Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hOgZdlxIueHENnUBrfsYYAmlsZE.roa
File: hOgZdlxIueHENnUBrfsYYAmlsZE.roa (raw, json)
Hash identifier: tmgsx58+m614OZ7aFuZSJRC3Lfk92anh+S5q/tcmk0Y=
Subject key identifier: 84:E8:19:76:5C:48:B9:E1:C4:36:75:01:AD:FB:18:60:09:A5:B1:91
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01926680C944BA5011C1358E94BB0FF6BF67
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hOgZdlxIueHENnUBrfsYYAmlsZE.roa
Signing time: Mon 07 Oct 2024 10:22:49 +0000
ROA not before: Mon 07 Oct 2024 10:22:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.21.0/24 maxlen: 24
194.87.58.0/23 maxlen: 23
194.87.114.0/23 maxlen: 23
194.87.119.0/24 maxlen: 24
194.87.134.0/23 maxlen: 23
194.87.168.0/24 maxlen: 24
195.58.58.0/23 maxlen: 23
195.58.62.0/23 maxlen: 23
195.133.0.0/24 maxlen: 24
195.133.84.0/23 maxlen: 23
212.192.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Oct 2024 09:22:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:80:c9:44:ba:50:11:c1:35:8e:94:bb:0f:f6:bf:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 7 10:22:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84e819765c48b9e1c4367501adfb186009a5b191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e2:44:9b:87:0a:90:29:17:60:61:93:21:bb:
04:fd:f7:38:65:70:c9:4c:89:12:5d:84:90:e5:7f:
9a:c2:8f:b9:39:e6:f1:0a:98:b7:8b:21:fb:70:9f:
b6:56:ee:01:32:9b:d5:fc:ef:e6:58:2d:f8:a3:c3:
64:ae:fb:0c:9d:fc:1c:15:a2:db:3f:a7:5f:b6:52:
4b:ec:6d:cd:88:5b:fd:81:5c:e7:89:17:fe:7f:f5:
b2:c2:24:26:d8:fa:ee:53:bc:ee:9b:6c:be:4b:fb:
e2:65:19:80:2c:8a:04:0e:e0:5d:2c:7c:e1:ab:5b:
c5:d5:8a:98:e6:b9:ee:dc:6b:bd:a6:aa:df:94:99:
4f:cd:23:6a:01:42:73:ad:a6:f4:e5:20:f4:07:bd:
6a:73:56:66:0d:f0:08:f7:5b:55:61:76:10:d2:00:
ea:db:42:54:a0:51:21:c1:1c:88:47:fa:08:30:67:
e0:b0:f5:79:7b:55:55:6f:01:e9:59:20:ec:7d:dd:
b6:ad:19:28:b3:b3:25:f2:4f:dd:c2:5b:44:93:da:
13:00:94:64:eb:07:bf:34:a2:2e:8e:de:fd:2e:36:
43:f1:8c:13:3f:22:42:7e:73:b3:2d:6b:7b:f9:b2:
8e:18:27:a3:8b:82:de:5b:64:f3:a3:2f:39:a5:4c:
54:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E8:19:76:5C:48:B9:E1:C4:36:75:01:AD:FB:18:60:09:A5:B1:91
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hOgZdlxIueHENnUBrfsYYAmlsZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.21.0/24
194.87.58.0/23
194.87.114.0/23
194.87.119.0/24
194.87.134.0/23
194.87.168.0/24
195.58.58.0/23
195.58.62.0/23
195.133.0.0/24
195.133.84.0/23
212.192.222.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:df:d5:8d:bb:4c:d5:7f:6d:b2:f7:ab:c2:c7:e0:a4:e8:c6:
22:db:ea:c2:aa:c0:36:9e:7b:fb:61:13:b4:e5:9e:68:55:e6:
d4:ae:ef:d3:95:74:93:0d:07:83:11:6b:c4:62:c8:76:5d:26:
b1:21:0d:54:2e:79:8a:64:7c:4b:f5:70:44:fe:ad:a5:bb:fb:
ec:2c:4a:00:b3:d8:65:e2:d9:88:30:79:5e:0e:2b:bc:e1:07:
48:2b:12:0c:47:c7:61:12:ef:7b:bc:54:c8:39:64:24:b1:ff:
90:07:b6:f2:f8:b3:1b:3d:13:bc:ec:7d:c0:d0:6f:73:72:69:
67:99:c9:b8:71:88:8d:c4:6e:da:54:be:6d:16:20:d9:00:1a:
a9:51:51:28:3c:48:c9:6b:15:8d:7a:8a:2e:7b:f8:78:2d:98:
c4:b4:4a:d8:d3:59:97:d6:cb:38:e5:09:c4:b3:ed:76:21:d3:
25:f4:d9:21:f1:79:53:61:7e:36:29:26:2a:51:2d:70:3b:c6:
55:2b:f1:07:ce:ec:33:67:37:7b:c3:2f:b3:a0:ea:46:b0:b8:
56:b4:ab:d7:9a:ab:8f:bf:d4:d0:8e:75:1a:0c:bb:40:64:51:
98:6a:2b:22:3e:31:63:d2:17:d9:f3:e3:8a:52:ff:8a:38:56:
2d:72:89:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 10:59:27 2024 by rpki-client on console-ams.rpki-client.org