Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/f3mHTA6hHickK1cAkTx0kUdUBJc.roa
File: f3mHTA6hHickK1cAkTx0kUdUBJc.roa (raw, json)
Hash identifier: sAtSDLIrmhvFnP82E5q1k0wpfl7LALYE1nuKCxCvHM8=
Subject key identifier: 7F:79:87:4C:0E:A1:1E:27:24:2B:57:00:91:3C:74:91:47:54:04:97
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190A716DB374ECBD8FA628BC5C7F8AAE3DE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/f3mHTA6hHickK1cAkTx0kUdUBJc.roa
Signing time: Fri 12 Jul 2024 13:16:51 +0000
ROA not before: Fri 12 Jul 2024 13:16:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44559
IP address blocks: 62.76.227.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
193.124.4.0/24 maxlen: 24
194.87.24.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
195.133.14.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.56.0/24 maxlen: 24
195.133.57.0/24 maxlen: 24
195.133.60.0/24 maxlen: 24
195.133.61.0/24 maxlen: 24
195.133.62.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.217.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 09:50:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a7:16:db:37:4e:cb:d8:fa:62:8b:c5:c7:f8:aa:e3:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 12 13:16:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f79874c0ea11e27242b5700913c749147540497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:06:c1:23:93:57:22:77:e0:de:df:1d:c3:e1:
b0:fe:c9:a2:f7:af:ac:c2:e5:f6:62:fc:8a:99:4e:
39:3c:a9:6b:eb:e9:8a:e8:84:76:83:83:ea:3b:47:
c3:50:d7:6f:18:97:16:f0:e0:43:1b:da:a4:af:c5:
a4:ce:c5:94:62:a7:d3:8c:d8:c7:60:c3:54:d5:52:
0e:64:1e:57:ec:f3:0b:54:00:98:c8:86:da:79:b4:
20:8a:ed:4a:b5:ed:68:b6:f5:cc:4c:20:b8:69:57:
f5:b5:f3:5b:15:4d:78:1b:aa:b1:f4:51:4b:26:fb:
31:3b:f6:e8:27:47:9a:60:73:06:f1:04:32:70:e1:
b4:e3:df:3d:9b:e3:6a:38:3a:1c:6e:a0:5c:fd:b6:
9f:17:ef:dd:bf:58:5b:1d:c7:ea:0e:b3:9e:c8:93:
61:03:ad:f4:eb:79:e7:43:0a:cc:c6:af:51:a1:2d:
4f:7c:84:c3:c4:10:a1:18:7f:cd:d6:20:41:ed:69:
4d:47:dc:6f:b1:ba:a8:e6:ab:3d:bb:57:ec:c8:be:
22:68:c5:66:c8:48:2c:89:fe:3a:b0:24:9e:75:b3:
ee:60:f3:6a:8c:75:c9:44:95:97:d0:f7:09:26:1f:
08:4a:c6:be:11:68:25:54:95:e3:ce:eb:44:1d:99:
57:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:79:87:4C:0E:A1:1E:27:24:2B:57:00:91:3C:74:91:47:54:04:97
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/f3mHTA6hHickK1cAkTx0kUdUBJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
185.72.10.0/24
192.124.180.0/22
192.124.188.0/24
192.124.190.0/24
193.124.4.0/24
194.87.24.0/24
194.87.26.0/23
194.87.33.0/24
194.87.76.0/24
194.87.90.0/24
194.87.178.0/24
194.87.224.0/24
194.87.229.0/24
194.87.231.0/24
194.135.33.0/24
195.133.14.0/24
195.133.31.0/24
195.133.35.0/24
195.133.56.0/23
195.133.60.0-195.133.62.255
195.133.94.0/24
212.192.8.0/24
212.192.217.0/24
212.192.242.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c1:f2:98:a2:28:5b:4e:2f:10:20:d7:e6:6f:89:d0:02:05:
63:da:06:6f:ab:e1:73:cc:0b:83:40:a9:46:9a:47:30:d1:55:
1a:3f:aa:7a:91:33:dc:7c:73:98:c5:5b:48:d9:9f:c4:5b:2b:
35:46:58:88:ba:4d:c4:ed:c8:32:45:3c:be:bc:22:f2:6a:71:
27:6b:f1:d7:5e:6a:4f:4b:88:e4:c1:ff:3a:87:f1:24:e8:01:
78:90:26:d8:68:99:0a:9e:f1:89:86:f3:bd:bb:a0:ff:ec:dd:
a4:9f:fd:88:35:fc:1d:28:3c:6c:6d:89:58:39:7c:e8:6b:c4:
9c:e5:ef:81:06:f5:00:0c:e5:f9:ee:f5:35:dd:fe:71:d2:ad:
d8:e4:99:60:54:6b:f5:49:e4:2d:5c:43:8e:d5:d4:bc:02:0c:
07:77:0c:87:28:57:d7:1f:a9:75:dc:82:e2:45:75:bb:a9:f0:
15:8d:be:bd:7c:0d:3a:c8:80:36:b9:e0:a1:5a:72:5c:07:a7:
16:be:ad:20:fe:a6:2c:af:03:0a:b4:37:01:e5:2e:20:ab:72:
df:ec:cb:8e:2d:1f:d6:5c:05:f1:9d:60:32:c0:1a:38:12:24:
cf:52:c5:46:57:33:f4:b8:c7:50:b8:dd:cf:55:70:01:97:9b:
72:ac:77:4e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Aug 20 13:32:11 2024 by rpki-client on console-ams.rpki-client.org