Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hxoCTDqGSUvPDSQJpGPqNmtn_rw.roa
File: hxoCTDqGSUvPDSQJpGPqNmtn_rw.roa (raw, json)
Hash identifier: hd4bhF3206LOh1tqk6oWNh0ZiEF2Lvj73SFHAZSWQ2Q=
Subject key identifier: 87:1A:02:4C:3A:86:49:4B:CF:0D:24:09:A4:63:EA:36:6B:67:FE:BC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A02DA752DC850BB768B9DB31AA70B2700
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hxoCTDqGSUvPDSQJpGPqNmtn_rw.roa
Signing time: Thu 17 Aug 2023 09:36:25 +0000
ROA not before: Thu 17 Aug 2023 09:36:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 194.87.205.0/24 maxlen: 24
193.124.227.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.230.0/24 maxlen: 24
194.87.240.0/24 maxlen: 24
194.87.23.0/24 maxlen: 24
194.87.243.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
195.133.37.0/24 maxlen: 24
212.192.249.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
194.87.53.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
194.87.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 10:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:da:75:2d:c8:50:bb:76:8b:9d:b3:1a:a7:0b:27:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 17 09:36:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=871a024c3a86494bcf0d2409a463ea366b67febc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d2:ba:91:b9:1b:8b:b3:90:9a:2a:ed:97:30:
e4:6a:36:a1:2d:42:ea:ba:27:64:51:aa:94:c5:3d:
f2:09:a6:54:64:b4:44:93:5b:2b:3c:67:ab:c3:bf:
50:16:37:21:60:71:df:fa:8a:98:14:a7:26:af:6c:
8d:8e:a8:3c:9f:fd:e9:89:6f:1d:a1:02:a4:66:9d:
ea:30:13:88:dd:36:a0:cf:ba:b5:51:da:a4:5b:34:
68:50:d3:58:ed:79:41:f6:3b:61:70:dc:1e:d6:dd:
ce:65:ef:20:18:e4:63:da:a3:5b:4f:c8:89:92:1a:
a5:0f:0c:30:81:05:f4:6c:b9:f4:b1:7e:28:5f:6c:
2d:12:bd:b5:c9:89:6b:21:38:49:1b:3b:70:b7:e8:
91:06:12:a3:35:45:88:84:e2:8f:f0:11:ae:68:b8:
c4:90:86:2d:0a:af:a5:ff:ff:3c:87:7f:ef:71:a6:
24:2d:88:e5:ad:b8:b7:d9:f5:0d:eb:69:ac:dc:f9:
07:eb:ff:bb:ac:3e:d5:c1:ba:97:57:39:0b:77:8f:
93:dc:8b:88:75:67:8c:8d:8d:39:6e:75:51:ac:49:
b5:a1:f1:c3:44:41:b8:ff:38:83:ae:86:4c:9e:ea:
af:0f:54:8e:c8:d9:a6:f3:53:20:8e:3c:7a:89:2e:
c1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1A:02:4C:3A:86:49:4B:CF:0D:24:09:A4:63:EA:36:6B:67:FE:BC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hxoCTDqGSUvPDSQJpGPqNmtn_rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.235.0/24
193.124.18.0/24
193.124.49.0/24
193.124.91.0/24
193.124.227.0/24
194.58.60.0/24
194.87.23.0/24
194.87.53.0/24
194.87.85.0/24
194.87.160.0/24
194.87.205.0/24
194.87.230.0/24
194.87.240.0/24
194.87.243.0/24
194.135.46.0/24
195.133.37.0/24
212.192.10.0/24
212.192.249.0/24
Signature Algorithm: sha256WithRSAEncryption
52:71:16:fc:62:c1:00:32:78:ca:33:63:7a:9b:4f:44:f7:d3:
8b:e3:b8:3a:92:af:aa:55:c4:49:0a:99:0e:07:c7:df:d3:05:
38:c8:2a:f5:e0:3a:17:79:0a:e2:63:51:06:1a:b1:29:47:66:
79:6d:88:83:cf:70:7a:ad:66:ce:16:28:6d:c5:29:bb:e4:3f:
a3:03:97:de:01:a0:e1:21:f2:be:fc:03:4f:c5:4a:71:fc:8c:
f8:35:09:7d:e0:3c:52:02:a3:da:80:ff:51:e1:63:3b:a0:bf:
9e:ee:28:32:e1:fc:8a:c8:69:1a:6c:df:a7:25:bc:a0:35:c7:
b3:32:56:85:98:d4:bd:90:b7:5a:c2:c1:4a:61:be:4d:b6:64:
96:d1:75:69:18:3a:b9:15:51:b4:bc:89:36:c2:56:30:18:34:
40:9c:d5:be:d5:c8:b2:76:2c:43:83:e9:d7:24:58:89:76:4a:
72:3a:7c:9e:e2:75:fa:55:54:c8:66:35:ab:83:df:20:47:a1:
09:f3:76:31:45:27:1a:1b:27:63:69:d9:f3:51:a7:15:2a:f7:
d6:ec:52:b9:cb:9e:58:b7:c0:62:4c:dc:69:90:29:cc:ba:9f:
91:c1:8a:2d:39:03:d3:49:58:5d:b3:92:93:5a:ce:45:b5:30:
f7:7d:65:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:24 2024 by rpki-client on console-fra.rpki-client.org