Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eq2OM84jEo5Jg4fFLBGrmWHDAyk.roa
File: eq2OM84jEo5Jg4fFLBGrmWHDAyk.roa (raw, json)
Hash identifier: 9j3ZYykF9ULCQwqIL9us7JTkaSPSTzDrmauxaqDIQNY=
Subject key identifier: 7A:AD:8E:33:CE:23:12:8E:49:83:87:C5:2C:11:AB:99:61:C3:03:29
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019289F5AD25880FFA5751B013EC6DB96ECE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eq2OM84jEo5Jg4fFLBGrmWHDAyk.roa
Signing time: Mon 14 Oct 2024 07:37:12 +0000
ROA not before: Mon 14 Oct 2024 07:37:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 192.124.180.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
195.133.24.0/23 maxlen: 23
195.133.31.0/24 maxlen: 24
195.133.40.0/23 maxlen: 23
195.133.50.0/23 maxlen: 23
195.133.62.0/24 maxlen: 24
195.133.92.0/23 maxlen: 23
195.133.94.0/24 maxlen: 24
212.192.1.0/24 maxlen: 24
212.193.25.0/24 maxlen: 24
212.193.26.0/23 maxlen: 23
2a01:57c0::/29 maxlen: 29
2a0c:ff40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 14 Oct 2024 15:53:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:f5:ad:25:88:0f:fa:57:51:b0:13:ec:6d:b9:6e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 14 07:37:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7aad8e33ce23128e498387c52c11ab9961c30329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:1d:5b:ef:89:94:c5:30:51:62:69:f3:03:
7f:47:85:c3:74:7e:e2:44:7e:4f:c8:19:4c:13:75:
e6:a8:9b:ce:a1:b1:2d:03:8f:72:a9:7c:aa:01:be:
fc:17:96:24:06:26:97:c5:43:ca:65:03:30:0f:7d:
62:43:3a:28:95:03:66:f5:e0:38:20:cd:8d:e2:8b:
70:4d:f1:97:a4:9c:46:49:1b:17:84:1f:79:ed:eb:
8f:26:e2:eb:df:16:2a:73:ef:01:9a:d4:30:b4:49:
8d:8c:1b:ee:ea:3a:a3:03:53:36:9e:23:88:c7:e7:
ca:3e:30:b3:80:f7:f8:39:aa:75:59:71:a5:d1:c6:
7b:74:18:c3:46:bd:1c:08:60:9e:8f:a3:ec:40:33:
1f:f8:be:27:eb:25:d7:8a:e4:08:3f:e4:01:0f:bb:
90:b0:23:e2:96:5c:19:cc:33:b3:cd:98:9d:18:3f:
c0:a5:21:92:82:0f:09:04:27:07:1f:d3:03:97:5e:
4b:f1:77:18:70:4e:89:14:15:b4:fb:4f:28:e4:22:
62:e9:91:bd:95:69:64:66:bf:f8:b5:6c:63:58:f2:
37:61:12:9e:18:d6:26:a0:c5:60:ff:1d:d1:46:d0:
ed:c3:df:d8:38:b3:fb:64:98:2f:c4:ab:34:7b:c0:
ab:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AD:8E:33:CE:23:12:8E:49:83:87:C5:2C:11:AB:99:61:C3:03:29
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/eq2OM84jEo5Jg4fFLBGrmWHDAyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.180.0/24
194.58.155.0/24
194.87.169.0/24
194.87.178.0/24
194.87.224.0/24
194.135.33.0/24
195.133.24.0/23
195.133.31.0/24
195.133.40.0/23
195.133.50.0/23
195.133.62.0/24
195.133.92.0-195.133.94.255
212.192.1.0/24
212.193.25.0-212.193.27.255
IPv6:
2a01:57c0::/29
2a0c:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
8d:cf:58:fa:6e:8f:52:2c:71:e7:18:56:02:9f:31:1b:18:3c:
47:b9:37:be:85:73:97:a4:41:62:f5:39:26:74:32:d2:e3:52:
4f:71:c6:e9:4f:20:6c:da:3e:37:49:b7:93:46:bd:0f:50:c9:
07:6f:d1:d7:f6:e0:6c:2a:7d:84:52:ee:4e:85:64:e6:ff:07:
14:91:d3:1e:9d:c3:48:e0:66:17:98:f7:9b:f2:4d:09:0e:95:
43:8f:8b:79:bc:dd:7c:85:66:48:42:1b:9f:51:e0:e6:5e:a5:
6f:4e:ed:3f:1e:1b:86:cd:25:54:76:71:ff:ef:2f:cc:b4:6f:
d5:3e:0e:bc:2d:7c:26:46:15:2b:8a:7c:fa:6b:46:c7:44:6a:
59:0b:60:ad:11:70:1a:d1:1a:f3:a8:ba:35:80:8f:92:37:33:
41:15:dd:c2:12:42:e6:06:d7:f9:7d:32:1d:6f:95:b9:9b:ea:
e0:3f:58:cc:16:9b:b8:07:a2:91:ea:8d:39:56:55:21:aa:a4:
7b:25:7e:23:27:7a:1b:06:5d:0c:61:46:cc:a2:85:68:bb:4a:
a5:4c:b4:5e:b8:bb:2b:3e:b2:67:d2:a2:fc:93:a0:a0:bb:30:
b9:e3:41:0a:fb:29:13:26:67:54:4e:5c:be:2f:b6:c5:cf:c6:
61:0a:bb:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 19:24:49 2024 by rpki-client on console-fra.rpki-client.org