Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eeA9WhABIK-BCksYjSC012u4msk.roa
File: eeA9WhABIK-BCksYjSC012u4msk.roa (raw, json)
Hash identifier: 4dxjPO/twtXzx7qBRs3sWwcBKZSm9AvlKzk4pzci7Hg=
Subject key identifier: 79:E0:3D:5A:10:01:20:AF:81:0A:4B:18:8D:20:B4:D7:6B:B8:9A:C9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190C18E6AB4DF914D84BC36201C9596E163
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eeA9WhABIK-BCksYjSC012u4msk.roa
Signing time: Wed 17 Jul 2024 16:37:34 +0000
ROA not before: Wed 17 Jul 2024 16:37:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 192.124.191.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.88.0/24 maxlen: 24
194.87.89.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.142.0/24 maxlen: 24
194.87.150.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.185.0/24 maxlen: 24
195.133.2.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.29.0/24 maxlen: 24
195.133.42.0/24 maxlen: 24
195.133.43.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 09:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:8e:6a:b4:df:91:4d:84:bc:36:20:1c:95:96:e1:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 17 16:37:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79e03d5a100120af810a4b188d20b4d76bb89ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:04:fb:b1:dc:a8:e2:e1:12:7f:ed:45:63:7f:
66:0e:f7:02:9c:ca:40:2b:90:0d:47:89:98:7d:d2:
c2:64:b1:6a:d4:25:7d:f1:08:50:24:84:da:6b:9c:
5d:ab:a5:c1:1e:2e:d3:de:47:57:90:64:08:3c:3f:
f4:ad:9d:8d:12:d0:c3:f8:1b:4d:a7:38:03:7c:53:
48:3c:67:88:f0:c4:18:4f:7d:0f:28:b5:fa:e8:e8:
e6:4c:e0:fe:04:a1:3c:fc:8c:5e:59:c9:12:f1:72:
3f:75:34:80:db:39:63:c0:fe:af:9c:45:c2:44:75:
43:6d:00:a2:9f:bc:ec:93:ce:4d:cc:c9:6a:5e:38:
c0:b9:43:65:71:88:e2:37:7a:fc:3d:b3:7f:85:0a:
e5:43:19:30:6a:a7:80:a2:86:34:de:fd:9c:23:2a:
bb:00:83:9c:d9:cf:6b:26:64:64:f1:6f:e7:e4:12:
80:75:82:07:eb:b9:ed:1c:b3:c6:a3:b8:a2:f4:3f:
92:8e:a1:50:5c:21:d4:16:40:7f:91:11:3f:30:aa:
2f:d0:3b:67:0d:7f:67:25:1c:b4:52:0c:0c:6d:91:
db:6e:da:9a:04:6e:85:0d:c5:f0:45:08:64:32:21:
f9:68:e0:f4:99:bb:0a:2d:c6:ac:f2:64:22:7c:8a:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E0:3D:5A:10:01:20:AF:81:0A:4B:18:8D:20:B4:D7:6B:B8:9A:C9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eeA9WhABIK-BCksYjSC012u4msk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.191.0/24
193.124.5.0/24
194.87.12.0/24
194.87.22.0/24
194.87.32.0/24
194.87.40.0/24
194.87.86.0/24
194.87.88.0/23
194.87.108.0/24
194.87.124.0/24
194.87.136.0/24
194.87.142.0/24
194.87.150.0/24
194.87.169.0/24
194.87.185.0/24
195.133.2.0/24
195.133.6.0/24
195.133.29.0/24
195.133.42.0/23
195.133.72.0/24
195.133.85.0/24
195.133.192.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:3e:e9:b7:b3:af:47:f7:9f:e4:36:5b:c9:f5:84:30:6c:fb:
81:64:28:5c:2a:e3:80:8d:e4:91:fb:c7:e1:06:68:57:89:50:
2b:83:72:d7:65:35:92:49:c6:61:68:44:b0:96:e9:88:84:13:
44:7c:69:54:03:a9:5b:16:7f:73:f5:d2:5c:a0:fb:75:7e:b9:
1e:a5:b7:68:73:e0:5a:51:5f:12:50:e2:bb:4a:58:74:d9:22:
07:8b:02:23:49:13:f3:4b:60:2b:62:cc:de:b3:a2:e4:36:cd:
56:91:0d:6e:46:14:ca:8d:75:8d:26:26:15:68:af:ab:5b:76:
5d:50:68:61:b3:47:f5:bc:60:12:db:2d:01:5f:e9:19:ec:d9:
90:e1:e7:c9:a3:ff:54:48:e0:09:ca:09:9d:c4:9b:c7:ce:a9:
b1:61:d0:cb:5b:d6:af:29:2b:ce:ea:d5:d8:00:81:bf:1d:32:
8c:15:d4:39:48:9f:92:3b:f8:2f:54:72:d5:78:1d:5a:03:5d:
9e:20:16:16:82:1c:38:6d:36:6b:b4:6e:02:fe:c9:26:1e:32:
dc:26:eb:a5:c1:64:bc:b2:48:4d:b4:1a:85:03:89:08:d2:f0:
23:29:b8:1e:ac:ae:b4:98:1c:71:f2:91:58:be:20:94:ad:db:
a8:a9:30:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 12:01:26 2024 by rpki-client on console-fra.rpki-client.org