Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vvFIBZy7UT_i7UBZOvuJvcyamIQ.roa
File: vvFIBZy7UT_i7UBZOvuJvcyamIQ.roa (raw, json)
Hash identifier: r7fTBl9A/PBYLhAOECMgkKojLjIqdpaps2LuDqEstkM=
Subject key identifier: BE:F1:48:05:9C:BB:51:3F:E2:ED:40:59:3A:FB:89:BD:CC:9A:98:84
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01905E48F7F592E75C00B347B4564E1C25E8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vvFIBZy7UT_i7UBZOvuJvcyamIQ.roa
Signing time: Fri 28 Jun 2024 09:59:18 +0000
ROA not before: Fri 28 Jun 2024 09:59:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 62.76.234.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
192.124.176.0/24 maxlen: 24
193.124.22.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
193.124.46.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.68.0/24 maxlen: 24
194.87.39.0/24 maxlen: 24
194.87.47.0/24 maxlen: 24
194.87.189.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
194.87.227.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
212.193.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 09:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5e:48:f7:f5:92:e7:5c:00:b3:47:b4:56:4e:1c:25:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 28 09:59:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bef148059cbb513fe2ed40593afb89bdcc9a9884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:0e:f1:a8:09:57:e4:26:75:4b:5b:16:59:
4a:fe:38:db:9f:7e:f2:98:27:20:96:bd:a8:ba:a0:
61:c0:e1:95:6d:9f:a8:14:2c:f0:0d:ba:51:66:24:
b8:bd:e1:dc:41:9a:a1:f2:35:a5:fb:9b:a4:c3:c9:
6f:e1:34:2a:1c:91:75:ab:ab:9f:e1:7e:65:b6:2b:
68:a4:03:47:41:b2:97:aa:1a:4d:7f:d8:51:f1:e2:
87:ec:ed:dc:fa:67:1d:cc:a5:ce:08:54:21:23:5b:
aa:65:8d:59:69:61:bb:27:c6:26:50:5a:e2:6d:08:
bd:89:34:da:c8:25:5c:34:7a:40:bc:68:71:1b:b0:
6a:db:16:09:5e:05:b9:d6:37:c1:15:5a:04:33:95:
2c:bb:b4:c1:4b:49:62:a6:2e:9f:45:82:17:da:10:
29:32:13:45:3c:02:d7:60:ab:af:93:7a:4a:e9:bd:
6f:52:12:ba:a4:38:f0:43:23:ec:fc:57:64:69:2a:
07:04:33:63:03:94:91:54:ca:56:4a:da:7a:42:51:
08:fc:61:b4:67:58:e0:86:dd:a1:74:a6:4a:06:0f:
5e:3f:1e:38:33:10:ab:fc:98:a0:fa:c3:c4:3b:1d:
c3:a6:89:2b:26:25:2b:46:1c:88:65:91:4e:a4:70:
6f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F1:48:05:9C:BB:51:3F:E2:ED:40:59:3A:FB:89:BD:CC:9A:98:84
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vvFIBZy7UT_i7UBZOvuJvcyamIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.234.0/24
185.72.8.0/24
192.124.176.0/24
193.124.22.0/24
193.124.41.0/24
193.124.46.0/24
194.58.34.0/24
