Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vwUJHtEenLJ46jrC4e-aaoQUSik.roa
File: vwUJHtEenLJ46jrC4e-aaoQUSik.roa (raw, json)
Hash identifier: LfFZ+aC1nJm6mJ5dw26MlEV2upkM93O2wCT/nc+Gqfc=
Subject key identifier: BF:05:09:1E:D1:1E:9C:B2:78:EA:3A:C2:E1:EF:9A:6A:84:14:4A:29
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C7E3140E7268EFD1F84F79C533E4D5639
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vwUJHtEenLJ46jrC4e-aaoQUSik.roa
Signing time: Mon 18 Dec 2023 18:30:06 +0000
ROA not before: Mon 18 Dec 2023 18:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 62.76.227.0/24 maxlen: 24
194.87.40.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
195.58.38.0/24 maxlen: 24
195.133.25.0/24 maxlen: 24
195.133.27.0/24 maxlen: 24
195.133.40.0/22 maxlen: 22
194.87.66.0/24 maxlen: 24
212.192.254.0/24 maxlen: 24
194.58.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 11:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7e:31:40:e7:26:8e:fd:1f:84:f7:9c:53:3e:4d:56:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 18 18:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf05091ed11e9cb278ea3ac2e1ef9a6a84144a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:e3:29:7a:78:67:74:b8:f8:19:21:47:6d:
e5:b8:e8:c5:ae:7a:fa:44:75:77:d5:53:0c:de:6c:
02:fe:2f:95:bb:1f:3c:ac:03:3c:59:ff:1a:ac:82:
c0:ac:bb:0b:cf:02:d7:d3:a5:e0:f4:fd:98:f4:0d:
6a:c6:04:d0:1f:4a:41:44:54:36:19:6e:63:6f:f7:
3a:71:11:d4:aa:b3:85:a0:40:e6:59:48:6a:a5:b2:
d6:e4:d9:db:83:19:2f:94:d1:3a:7a:de:25:f1:10:
da:bf:cb:40:3d:80:0b:9b:4c:59:35:85:55:d7:bf:
5e:13:83:a4:d3:8a:46:99:9e:f5:25:0a:7a:de:c2:
39:35:01:24:5f:29:d5:2b:72:0d:9b:53:c5:8f:40:
23:76:69:31:12:f8:08:54:76:1f:59:24:01:c1:ca:
b7:76:b9:0a:f5:72:6e:73:23:17:73:95:76:b8:6e:
8b:73:49:8c:86:e7:ec:22:46:bd:50:e9:45:23:ee:
14:31:32:c6:4d:3c:a9:f4:76:d2:d5:df:b6:77:4e:
c4:f0:18:d8:6f:c8:03:5b:5d:9d:6e:b1:fe:7c:50:
b7:70:9e:6a:04:f2:41:4c:ac:78:5f:4a:2f:a1:92:
90:b2:78:21:bb:a9:ed:5b:bb:1a:e1:46:8d:f2:ae:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:05:09:1E:D1:1E:9C:B2:78:EA:3A:C2:E1:EF:9A:6A:84:14:4A:29
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vwUJHtEenLJ46jrC4e-aaoQUSik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.227.0/24
194.58.66.0/24
194.87.40.0/24
194.87.66.0/24
195.58.35.0/24
195.58.38.0/24
195.133.25.0/24
195.133.27.0/24
195.133.40.0/22
212.192.254.0/24
Signature Algorithm: sha256WithRSAEncryption
06:df:1d:b3:dc:20:eb:be:fd:a7:4a:e5:62:8b:24:08:98:ed:
38:f4:16:3c:80:ff:b8:87:30:aa:5a:64:84:03:6c:40:df:61:
7c:58:70:4d:4e:d1:d9:3f:14:1e:3f:80:65:65:24:d8:60:43:
da:bc:07:89:bb:3a:36:4d:f5:d5:e4:a5:a3:a8:6e:2a:cc:32:
c6:c1:74:c2:a0:08:e6:73:33:eb:c9:48:06:d8:e9:48:6d:7b:
55:ff:be:86:fe:28:62:7c:fd:5e:98:8f:2a:ac:7e:c8:c3:46:
43:56:c7:11:26:2c:01:a3:e3:14:97:66:13:f7:0b:11:f4:57:
92:6d:84:ba:32:c2:08:74:2e:cf:c2:dc:83:12:92:08:fe:e2:
25:ee:84:e0:88:18:7f:41:31:4c:5c:7e:f8:1a:86:db:8c:2a:
ea:44:af:1c:30:63:19:62:e5:08:08:65:3c:cc:6d:94:51:17:
3c:0f:76:b2:77:25:8c:0a:9f:67:c7:dc:4d:8b:dc:cc:a0:4a:
16:05:25:d0:8e:7a:52:04:f3:b8:6c:84:d8:d9:18:32:85:c4:
61:6f:90:5a:76:c9:2e:ad:49:41:1c:03:98:9b:0a:f4:ba:ec:
36:bc:23:54:dd:54:25:ad:e7:59:67:bc:bd:5c:4e:6b:bf:dc:
ea:d0:0d:c5
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYx+MUDnJo79H4T3nFM+TVY5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMxMjE4MTgzMDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjA1MDkxZWQxMWU5Y2IyNzhlYTNhYzJlMWVmOWE2YTg0MTQ0YTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1/jKXp4Z3S4+BkhR23luOjFrnr6
RHV31VMM3mwC/i+Vux88rAM8Wf8arILArLsLzwLX06Xg9P2Y9A1qxgTQH0pBRFQ2
GW5jb/c6cRHUqrOFoEDmWUhqpbLW5NnbgxkvlNE6et4l8RDav8tAPYALm0xZNYVV
179eE4Ok04pGmZ71JQp63sI5NQEkXynVK3INm1PFj0AjdmkxEvgIVHYfWSQBwcq3
drkK9XJucyMXc5V2uG6Lc0mMhufsIka9UOlFI+4UMTLGTTyp9HbS1d+2d07E8BjY
b8gDW12dbrH+fFC3cJ5qBPJBTKx4X0ovoZKQsnghu6ntW7sa4UaN8q6q9wIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFL8FCR7RHpyyeOo6wuHvmmqEFEopMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvdndVSkh0RWVuTEo0NmpyQzRlLWFhb1FVU2lrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQAPkzjAwQA
wjpCAwQAwlcoAwQAwldCAwQAwzojAwQAwzomAwQAw4UZAwQAw4UbAwQCw4UoAwQA
1MD+MA0GCSqGSIb3DQEBCwUAA4IBAQAG3x2z3CDrvv2nSuViiyQImO049BY8gP+4
hzCqWmSEA2xA32F8WHBNTtHZPxQeP4BlZSTYYEPavAeJuzo2TfXV5KWjqG4qzDLG
wXTCoAjmczPryUgG2OlIbXtV/76G/ihifP1emI8qrH7Iw0ZDVscRJiwBo+MUl2YT
9wsR9FeSbYS6MsIIdC7PwtyDEpII/uIl7oTgiBh/QTFMXH74GobbjCrqRK8cMGMZ
YuUICGU8zG2UURc8D3aydyWMCp9nx9xNi9zMoEoWBSXQjnpSBPO4bITY2RgyhcRh
b5BadskurUlBHAOYmwr0uuw2vCNU3VQlredZZ7y9XE5rv9zq0A3F
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:29 2024 by rpki-client on console-fra.rpki-client.org