Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eVPW7FocwF7rDAmV9B4MIoUkhDw.roa
File: eVPW7FocwF7rDAmV9B4MIoUkhDw.roa (raw, json)
Hash identifier: yS6dv3PTampyKXLY8vCIZfLVBCvPA+sQrEFbwXnURSo=
Subject key identifier: 79:53:D6:EC:5A:1C:C0:5E:EB:0C:09:95:F4:1E:0C:22:85:24:84:3C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01880090CD11B05AD7A44A033628A329DC35
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eVPW7FocwF7rDAmV9B4MIoUkhDw.roa
Signing time: Tue 09 May 2023 12:51:09 +0000
ROA not before: Tue 09 May 2023 12:51:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213035
IP address blocks: 212.193.31.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
212.193.29.0/24 maxlen: 24
212.193.28.0/24 maxlen: 24
195.133.16.0/24 maxlen: 24
212.192.218.0/24 maxlen: 24
212.192.216.0/24 maxlen: 24
195.133.17.0/24 maxlen: 24
195.133.13.0/24 maxlen: 24
212.192.219.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
195.133.37.0/24 maxlen: 24
212.192.240.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
212.192.243.0/24 maxlen: 24
195.133.42.0/24 maxlen: 24
195.133.43.0/24 maxlen: 24
194.87.84.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 11:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:90:cd:11:b0:5a:d7:a4:4a:03:36:28:a3:29:dc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 9 12:51:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7953d6ec5a1cc05eeb0c0995f41e0c228524843c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9d:63:68:2c:de:98:c6:48:f1:e0:87:ce:39:
a8:1f:c9:96:48:9d:1e:ea:af:bd:50:84:a1:a0:c7:
c8:aa:82:41:00:2a:79:9e:5a:f8:83:08:b6:60:ec:
16:d4:cd:61:9f:17:17:df:7c:23:92:d7:03:0c:01:
85:59:49:52:c7:bc:a0:36:49:cc:8e:25:7d:20:d2:
e7:73:69:f7:39:85:43:da:9f:ac:8c:8b:16:85:46:
3c:85:57:cd:ca:2e:bb:40:af:b8:92:01:d1:58:aa:
d2:66:d4:cd:b6:90:51:33:4a:e3:fe:dd:30:71:4a:
39:b5:5c:19:07:7d:34:1a:39:97:cf:cf:e0:ce:17:
59:b0:d8:91:5e:08:4f:5a:fd:a5:66:68:b8:91:1f:
8e:b3:da:8b:5a:c4:3f:97:1c:90:c6:eb:16:00:35:
f1:7d:00:4f:dd:17:65:1d:6f:87:bc:85:45:df:07:
d7:0a:35:51:d9:bf:68:72:66:cc:41:84:96:ed:43:
06:3f:2c:03:1a:95:80:84:94:60:58:84:ac:78:20:
e7:e9:3c:48:9f:bf:62:78:5d:b5:ab:44:3a:81:9a:
91:d6:33:b6:74:38:8f:a4:cd:52:29:d5:41:22:31:
56:3f:99:a4:99:6a:65:5c:27:7a:2d:33:6d:c8:5a:
a8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:53:D6:EC:5A:1C:C0:5E:EB:0C:09:95:F4:1E:0C:22:85:24:84:3C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eVPW7FocwF7rDAmV9B4MIoUkhDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.188.0/24
193.124.227.0/24
194.87.84.0/24
194.87.86.0/24
195.133.13.0/24
195.133.16.0/23
195.133.37.0/24
195.133.42.0/23
212.192.216.0/22
212.192.240.0/24
212.192.243.0/24
212.193.28.0/23
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b6:0d:63:ba:ad:0e:e5:46:b2:25:a0:d9:df:30:1a:b8:b6:
c0:09:c5:30:47:46:2d:2f:70:c9:91:6c:d5:91:0b:97:51:ed:
c8:e5:2f:a4:28:00:f5:3e:6a:41:ed:1e:d7:57:97:0a:24:88:
66:66:b3:3c:a6:43:50:4c:58:c5:d2:96:9e:af:9e:78:74:0c:
a0:be:74:85:f5:4a:38:a4:38:39:a8:a4:f5:ef:41:e7:57:cc:
e8:fc:c4:43:11:fc:bd:82:f3:dd:0d:cc:53:0d:c4:e5:2f:62:
29:0d:8e:41:ad:15:f7:5c:92:1b:9d:29:bf:c9:85:0f:92:e9:
2b:df:e8:29:58:a1:77:59:b8:5b:bb:7c:96:16:34:93:a3:10:
6f:54:94:27:ed:65:6e:69:51:c4:68:dc:a7:2f:ed:c9:3a:7b:
c4:4a:a6:ce:b2:46:59:f5:de:d5:86:28:0c:ba:66:05:b1:3c:
05:ec:bd:9d:8e:d1:27:5c:57:c5:ca:2e:65:a4:5e:85:6b:cb:
d1:0f:58:65:d9:fc:15:95:af:7f:45:b6:a9:82:b7:1c:e5:98:
77:9e:a2:fc:eb:4c:97:e9:fb:87:25:79:51:1c:e2:2d:57:57:
14:2c:04:f6:97:58:f9:69:c6:82:6e:a8:36:55:45:f0:07:39:
a8:20:69:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org