Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fA2lgzD9sCyd6hN5KtX8bQ7HLMc.roa
File: fA2lgzD9sCyd6hN5KtX8bQ7HLMc.roa (raw, json)
Hash identifier: Cnno6s9HwZl1imkavtDYTC1v2oaXBTL1x2qGnhJfpcs=
Subject key identifier: 7C:0D:A5:83:30:FD:B0:2C:9D:EA:13:79:2A:D5:FC:6D:0E:C7:2C:C7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189400142B63D09EDC2498107DEA27D1D97
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fA2lgzD9sCyd6hN5KtX8bQ7HLMc.roa
Signing time: Mon 10 Jul 2023 13:32:51 +0000
ROA not before: Mon 10 Jul 2023 13:32:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 193.124.227.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
195.133.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 16:39:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:40:01:42:b6:3d:09:ed:c2:49:81:07:de:a2:7d:1d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 10 13:32:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c0da58330fdb02c9dea13792ad5fc6d0ec72cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5a:58:1c:2d:79:18:02:50:ac:86:d6:99:b3:
1e:d3:96:dc:eb:4e:1e:d9:d0:b9:62:7d:59:6a:1c:
f6:2d:b9:2b:45:d8:d7:d1:16:6a:d4:dc:c7:9d:f7:
35:89:fb:de:22:f0:fa:f7:1f:dc:24:9d:e1:82:7b:
ff:b9:24:2b:0f:85:74:dc:b1:65:72:a9:b9:a9:f6:
42:b4:39:b6:fe:2e:2e:db:8c:6f:a5:ed:68:ad:e4:
48:8a:d2:e7:59:48:22:8e:fc:ca:8f:d5:7d:1f:cd:
74:c2:ec:7d:e5:81:ea:13:be:c4:1a:9f:02:d6:11:
28:17:22:87:99:fc:0a:fb:2b:74:70:8d:14:6e:59:
49:9a:ec:c5:9e:08:ed:92:b0:1d:2e:9f:6c:a9:9d:
67:4a:54:59:37:ef:88:73:ec:eb:76:4d:11:60:ac:
ea:6f:86:d6:9a:80:8b:1a:a7:7e:83:b0:cb:a3:8c:
14:f7:6e:69:b9:32:20:47:9a:d0:a4:fa:b2:a3:a2:
58:4d:bc:30:a3:90:51:c9:fa:04:46:81:45:c1:41:
3b:96:f3:c1:db:26:b0:bd:05:5d:86:4f:21:99:2f:
ac:53:2f:0e:b9:ae:e1:01:e7:0c:af:eb:e4:c5:43:
4b:d8:9d:bf:d4:db:06:a8:b7:8d:ec:71:4f:16:79:
de:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:0D:A5:83:30:FD:B0:2C:9D:EA:13:79:2A:D5:FC:6D:0E:C7:2C:C7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fA2lgzD9sCyd6hN5KtX8bQ7HLMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.235.0/24
193.124.49.0/24
193.124.227.0/24
194.87.53.0/24
194.87.160.0/24
194.87.243.0/24
194.135.23.0/24
194.135.46.0/24
195.133.37.0/24
Signature Algorithm: sha256WithRSAEncryption
00:20:29:54:89:e9:d8:1c:3c:aa:ab:55:42:dd:8f:95:11:db:
8e:ba:03:e1:cd:90:5c:18:0d:9e:27:07:01:95:40:56:b2:a3:
50:c3:ba:2a:e8:dc:10:50:20:10:c4:8a:c5:df:a3:42:3d:39:
e5:59:41:4f:2d:6b:53:1b:cf:73:57:e0:be:80:08:87:b8:fd:
99:5c:00:8d:15:62:ab:f2:65:72:e0:2d:c5:65:da:85:da:fe:
7c:ac:ac:80:9b:b1:69:ca:8b:46:7d:03:2a:3f:98:93:e5:41:
1b:6e:4a:5d:15:3a:f0:0e:08:67:1c:8b:e4:16:06:a8:5f:10:
25:a3:58:b8:d1:e0:b6:73:64:fb:d6:f8:66:c2:3a:aa:4e:34:
1a:6f:45:c7:5c:4d:e2:00:66:bf:53:a5:85:e2:70:6e:c8:9d:
ec:58:82:9c:41:d2:11:18:99:c7:8c:93:34:8b:e6:41:79:4f:
d4:ec:bd:6a:12:08:3c:75:2f:78:67:ee:ea:91:13:92:8b:73:
05:ca:9f:03:6c:bb:b5:c0:9a:e5:63:e3:b3:a4:65:98:58:ba:
c7:b1:3d:4c:9d:c5:bd:61:8a:37:ca:09:29:34:a2:c0:99:2d:
1b:90:e9:df:b3:06:7f:30:8d:d8:a3:67:e6:d3:c2:c4:69:57:
59:7e:37:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org