Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q5SCADC1IFEVJVibT9rX4fZcA8U.roa
File: q5SCADC1IFEVJVibT9rX4fZcA8U.roa (raw, json)
Hash identifier: 3JHwVnQ8sEPYaAmfGqMz02TvaUT9XHNgWDq6H6Mm0mo=
Subject key identifier: AB:94:82:00:30:B5:20:51:15:25:58:9B:4F:DA:D7:E1:F6:5C:03:C5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018FD324AFE3726089D31CCF3C2A2688C833
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q5SCADC1IFEVJVibT9rX4fZcA8U.roa
Signing time: Sat 01 Jun 2024 09:32:27 +0000
ROA not before: Sat 01 Jun 2024 09:32:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 192.124.191.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
194.58.56.0/24 maxlen: 24
194.58.57.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.17.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.88.0/24 maxlen: 24
194.87.89.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.131.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.142.0/24 maxlen: 24
194.87.150.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.185.0/24 maxlen: 24
195.133.2.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.20.0/24 maxlen: 24
195.133.29.0/24 maxlen: 24
195.133.42.0/24 maxlen: 24
195.133.43.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 16:34:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d3:24:af:e3:72:60:89:d3:1c:cf:3c:2a:26:88:c8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 1 09:32:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab94820030b520511525589b4fdad7e1f65c03c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a2:83:d8:29:a1:2c:9f:aa:14:d1:e6:db:82:
dc:ae:bf:06:fa:56:19:a3:7f:48:3a:04:33:fb:32:
9c:74:b6:11:24:46:94:41:08:ac:dc:a0:24:2e:e4:
fa:fc:7b:35:25:96:07:3f:ea:5b:b8:a8:f7:50:24:
d5:34:7d:07:fa:ae:d6:0d:de:87:20:ed:89:9b:5f:
81:d5:7d:37:b4:c0:bf:6f:19:ef:c0:46:77:8d:6c:
0b:35:66:dd:45:fc:e8:30:7b:31:d7:ea:81:05:d7:
8a:a0:db:54:a9:d6:f1:25:1b:81:96:3c:1e:a8:a2:
49:b3:c3:58:ab:90:ec:32:d4:e3:69:4a:b7:8d:41:
5a:ce:01:d3:a3:fa:c1:40:f6:b8:98:76:e3:b1:d5:
9f:7a:97:43:1e:81:44:48:08:62:69:5c:09:d3:15:
51:5d:01:1f:99:cd:04:8a:42:0b:8c:f4:ed:ca:14:
2f:14:2f:56:e7:0c:42:95:c1:06:8e:7d:1c:93:b1:
ae:7d:5e:1c:d4:f4:92:0a:cc:d0:66:9a:16:25:75:
4a:b7:f2:49:6e:50:e4:82:ea:eb:a6:1f:0c:57:25:
1f:13:7c:92:bc:f8:f0:a5:fd:6d:29:03:b7:80:99:
db:01:64:f9:a8:20:5e:63:89:44:58:72:4c:e9:b8:
1c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:94:82:00:30:B5:20:51:15:25:58:9B:4F:DA:D7:E1:F6:5C:03:C5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q5SCADC1IFEVJVibT9rX4fZcA8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.191.0/24
193.124.5.0/24
194.58.56.0/23
194.87.12.0/24
194.87.17.0/24
194.87.22.0/24
194.87.32.0/24
194.87.40.0/24
194.87.56.0/24
