f1:
24:bd:75:4e:bb:f5:48:6d:2f:f3:67:2f:bf:33:9d:
5d:39:79:12:52:44:70:88:50:d3:db:e5:14:8c:2b:
b4:ec:e9:98:55:3a:cf:c9:dc:3b:e9:d4:fe:70:cb:
56:c2:fd:63:9e:8c:1f:88:d1:77:4f:c6:96:3f:e9:
e4:24:3b:b6:a7:1a:da:14:8c:e4:b9:1d:8e:35:21:
8b:13:0f:eb:f1:a7:5d:53:07:82:00:f7:a5:a9:10:
51:d2:46:43:c9:2a:98:2f:ea:39:74:ae:3e:cf:4c:
3e:80:12:a5:8a:cf:c0:1f:21:cd:a7:bc:2d:7f:fc:
7d:34:aa:be:8f:33:87:81:21:80:ba:11:54:7e:57:
d5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9D:3A:7C:F6:E4:84:F8:93:B6:AE:A4:A0:FF:3F:55:D7:D9:1C:03
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/e506fPbkhPiTtq6koP8_VdfZHAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
194.87.36.0/24
194.87.86.0/24
194.87.91.0/24
194.87.117.0/24
194.87.120.0/24
194.87.177.0/24
194.87.188.0/24
195.58.56.0/24
212.192.0.0/24
212.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
98:81:8d:c7:b8:1d:e1:89:fa:9e:fb:32:57:66:62:35:25:06:
0d:1b:d0:5a:0a:d7:0f:63:2c:88:95:19:cb:fd:50:07:66:51:
70:2f:17:d2:af:73:2a:31:8e:8c:c2:58:67:a3:ad:3d:a4:32:
d3:9b:6f:a9:ff:cf:a4:64:bf:5d:83:10:af:87:e1:89:88:bf:
d6:63:85:53:d0:9c:95:04:df:3f:b4:8f:ab:ed:ad:73:b8:d7:
b6:30:60:51:59:91:2a:05:b4:a5:40:26:f1:18:92:3d:b0:73:
37:41:c1:b5:9c:13:9a:e8:6c:66:57:7a:4c:3d:b1:2b:bd:36:
6c:30:64:a3:ea:99:c3:d5:75:74:56:b2:98:15:da:b7:c1:83:
01:25:1a:64:ed:dc:3f:fa:d7:50:e3:fd:93:5f:0a:8d:91:e6:
55:f9:a0:89:77:82:c9:80:64:53:22:76:52:5f:9e:bd:2e:bf:
5b:a6:64:7a:8c:7c:bf:46:72:6e:67:8b:0c:03:7c:cd:bb:d0:
73:26:21:63:5b:5b:4e:91:1b:9f:2c:66:bc:50:ef:77:a1:5b:
20:7e:d5:17:2e:2b:0d:39:12:33:37:52:18:2f:32:94:16:70:
a3:64:2b:f5:c4:aa:37:93:79:c7:31:e6:9e:9f:3f:d5:ff:d5:
64:da:2c:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org