Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tRQAb14CObu6GO1i7-GEKwxvuUs.roa
File: tRQAb14CObu6GO1i7-GEKwxvuUs.roa (raw, json)
Hash identifier: YxIFa3/dp47kITrMKsbw7Q4ZRZC6y2CGYWw/6VJH6ws=
Subject key identifier: B5:14:00:6F:5E:02:39:BB:BA:18:ED:62:EF:E1:84:2B:0C:6F:B9:4B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018997D810B333E5F3C5DD544FD113B14097
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tRQAb14CObu6GO1i7-GEKwxvuUs.roa
Signing time: Thu 27 Jul 2023 14:54:26 +0000
ROA not before: Thu 27 Jul 2023 14:54:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 62.76.226.0/24 maxlen: 24
194.87.3.0/24 maxlen: 24
195.133.84.0/24 maxlen: 24
194.87.34.0/24 maxlen: 24
195.58.56.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.61.0/24 maxlen: 24
194.87.188.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.119.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.87.86.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 14:55:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:d8:10:b3:33:e5:f3:c5:dd:54:4f:d1:13:b1:40:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 27 14:54:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b514006f5e0239bbba18ed62efe1842b0c6fb94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:34:48:f9:30:52:5b:cc:4b:71:ec:de:94:ef:
a4:bc:61:b3:a2:7d:da:8d:e1:4d:d3:79:a0:b8:e4:
9f:ee:d9:74:84:4c:5b:e5:72:d0:1b:07:3e:68:ed:
d4:6f:57:66:74:1e:26:4a:96:3c:2f:f6:5f:e1:05:
d3:91:1a:1b:62:2e:96:5e:2d:37:f1:19:ef:c2:a3:
b3:c0:3b:bc:0c:89:75:c5:1f:f1:28:bf:7b:45:51:
d0:0a:7b:50:a3:2f:4d:22:52:1a:35:39:53:8b:44:
26:67:80:b9:e7:41:84:3b:ab:29:34:68:29:b0:66:
2f:a4:7b:9d:81:81:38:e1:6e:06:13:01:96:c2:b4:
9a:f1:7e:1b:50:2c:1f:c7:fa:90:16:33:36:20:f7:
b5:06:50:09:1f:bf:c5:50:d3:b0:a1:f0:a1:8a:e2:
76:4d:8e:4a:b4:61:12:23:71:ea:63:4d:fd:1e:eb:
bc:f2:7b:75:c9:45:8e:e8:c4:f9:38:64:f0:b1:8b:
aa:35:ff:bb:a3:4e:16:39:c1:8d:b0:38:4b:b1:c8:
ff:0d:ea:f7:fb:5b:18:56:07:85:a0:3d:01:51:53:
db:78:c1:a2:e1:9a:ee:9e:44:c3:e3:85:cd:1d:62:
88:b0:89:9b:0c:39:9c:5d:72:24:d8:67:6d:39:5b:
e2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:14:00:6F:5E:02:39:BB:BA:18:ED:62:EF:E1:84:2B:0C:6F:B9:4B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tRQAb14CObu6GO1i7-GEKwxvuUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
194.87.3.0/24
194.87.34.0/24
194.87.42.0/24
194.87.86.0/24
194.87.91.0/24
194.87.104.0/24
194.87.117.0-194.87.119.255
194.87.188.0/24
195.58.56.0/24
195.58.59.0/24
195.58.61.0-195.58.62.255
195.133.84.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:26:9c:18:1b:c1:c9:fa:2f:9c:91:6c:0f:28:1f:30:1d:46:
15:43:1a:5f:85:30:97:83:60:ee:97:ed:6f:57:d7:8c:45:df:
46:a5:75:d1:c1:09:5c:d4:1f:4e:fd:4a:55:66:19:b7:92:b2:
c3:cd:7f:86:12:44:e5:fc:32:dd:8f:a2:e0:36:03:0e:7f:1b:
cf:20:a2:46:ab:cb:96:89:d7:72:d6:03:ab:3d:2b:a5:4b:da:
50:df:d6:b1:d3:18:74:37:a1:4f:c3:71:5e:7a:41:30:8a:19:
9b:44:ec:52:2b:6f:1c:2c:d8:3d:ac:21:f7:3c:2f:ca:7a:94:
a2:ff:04:40:ec:79:df:80:62:ff:3f:b5:4b:0e:13:8b:d2:b9:
ec:d2:78:b0:58:24:58:d4:1d:1e:6f:5c:af:c8:bc:ca:d8:62:
96:c5:df:af:bb:fa:6b:3b:10:49:79:17:f7:f5:7f:f5:0a:e5:
4f:8e:f6:9c:00:56:4d:96:34:ec:9e:f0:b5:14:26:75:19:75:
3a:40:4e:8c:d6:1a:da:aa:a3:0e:ef:4c:d2:df:b8:4f:d9:8a:
82:ca:27:45:52:a3:1a:1c:ae:a4:1a:3a:6b:90:32:3d:de:4f:
f0:5f:23:44:c6:40:af:22:e9:1b:aa:d7:3d:bc:84:37:db:bb:
d0:12:c4:3b
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYmX2BCzM+Xzxd1UT9ETsUCXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNzI3MTQ1NDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTE0MDA2ZjVlMDIzOWJiYmExOGVkNjJlZmUxODQyYjBjNmZiOTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTRI+TBSW8xLcezelO+kvGGzon3a
jeFN03mguOSf7tl0hExb5XLQGwc+aO3Ub1dmdB4mSpY8L/Zf4QXTkRobYi6WXi03
8RnvwqOzwDu8DIl1xR/xKL97RVHQCntQoy9NIlIaNTlTi0QmZ4C550GEO6spNGgp
sGYvpHudgYE44W4GEwGWwrSa8X4bUCwfx/qQFjM2IPe1BlAJH7/FUNOwofChiuJ2
TY5KtGESI3HqY039Huu88nt1yUWO6MT5OGTwsYuqNf+7o04WOcGNsDhLscj/Der3
+1sYVgeFoD0BUVPbeMGi4ZrunkTD44XNHWKIsImbDDmcXXIk2GdtOVviswIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFLUUAG9eAjm7uhjtYu/hhCsMb7lLMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvdFJRQWIxNENPYnU2R08xaTctR0VLd3h2dVVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQAPkziAwQA
wlcDAwQAwlciAwQAwlcqAwQAwldWAwQAwldbAwQAwldoMAwDBADCV3UDBAPCV3AD
BADCV7wDBADDOjgDBADDOjswDAMEAMM6PQMEAMM6PgMEAMOFVDANBgkqhkiG9w0B
AQsFAAOCAQEAWiacGBvByfovnJFsDygfMB1GFUMaX4Uwl4Ng7pftb1fXjEXfRqV1
0cEJXNQfTv1KVWYZt5Kyw81/hhJE5fwy3Y+i4DYDDn8bzyCiRqvLlonXctYDqz0r
pUvaUN/WsdMYdDehT8NxXnpBMIoZm0TsUitvHCzYPawh9zwvynqUov8EQOx534Bi
/z+1Sw4Ti9K57NJ4sFgkWNQdHm9cr8i8ythilsXfr7v6azsQSXkX9/V/9QrlT472
nABWTZY07J7wtRQmdRl1OkBOjNYa2qqjDu9M0t+4T9mKgsonRVKjGhyupBo6a5Ay
Pd5P8F8jRMZAryLpG6rXPbyEN9u70BLEOw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:49 2024 by rpki-client on console-ams.rpki-client.org