Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lzuwxRrBogF1w9xsCLUVWDkfu3o.roa
File: lzuwxRrBogF1w9xsCLUVWDkfu3o.roa (raw, json)
Hash identifier: KjuHpi5azlcy4xrjs4Q8yuG58Co1bGOflZH6fQxx0K0=
Subject key identifier: 97:3B:B0:C5:1A:C1:A2:01:75:C3:DC:6C:08:B5:15:58:39:1F:BB:7A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191FF036EC68C91D9B7DAA550D332031532
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lzuwxRrBogF1w9xsCLUVWDkfu3o.roa
Signing time: Tue 17 Sep 2024 08:05:00 +0000
ROA not before: Tue 17 Sep 2024 08:05:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214238
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.227.0/24 maxlen: 24
185.72.10.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/24 maxlen: 24
192.124.188.0/24 maxlen: 24
192.124.190.0/24 maxlen: 24
193.124.4.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
194.87.24.0/24 maxlen: 24
194.87.33.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.224.0/24 maxlen: 24
194.87.229.0/24 maxlen: 24
194.87.231.0/24 maxlen: 24
194.135.33.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
212.192.8.0/24 maxlen: 24
212.192.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 07:36:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:03:6e:c6:8c:91:d9:b7:da:a5:50:d3:32:03:15:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 17 08:05:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=973bb0c51ac1a20175c3dc6c08b51558391fbb7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5a:d4:29:7a:06:b4:ab:29:22:40:d2:fd:68:
82:eb:3e:0a:2c:4d:96:7f:27:ea:52:4c:1e:41:be:
e8:38:3b:83:1c:23:cc:7d:4f:02:94:ae:5d:66:d1:
64:49:e6:f4:ca:00:db:7a:21:d5:e1:b0:ce:d2:92:
3e:5f:ad:7d:d8:e7:76:83:dd:09:f2:f6:1e:37:8c:
fc:00:41:89:15:8f:f9:3a:c0:a5:ea:34:49:75:94:
78:0c:25:38:85:d1:62:9b:70:fe:65:32:6a:99:2f:
31:da:2a:e8:f2:19:0a:37:44:96:51:11:81:e3:fd:
b7:2f:c1:cc:d4:d5:1d:d0:aa:66:e0:4a:dd:47:a8:
15:1c:ed:f7:0a:9f:9c:88:cf:c9:d6:9e:3b:44:c0:
9c:77:f3:00:af:3d:b6:89:65:8d:9f:07:8a:f9:f6:
4c:46:56:11:a5:3c:3a:ca:2e:ce:0f:65:ed:3f:6c:
eb:ff:bd:0b:85:db:60:1a:f8:cc:c5:c6:dc:99:d6:
e0:52:87:e2:4f:cd:77:da:1c:f6:c3:57:f8:e3:4f:
d2:a5:03:8a:53:77:56:30:11:a6:f3:dd:f3:c2:51:
70:61:71:32:fc:80:79:26:93:24:d6:59:14:e7:f7:
52:54:7e:26:d2:4a:8a:63:48:08:fd:19:07:b2:5a:
f4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3B:B0:C5:1A:C1:A2:01:75:C3:DC:6C:08:B5:15:58:39:1F:BB:7A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lzuwxRrBogF1w9xsCLUVWDkfu3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/23
185.72.10.0/24
192.124.180.0-192.124.182.255
192.124.188.0/24
192.124.190.0/24
193.124.4.0/24
194.87.3.0/24
194.87.24.0/24
194.87.33.0/24
194.87.36.0/24
194.87.90.0/24
194.87.165.0-194.87.166.255
194.87.178.0/24
194.87.224.0/24
194.87.229.0/24
194.87.231.0/24
194.135.33.0/24
195.133.31.0/24
195.133.35.0/24
195.133.94.0/24
212.192.8.0/24
212.192.242.0/24
Signature Algorithm: sha256WithRSAEncryption
00:da:79:44:06:f0:01:19:e9:74:3e:5f:df:a1:c0:4b:f1:97:
20:c1:93:c3:14:5d:68:01:43:59:f6:93:41:7f:20:9f:23:a6:
3b:3f:7d:3b:71:a6:ef:02:51:49:b0:17:ad:dc:21:00:88:98:
b6:7f:d4:dc:13:b2:a1:71:3a:82:2e:b6:e1:29:fd:d5:16:a8:
b3:f1:37:78:d6:08:8d:92:36:29:70:38:06:fc:4e:62:bd:00:
8c:2a:12:ce:09:ce:af:66:a1:5b:00:ec:32:f7:2e:b9:c4:21:
2e:b5:df:fa:c2:b8:7b:64:2a:52:31:52:9b:0c:92:1f:bd:ed:
b4:85:e1:cc:c9:ed:3d:a8:30:a1:63:07:3d:4f:b0:77:1c:68:
06:05:39:7f:26:50:c2:f4:a0:10:df:46:4c:de:3f:49:2d:00:
fc:b6:fc:32:69:3a:b9:10:ee:c0:9e:54:61:d9:b0:ec:71:09:
10:30:e1:e1:26:ea:95:74:92:7a:76:f2:46:62:29:1d:b8:a6:
f7:b2:29:4e:95:43:5b:44:9e:20:bb:d9:27:dc:d5:cd:e0:4b:
9f:df:76:6f:5a:d9:57:1c:b6:f7:e5:2e:3a:53:6c:b5:fa:dc:
02:3b:4a:46:2d:76:56:e1:ae:94:fa:33:1f:b4:d2:69:c3:00:
40:78:de:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 09:30:34 2024 by rpki-client on console-fra.rpki-client.org