Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/k0hxwB_Ega2k7F-9RBBOwEjJXkE.roa
File: k0hxwB_Ega2k7F-9RBBOwEjJXkE.roa (raw, json)
Hash identifier: Lz4ETjWal4kunZ9rJ3iE4yZgzEiMATL6kgr5BxJqPVI=
Subject key identifier: 93:48:71:C0:1F:C4:81:AD:A4:EC:5F:BD:44:10:4E:C0:48:C9:5E:41
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186E3939E09DB81D2A0BEED84AADCA26F49
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/k0hxwB_Ega2k7F-9RBBOwEjJXkE.roa
Signing time: Wed 15 Mar 2023 04:42:27 +0000
ROA not before: Wed 15 Mar 2023 04:42:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.27.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.52.0/22 maxlen: 22
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.115.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.114.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
194.87.171.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.192.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 17:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e3:93:9e:09:db:81:d2:a0:be:ed:84:aa:dc:a2:6f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 15 04:42:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=934871c01fc481ada4ec5fbd44104ec048c95e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:15:20:ad:74:91:1f:12:4d:8a:34:a0:55:
7c:f8:bf:1b:6e:59:2a:25:ae:b0:81:dc:67:28:e1:
ce:79:4f:71:41:00:bc:ae:9e:9a:54:9a:31:7d:33:
26:e0:bd:51:51:6f:3f:52:c0:cc:ae:7e:80:24:01:
3f:8d:7f:f8:1c:1a:66:9b:90:07:6f:d2:9e:6f:ab:
fc:4f:5b:27:64:24:6b:bc:93:e3:9e:33:77:dd:15:
2b:87:d3:dc:9f:03:2c:80:b7:6e:a7:d2:e1:06:30:
fb:b6:28:9c:48:6e:88:49:fd:0c:cd:18:a7:ef:10:
db:6d:e5:00:22:bf:ea:c8:08:f0:fc:cb:83:42:f9:
30:80:62:95:6b:c4:11:f5:27:8c:a2:27:b5:bf:05:
80:1e:5c:2b:cf:e2:2c:02:fe:95:f7:e8:2e:7b:bf:
8b:99:bf:26:ab:93:48:a4:fa:39:35:f9:da:93:e3:
cc:45:9f:72:19:10:e4:3c:91:96:99:a6:57:ba:41:
7d:8f:29:a8:ea:1a:d4:39:6c:5d:5c:bd:45:96:40:
9b:dc:f9:6f:4c:d5:03:81:36:48:b9:c0:92:6e:59:
38:97:32:bf:93:c3:e3:ad:b8:e4:78:99:52:8f:2e:
fb:fc:7e:e1:1a:96:d4:98:67:66:08:54:9e:49:38:
bd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:48:71:C0:1F:C4:81:AD:A4:EC:5F:BD:44:10:4E:C0:48:C9:5E:41
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/k0hxwB_Ega2k7F-9RBBOwEjJXkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.182.0/24
193.124.133.0/24
193.124.203.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.87.22.0/24
194.87.27.0/24
194.87.82.0/24
194.87.114.0-194.87.116.255
194.87.118.0/24
194.87.136.0/24
194.87.165.0/24
194.87.171.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.50.0/24
195.58.52.0-195.58.63.255
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.208.0/23
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:6a:2e:43:3a:2c:26:65:d6:57:10:6c:83:a6:fc:bd:8b:ef:
4f:9c:38:2c:9b:83:ca:ab:43:58:55:80:55:da:c5:55:31:f8:
c4:c9:d9:98:d9:bc:9e:d6:4d:a6:66:d4:13:12:66:79:a0:2d:
a3:b2:f2:f4:3c:c0:8b:ee:f8:31:21:dc:5f:ff:23:5e:cd:d6:
ed:6c:76:ce:f3:e5:e7:c4:1b:f0:72:00:f8:33:7c:aa:e9:9b:
22:8b:73:ae:fa:1d:37:3a:b4:a2:1d:90:4b:39:20:b4:a4:83:
32:60:ec:6c:10:74:8c:94:e2:a4:54:3f:59:79:67:da:d2:d8:
6f:63:c7:2c:a7:a3:7d:40:5a:a5:61:43:ad:d9:6b:35:c1:27:
fa:e0:e5:b7:1a:d8:c2:2f:4f:7c:7e:1f:c0:7c:99:19:58:f5:
ee:79:16:3b:4d:68:8d:43:81:ea:c4:1b:d2:a8:7a:c3:6f:2d:
3e:94:6f:8e:69:49:c7:f4:d9:eb:99:ce:d7:3e:38:b3:5d:0b:
4f:56:fa:4e:cd:4f:36:ab:dd:eb:9c:34:6f:be:1d:de:c5:87:
9c:60:b6:96:e5:e1:10:28:89:e1:b6:93:1a:c4:19:fa:98:4b:
96:3c:ea:17:3f:8b:17:2d:72:4e:51:48:cf:ba:54:c0:e3:4c:
99:b6:d8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:44 2024 by rpki-client on console-ams.rpki-client.org