Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ouY5bnA3GqKOPlQuvWNGVGIU8iY.roa
File: ouY5bnA3GqKOPlQuvWNGVGIU8iY.roa (raw, json)
Hash identifier: zO7RLb8NirtxHDGVyERG9JFSjbb+WZvJcirRCfV5KMI=
Subject key identifier: A2:E6:39:6E:70:37:1A:A2:8E:3E:54:2E:BD:63:46:54:62:14:F2:26
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185B964FCDF208BD0441F936A320636D5B2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ouY5bnA3GqKOPlQuvWNGVGIU8iY.roa
Signing time: Mon 16 Jan 2023 07:04:41 +0000
ROA not before: Mon 16 Jan 2023 07:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
193.124.44.0/24 maxlen: 24
195.58.36.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
195.133.35.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
194.87.178.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jan 2023 09:41:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:64:fc:df:20:8b:d0:44:1f:93:6a:32:06:36:d5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 16 07:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2e6396e70371aa28e3e542ebd6346546214f226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:50:5b:a7:6f:6f:19:bc:87:93:48:63:04:
6c:6e:12:8b:83:c9:d0:08:a8:31:e0:ae:de:a9:e1:
83:19:27:07:b9:b3:b3:ca:c1:31:d0:da:ff:c7:85:
1c:34:28:27:4a:57:88:0c:bc:09:a7:f0:32:0d:e1:
20:59:77:79:d7:dd:33:13:61:93:d4:30:74:d3:84:
16:6a:00:74:43:3c:75:75:c1:a8:f2:30:84:fe:55:
cc:7c:ca:37:82:8a:fe:37:83:20:18:30:a9:63:b2:
d3:df:20:58:2a:b4:1e:ad:94:f2:21:29:6d:2e:40:
d4:29:2e:c9:73:e2:1c:bc:4f:65:60:6f:00:34:af:
23:b0:9a:19:78:92:5f:06:1b:fc:04:f5:39:c1:e5:
c3:61:d2:53:ec:d4:13:fb:65:22:37:31:24:9d:e7:
8d:ce:1e:c3:26:5a:29:dd:9c:f3:83:e4:75:c6:26:
86:c8:2c:35:d7:62:99:60:2e:32:35:07:a6:e3:12:
9b:e9:c8:2d:5b:17:48:a7:be:7c:f0:72:68:e7:e4:
1c:cd:0e:b7:0b:cb:d7:f9:ad:c0:d2:d3:b4:cd:52:
ad:ad:cd:da:5e:97:b1:23:86:59:49:56:82:af:c5:
20:95:a4:b0:ff:72:16:7e:fa:06:2e:50:a5:f7:1c:
f4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E6:39:6E:70:37:1A:A2:8E:3E:54:2E:BD:63:46:54:62:14:F2:26
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ouY5bnA3GqKOPlQuvWNGVGIU8iY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.3.0/24
193.124.9.0/24
193.124.44.0/24
193.124.201.0/24
194.87.1.0/24
194.87.42.0/24
194.87.73.0/24
194.87.130.0/23
194.87.166.0/24
194.87.168.0/24
194.87.178.0/23
194.87.182.0/24
194.87.187.0/24
194.135.18.0/24
194.135.23.0/24
195.58.35.0-195.58.36.255
195.58.50.0/24
195.58.56.0/24
195.133.0.0/24
195.133.30.0/24
195.133.35.0/24
195.133.195.0/24
212.192.10.0/24
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5f:78:b4:1e:32:a7:c7:35:0b:c9:26:39:2d:12:7f:fe:1b:
c9:1a:32:db:e3:61:dd:0f:15:df:b1:7d:d8:c1:90:dd:8b:58:
07:b7:02:75:1c:0d:f5:2d:03:3e:47:8c:18:59:20:9a:16:41:
2e:43:52:d1:f2:58:d0:e9:72:22:7b:c6:6a:59:8f:12:f2:97:
53:fb:1c:a2:ab:c6:66:bf:d7:be:68:fd:8d:e7:7c:f9:9e:c0:
f2:ba:58:2b:00:e5:c8:6f:b7:71:1e:87:f2:66:cb:4c:09:40:
d0:f2:06:3c:d4:02:0c:cf:ed:45:14:19:b9:69:22:18:1b:b4:
cb:be:8e:cf:4e:f5:94:2b:45:5a:48:59:54:9c:5f:60:d5:55:
b7:59:ba:5c:97:d1:6c:90:00:6a:71:e3:38:70:12:6a:8b:b2:
e1:c1:21:a4:55:52:8e:30:68:02:be:fe:49:fd:47:84:42:91:
da:80:10:37:6a:18:ea:8f:3a:6b:88:8e:16:59:b9:33:db:c3:
e0:0a:44:37:2b:b4:e5:f2:6b:1b:d2:48:2e:2b:6c:5a:0c:76:
8b:c7:14:9a:95:36:be:d7:dc:21:6f:78:a0:46:c9:fc:8d:3e:
59:6c:28:9a:01:e9:73:43:2a:da:d8:b1:13:ba:0a:31:2d:98:
c2:2d:7b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:46 2024 by rpki-client on console-ams.rpki-client.org