Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qOKWLPNgf8pKf8SnSMB_Jx11Gjs.roa
File: qOKWLPNgf8pKf8SnSMB_Jx11Gjs.roa (raw, json)
Hash identifier: VJR727ok19K8uhI6GS5z06dNNZyy0Wj3FdMcg8KDbTE=
Subject key identifier: A8:E2:96:2C:F3:60:7F:CA:4A:7F:C4:A7:48:C0:7F:27:1D:75:1A:3B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01920157432CF55C01F7682C525C66793449
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qOKWLPNgf8pKf8SnSMB_Jx11Gjs.roa
Signing time: Tue 17 Sep 2024 18:55:48 +0000
ROA not before: Tue 17 Sep 2024 18:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 192.124.191.0/24 maxlen: 24
193.124.5.0/24 maxlen: 24
194.87.12.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
194.87.88.0/24 maxlen: 24
194.87.89.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.142.0/24 maxlen: 24
194.87.150.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
194.87.185.0/24 maxlen: 24
195.133.6.0/24 maxlen: 24
195.133.29.0/24 maxlen: 24
195.133.42.0/24 maxlen: 24
195.133.43.0/24 maxlen: 24
195.133.72.0/24 maxlen: 24
195.133.85.0/24 maxlen: 24
195.133.192.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 09:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:01:57:43:2c:f5:5c:01:f7:68:2c:52:5c:66:79:34:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 17 18:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8e2962cf3607fca4a7fc4a748c07f271d751a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:4e:e6:af:84:87:27:da:ff:3a:20:02:df:
3a:0d:7d:7e:ee:fc:05:47:5d:ea:af:05:ad:72:da:
7e:dc:5a:97:2c:68:fd:2e:98:df:8a:a1:0f:bf:9e:
06:8f:8d:b4:1b:cc:7e:4e:fa:e5:53:99:4d:37:4c:
67:97:d4:30:8b:9f:98:e8:66:ed:28:b4:6e:65:ca:
d4:1f:08:44:c8:74:64:b0:77:8a:59:08:b1:86:d0:
a7:72:f4:e5:9d:3b:d1:a9:9e:2b:25:5d:ce:64:c4:
b3:1f:34:72:dc:99:df:cc:1b:f0:0c:6e:70:5c:4b:
12:c2:93:85:31:7c:6e:3e:9a:8a:a1:9d:05:92:db:
cc:67:13:ec:f8:3a:f5:78:10:25:28:81:b2:2d:ea:
f9:0b:86:0f:d0:97:a4:24:01:ba:91:66:61:99:1f:
22:14:0b:36:ed:da:8a:d0:43:24:f3:8a:d5:71:31:
9c:b9:b1:e3:a9:13:52:dc:1a:e8:e4:da:04:48:96:
71:6c:2c:db:b3:ed:4b:b3:f9:a0:88:17:73:57:54:
7e:5e:7f:b2:88:4b:a0:fe:c4:26:ad:78:07:90:05:
6b:82:65:25:21:d8:47:0c:7c:5a:80:3d:af:3e:15:
13:90:c5:5f:7b:17:da:ea:e5:5a:53:14:8f:bb:df:
98:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E2:96:2C:F3:60:7F:CA:4A:7F:C4:A7:48:C0:7F:27:1D:75:1A:3B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qOKWLPNgf8pKf8SnSMB_Jx11Gjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.191.0/24
193.124.5.0/24
194.87.12.0/24
194.87.22.0/24
194.87.32.0/24
194.87.40.0/24
194.87.88.0/23
194.87.108.0/24
194.87.124.0/24
194.87.136.0/24
194.87.142.0/24
194.87.150.0/24
194.87.169.0/24
194.87.185.0/24
195.133.6.0/24
195.133.29.0/24
195.133.42.0/23
195.133.72.0/24
195.133.85.0/24
195.133.192.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
79:73:6e:54:30:80:38:2c:e3:ec:90:c3:15:b0:3f:91:35:36:
9a:58:f1:ca:db:33:66:d5:66:62:7e:b7:42:71:a6:41:95:24:
0c:44:ef:39:ad:2f:c5:e5:57:33:d5:52:3a:83:5e:53:f6:7f:
e6:84:87:79:28:a6:97:e2:be:11:ce:d7:03:c2:15:94:9b:e2:
6c:66:6e:f6:b6:6a:d5:8e:ca:97:1c:c4:32:26:0d:97:fa:b0:
80:17:fb:57:b7:9f:c5:97:58:a3:ac:be:22:48:f0:db:e1:67:
83:87:4c:63:be:de:ff:53:78:10:91:4d:17:e0:57:63:70:9a:
05:82:39:71:df:f4:ec:93:9f:9d:ef:4c:1c:db:36:12:01:ee:
79:cb:2b:db:1a:8b:c9:14:ac:90:0a:56:71:32:bd:fa:af:bb:
78:53:ef:5f:37:4a:74:94:1f:7b:59:60:7f:d5:4c:dc:5e:4f:
f7:53:a6:31:71:72:6a:88:b7:76:e5:0c:e0:07:7a:51:70:b3:
34:82:02:b3:44:30:9f:ac:2b:45:69:c2:d0:7a:55:e4:f4:02:
76:6b:cd:bd:db:c9:f0:df:f5:ea:a4:fd:98:9b:88:65:f9:a3:
7d:df:e8:e2:11:b9:0e:2e:e6:9d:6d:50:08:c7:23:d0:6b:10:
a1:fe:8a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 13:23:26 2024 by rpki-client on console-fra.rpki-client.org