194.58.68.0/24
194.87.39.0/24
194.87.47.0/24
194.87.189.0/24
194.87.198.0/24
194.87.227.0/24
195.133.92.0/24
212.192.12.0/23
212.192.15.0/24
212.192.221.0/24
212.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
32:37:0c:d1:98:f2:ce:1f:2f:4c:48:60:84:30:1b:94:21:42:
6b:ee:83:54:2a:64:25:d3:bf:a4:01:1b:b0:3b:45:1b:ad:24:
17:7a:4a:b6:04:8b:92:b6:b5:25:46:16:06:ac:73:e7:a1:a0:
b4:7b:0e:d1:69:1c:4f:ca:2d:2c:12:9f:b9:f6:03:72:95:86:
ea:0b:96:7d:e8:37:32:e5:1e:39:cf:f8:54:87:b8:48:16:e1:
f7:27:15:d2:e9:d7:fb:ac:08:cd:ce:f5:99:c2:a9:d9:b3:2a:
51:69:2c:40:46:b7:c6:d2:f8:3b:36:0e:f9:db:b8:6f:cd:58:
ff:15:b7:1c:0a:92:b7:1d:83:a9:ff:5c:8d:1c:5a:70:3e:d1:
f6:4f:d7:f9:ac:e9:54:be:24:9a:ef:d3:09:ce:cc:d6:0f:de:
7f:c0:cd:a9:99:64:81:6c:04:2e:12:ae:c5:dc:a6:04:6d:b1:
41:f8:4c:57:f3:c7:4e:87:46:0a:7b:e0:a8:7c:b0:f9:54:1a:
0b:b1:f4:d3:fb:59:a2:2d:df:4c:d0:b1:08:0d:68:bf:e7:7c:
e5:bd:09:49:83:a1:60:43:61:91:fe:9b:40:cf:c0:6d:82:38:
81:b5:4e:eb:01:a8:a4:a8:14:97:81:aa:dd:d2:d2:ae:0d:10:
72:53:32:a4
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAZBeSPf1kudcALNHtFZOHCXoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwNjI4MDk1OTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWYxNDgwNTljYmI1MTNmZTJlZDQwNTkzYWZiODliZGNjOWE5ODg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzD0O8agJV+QmdUtbFllK/jjbn37y
mCcglr2ouqBhwOGVbZ+oFCzwDbpRZiS4veHcQZqh8jWl+5ukw8lv4TQqHJF1q6uf
4X5ltitopANHQbKXqhpNf9hR8eKH7O3c+mcdzKXOCFQhI1uqZY1ZaWG7J8YmUFri
bQi9iTTayCVcNHpAvGhxG7Bq2xYJXgW51jfBFVoEM5Usu7TBS0lipi6fRYIX2hAp
MhNFPALXYKuvk3pK6b1vUhK6pDjwQyPs/FdkaSoHBDNjA5SRVMpWStp6QlEI/GG0
Z1jght2hdKZKBg9ePx44MxCr/Jig+sPEOx3DpokrJiUrRhyIZZFOpHBvxwIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFL7xSAWcu1E/4u1AWTr7ib3MmpiEMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvdnZGSUJaeTdVVF9pN1VCWk92dUp2Y3lhbUlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAD5M6gME
ALlICAMEAMB8sAMEAMF8FgMEAMF8KQMEAMF8LgMEAMI6IgMEAMI6RAMEAMJXJwME
AMJXLwMEAMJXvQMEAMJXxgMEAMJX4wMEAMOFXAMEAdTADAMEANTADwMEANTA3QME
ANTBAjANBgkqhkiG9w0BAQsFAAOCAQEAMjcM0Zjyzh8vTEhghDAblCFCa+6DVCpk
JdO/pAEbsDtFG60kF3pKtgSLkra1JUYWBqxz56GgtHsO0WkcT8otLBKfufYDcpWG
6guWfeg3MuUeOc/4VIe4SBbh9ycV0unX+6wIzc71mcKp2bMqUWksQEa3xtL4OzYO
+du4b81Y/xW3HAqStx2Dqf9cjRxacD7R9k/X+azpVL4kmu/TCc7M1g/ef8DNqZlk
gWwELhKuxdymBG2xQfhMV/PHTodGCnvgqHyw+VQaC7H00/tZoi3fTNCxCA1ov+d8
5b0JSYOhYENhkf6bQM/AbYI4gbVO6wGopKgUl4Gq3dLSrg0QclMypA==
-----END CERTIFICATE-----
Generated at Thu Aug 1 13:20:18 2024 by rpki-client on console-ams.rpki-client.org