Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lq-yRNJwl_M18W8A2B-YKyg5l9k.roa
File: lq-yRNJwl_M18W8A2B-YKyg5l9k.roa (raw, json)
Hash identifier: Ku9uGHQ25hylzI8/ZnaToEkAwfOzymQdYMX+NZ7Hmaw=
Subject key identifier: 96:AF:B2:44:D2:70:97:F3:35:F1:6F:00:D8:1F:98:2B:28:39:97:D9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D732B08107A3D4D3ECE72216F16AAC8DD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lq-yRNJwl_M18W8A2B-YKyg5l9k.roa
Signing time: Sun 04 Feb 2024 08:10:16 +0000
ROA not before: Sun 04 Feb 2024 08:10:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44559
IP address blocks: 62.76.227.0/24 maxlen: 24
62.76.233.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
193.124.4.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.128.0/24 maxlen: 24
194.87.138.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.208.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 03:53:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:73:2b:08:10:7a:3d:4d:3e:ce:72:21:6f:16:aa:c8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 4 08:10:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96afb244d27097f335f16f00d81f982b283997d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:82:f5:a3:0d:81:4c:4f:19:1f:b3:3d:fa:
8e:6c:0a:3b:5d:79:fe:2b:0e:ae:58:a0:bf:e0:b5:
9a:67:dc:a9:d5:43:0b:12:ec:a6:d7:46:65:77:c9:
d6:89:03:aa:42:a0:5b:3f:30:c4:04:a3:60:3e:d7:
dc:15:91:8a:c6:ef:5b:5b:7e:13:4a:fa:38:30:a4:
6a:a7:95:43:a3:27:2c:1a:1f:ba:d8:b1:00:a8:f0:
b0:8f:99:5f:d4:12:be:4f:f9:8b:a1:2c:a2:c1:c1:
dd:74:03:99:de:1e:e3:a4:be:f2:d7:79:70:36:3c:
ed:7a:cf:ee:0e:95:0c:dd:92:dd:02:19:2f:b5:95:
a3:07:ec:37:0f:f5:0a:6e:48:51:8f:a9:66:fe:a6:
8a:ce:92:fe:f4:df:3f:48:41:f4:94:61:bf:34:7f:
9e:f6:fd:b3:ed:1a:fb:6a:cb:ed:71:30:e2:c6:d3:
6b:8c:9f:f5:ae:3c:6b:35:ae:ce:a5:60:07:e1:57:
d5:7b:46:97:83:65:6c:04:0b:21:b4:86:98:9a:f8:
27:e6:3b:46:5a:11:f9:97:8d:ef:c1:95:b7:fc:47:
69:79:77:f6:09:3c:67:b3:20:dd:92:a9:a8:89:64:
ce:25:0d:1f:74:c6:c7:b9:25:35:72:65:f5:94:08:
31:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AF:B2:44:D2:70:97:F3:35:F1:6F:00:D8:1F:98:2B:28:39:97:D9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lq-yRNJwl_M18W8A2B-YKyg5l9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
62.76.233.0/24
185.72.10.0/24
192.124.188.0/24
193.124.4.0/24
194.58.41.0/24
194.87.33.0/24
194.87.76.0/24
194.87.90.0/24
194.87.104.0/24
194.87.128.0/24
194.87.138.0/24
194.87.178.0/24
194.87.187.0/24
194.87.200.0/24
194.87.208.0/24
194.87.226.0/24
194.87.229.0/24
194.87.231.0/24
194.87.250.0/24
195.133.31.0/24
195.133.35.0/24
195.133.73.0/24
212.192.8.0/24
212.193.1.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e2:c3:09:01:ce:3a:7a:35:51:9e:25:61:a0:9b:2e:13:c4:
e3:91:e7:39:cd:c8:74:0f:28:39:f6:76:f1:a3:1b:95:5c:4b:
44:09:e7:fa:bf:36:ed:14:f9:1e:8c:35:f4:d9:5a:d5:4a:77:
69:36:b4:48:61:28:61:e6:75:a5:8f:d3:78:19:a4:9a:87:09:
53:6b:31:e3:41:c1:1d:f5:71:e2:31:87:6a:18:86:f1:d7:f1:
e9:a5:47:81:67:55:8b:b9:e3:00:ae:58:8d:10:87:5a:17:a3:
3b:93:a9:16:71:e2:03:1f:58:36:3c:5c:fd:97:5d:84:d1:1a:
a5:19:58:fe:14:d1:5c:25:c1:8f:61:7a:db:87:71:a8:99:eb:
86:44:52:9b:67:ba:e5:be:21:3c:d8:e2:a8:3e:c3:5f:29:e1:
b4:6a:34:62:e5:3c:0d:fa:82:ef:0a:17:a9:19:db:70:90:21:
77:1c:2d:d8:e4:ba:fb:bb:32:c6:56:29:6d:65:91:3e:97:25:
b2:03:b5:67:14:b3:93:81:89:dd:bd:ca:4c:48:aa:b6:19:0e:
ca:ef:b3:5f:ee:9e:ce:32:e2:e8:0d:3b:e3:a7:0c:ff:92:5e:
a9:b9:9a:4c:ef:e6:31:1f:1d:f6:94:62:2b:99:cc:54:7c:59:
bc:86:1b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org