Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xUPuJelx7YRVUhe6kh_Hv0T_Wkk.roa
File: xUPuJelx7YRVUhe6kh_Hv0T_Wkk.roa (raw, json)
Hash identifier: 65oDXA8v5aGhfafwdjozRl/GWeEEdChwv20V/hUpFhE=
Subject key identifier: C5:43:EE:25:E9:71:ED:84:55:52:17:BA:92:1F:C7:BF:44:FF:5A:49
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018847D4BF4926188335DDA1940F99CA9AAA
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xUPuJelx7YRVUhe6kh_Hv0T_Wkk.roa
Signing time: Tue 23 May 2023 08:58:24 +0000
ROA not before: Tue 23 May 2023 08:58:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.27.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.58.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
195.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 19:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:d4:bf:49:26:18:83:35:dd:a1:94:0f:99:ca:9a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 23 08:58:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c543ee25e971ed84555217ba921fc7bf44ff5a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3c:63:29:db:a1:82:a6:04:1e:e6:a7:2e:82:
e2:9b:af:f4:37:8d:ba:3b:fa:6a:4f:5f:6b:5d:08:
79:65:de:16:59:4a:22:d8:d7:dc:d0:35:45:c8:af:
80:f8:cc:38:96:a5:a5:45:87:10:80:5b:53:48:9d:
14:3d:e6:a1:1c:11:b0:e6:c6:e2:11:fa:db:9c:f2:
35:e8:93:79:c3:81:90:0a:e2:e3:0c:93:e8:08:54:
e0:ff:b2:95:1b:94:c8:39:40:8c:8e:a1:ef:80:de:
57:b4:ce:52:a0:ba:54:d0:7f:29:b2:aa:49:81:34:
9b:e6:5b:f8:24:b9:5f:af:2b:d2:31:96:98:d1:0b:
65:50:96:0a:9c:78:4e:61:d7:cf:7e:a3:57:25:ee:
fd:7a:e6:22:77:5d:66:d7:40:09:ba:e8:4a:84:aa:
f0:6b:85:bd:72:6f:40:76:f6:e3:e0:b0:68:f8:3d:
1b:45:c4:4b:a1:a7:bd:1a:5c:c3:fe:e5:db:32:33:
74:dc:a4:90:cc:50:98:d4:9c:7e:46:76:68:17:d4:
fd:19:38:34:8c:43:86:07:1b:54:39:c9:59:5a:fc:
fd:3e:33:ee:88:4d:ad:0d:ca:ae:03:4f:f6:87:61:
0a:3a:e5:12:0e:6c:f1:73:9c:aa:7a:f3:0b:3b:b6:
74:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:43:EE:25:E9:71:ED:84:55:52:17:BA:92:1F:C7:BF:44:FF:5A:49
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/xUPuJelx7YRVUhe6kh_Hv0T_Wkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
194.58.45.0-194.58.47.255
194.87.27.0/24
194.87.136.0/24
194.87.198.0/24
194.87.208.0/23
194.87.222.0/23
195.58.56.0/21
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
55:be:7f:f2:3e:1c:fb:47:bc:bc:2e:3e:6c:18:35:3b:9d:17:
20:c6:cc:18:4f:cc:34:7d:7e:8d:a9:cd:9d:dc:29:25:ba:20:
bc:bc:39:82:58:34:c1:85:d6:a0:de:de:50:9a:c3:ad:a2:62:
c9:90:65:47:8e:87:93:b9:a6:34:87:62:4f:3d:ec:b8:a1:eb:
7a:5c:61:f4:36:de:f6:cd:7d:f7:43:34:80:33:ae:ac:5e:3a:
78:03:c0:f0:db:21:10:e9:be:0a:88:6f:42:c5:c3:67:e4:c9:
5e:76:90:c9:af:34:5e:3d:65:d6:a0:58:52:b4:0d:a6:89:2f:
f1:f3:99:fd:12:03:93:e0:11:ba:39:7b:e9:90:88:c7:e8:2f:
f8:36:3a:d4:b6:3a:94:92:e3:68:36:96:7e:c3:b4:5a:20:eb:
9c:94:80:56:66:f4:3d:4f:27:81:c2:30:33:25:b4:b4:6c:34:
64:32:56:12:ca:69:28:04:5e:51:20:ab:77:cd:6a:2a:cf:39:
cb:18:3e:63:2b:41:62:6e:bf:71:34:7e:25:11:e4:1a:ba:ec:
7e:f5:dd:c7:0c:dc:fd:fb:6a:02:c7:0c:35:00:42:7a:7f:24:
b2:05:08:5a:4d:5a:ca:b2:3c:ad:28:c8:f2:f0:0b:15:89:08:
4e:0b:ee:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:30 2024 by rpki-client on console-fra.rpki-client.org