194.87.86.0/24
194.87.88.0/23
194.87.108.0/24
194.87.124.0/24
194.87.131.0/24
194.87.136.0/24
194.87.142.0/24
194.87.150.0/24
194.87.169.0/24
194.87.185.0/24
195.133.2.0/24
195.133.6.0/24
195.133.20.0/24
195.133.29.0/24
195.133.42.0/23
195.133.72.0/24
195.133.85.0/24
195.133.192.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
01:1d:64:e0:7d:83:85:ea:1f:58:f6:0f:6a:a8:6f:3b:0e:50:
bf:fb:a9:2f:00:d5:e6:53:bc:b7:bf:2a:b2:07:0e:96:c0:0a:
ec:a9:57:d3:12:bb:12:06:80:2b:01:b3:38:e3:cb:e7:e6:a5:
0e:46:c1:5f:3f:a3:4c:6e:31:fa:42:91:3d:e4:11:1f:0d:c5:
23:e6:81:63:c1:d4:e8:a7:3b:88:9e:45:68:0b:2b:64:73:c5:
d5:d2:09:e9:3c:d7:2b:11:5e:68:60:4e:4e:91:c0:c4:0c:16:
4a:7c:bc:b9:86:5e:6a:88:e5:76:1a:24:2c:27:74:a0:e6:78:
13:76:68:4c:46:01:be:60:c8:1e:64:5c:15:e8:58:d7:c8:e7:
56:ff:6c:fd:a6:95:8c:ed:a4:a1:ef:e8:d7:35:af:0a:95:df:
e1:55:0b:5e:55:ba:b4:01:3c:22:68:8d:a2:7c:25:ef:23:d2:
87:e5:21:d9:72:2d:04:f2:0d:f1:5b:9d:eb:94:4e:21:67:29:
38:59:86:fa:bf:18:83:9a:a1:4e:88:5c:62:25:61:6f:85:5f:
b3:ff:6c:98:d3:cb:93:6d:71:20:57:ed:17:21:5b:b4:06:68:
69:00:8c:d3:2a:53:9f:c0:43:e5:1f:c5:0d:6a:79:24:c8:2a:
49:ff:b1:8c
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAY/TJK/jcmCJ0xzPPComiMgzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwNjAxMDkzMjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjk0ODIwMDMwYjUyMDUxMTUyNTU4OWI0ZmRhZDdlMWY2NWMwM2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaKD2CmhLJ+qFNHm24Lcrr8G+lYZ
o39IOgQz+zKcdLYRJEaUQQis3KAkLuT6/Hs1JZYHP+pbuKj3UCTVNH0H+q7WDd6H
IO2Jm1+B1X03tMC/bxnvwEZ3jWwLNWbdRfzoMHsx1+qBBdeKoNtUqdbxJRuBljwe
qKJJs8NYq5DsMtTjaUq3jUFazgHTo/rBQPa4mHbjsdWfepdDHoFESAhiaVwJ0xVR
XQEfmc0EikILjPTtyhQvFC9W5wxClcEGjn0ck7GufV4c1PSSCszQZpoWJXVKt/JJ
blDkgurrph8MVyUfE3ySvPjwpf1tKQO3gJnbAWT5qCBeY4lEWHJM6bgczwIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFKuUggAwtSBRFSVYm0/a1+H2XAPFMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcTVTQ0FEQzFJRkVWSlZpYlQ5clg0ZlpjQThVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjCBrwQCAAEwgagDBADA
fL8DBADBfAUDBAHCOjgDBADCVwwDBADCVxEDBADCVxYDBADCVyADBADCVygDBADC
VzgDBADCV1YDBAHCV1gDBADCV2wDBADCV3wDBADCV4MDBADCV4gDBADCV44DBADC
V5YDBADCV6kDBADCV7kDBADDhQIDBADDhQYDBADDhRQDBADDhR0DBAHDhSoDBADD
hUgDBADDhVUDBADDhcADBADUwQ4wDQYJKoZIhvcNAQELBQADggEBAAEdZOB9g4Xq
H1j2D2qobzsOUL/7qS8A1eZTvLe/KrIHDpbACuypV9MSuxIGgCsBszjjy+fmpQ5G
wV8/o0xuMfpCkT3kER8NxSPmgWPB1OinO4ieRWgLK2RzxdXSCek81ysRXmhgTk6R
wMQMFkp8vLmGXmqI5XYaJCwndKDmeBN2aExGAb5gyB5kXBXoWNfI51b/bP2mlYzt
pKHv6Nc1rwqV3+FVC15VurQBPCJojaJ8Je8j0oflIdlyLQTyDfFbneuUTiFnKThZ
hvq/GIOaoU6IXGIlYW+FX7P/bJjTy5NtcSBX7RchW7QGaGkAjNMqU5/AQ+UfxQ1q
eSTIKkn/sYw=
-----END CERTIFICATE-----
Generated at Wed Jul 17 19:33:29 2024 by rpki-client on console-fra.rpki-client.org