Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/FGyTZ3ACXuOoI9yqb_T92Cjk1iY.roa
File: FGyTZ3ACXuOoI9yqb_T92Cjk1iY.roa (raw, json)
Hash identifier: Z+c4i+9slczlfg1H4UEz8XIp+kSGLaeeJV5vTKgOZWw=
Subject key identifier: 14:6C:93:67:70:02:5E:E3:A8:23:DC:AA:6F:F4:FD:D8:28:E4:D6:26
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 0190307A38E89E5A3428D0C24D96F4266A10
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/FGyTZ3ACXuOoI9yqb_T92Cjk1iY.roa
Signing time: Wed 19 Jun 2024 12:30:34 +0000
ROA not before: Wed 19 Jun 2024 12:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12430
IP address blocks: 5.224.0.0/15 maxlen: 15
31.4.0.0/16 maxlen: 24
37.222.0.0/15 maxlen: 24
46.24.0.0/14 maxlen: 14
46.136.0.0/16 maxlen: 16
62.87.0.0/17 maxlen: 17
77.208.0.0/14 maxlen: 14
77.224.0.0/13 maxlen: 13
87.124.192.0/18 maxlen: 18
87.125.0.0/16 maxlen: 16
87.235.0.0/16 maxlen: 16
89.6.0.0/15 maxlen: 15
93.113.16.0/21 maxlen: 21
93.113.136.0/21 maxlen: 21
94.248.64.0/18 maxlen: 18
95.60.0.0/14 maxlen: 14
148.56.0.0/16 maxlen: 16
159.147.0.0/16 maxlen: 16
178.57.128.0/18 maxlen: 18
178.139.0.0/16 maxlen: 16
188.84.0.0/14 maxlen: 14
188.211.228.0/22 maxlen: 22
193.125.0.0/16 maxlen: 16
194.220.0.0/16 maxlen: 16
212.73.32.0/19 maxlen: 19
212.145.0.0/16 maxlen: 16
212.166.128.0/17 maxlen: 17
217.130.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 20 Jun 2024 08:18:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:7a:38:e8:9e:5a:34:28:d0:c2:4d:96:f4:26:6a:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jun 19 12:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=146c936770025ee3a823dcaa6ff4fdd828e4d626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:08:f0:b3:31:46:5b:51:26:92:ab:cc:26:0e:
fe:9b:57:e8:6f:4c:af:ad:1e:4b:ae:87:ad:0a:2a:
08:90:65:fd:a3:db:90:f4:75:be:0e:8e:2a:f8:9e:
c9:0c:54:51:d0:76:59:7f:93:02:c0:3b:6d:f4:06:
7c:e3:64:7d:5c:91:dd:68:ed:db:34:02:38:87:1b:
e5:01:21:7e:54:ad:7d:47:17:d2:94:be:c4:d2:c2:
a4:f8:f8:cf:0c:f2:8c:3e:84:c2:41:83:e0:2a:d4:
9e:5a:ba:43:87:4d:92:67:72:48:49:68:77:12:7e:
4f:92:4b:2e:4c:95:0e:c5:da:78:bf:98:1d:5e:15:
09:85:bc:98:ea:73:67:e4:72:ae:c2:6f:a6:31:2f:
77:92:63:14:d6:68:3c:5b:87:54:b6:f4:b3:e1:32:
7f:01:23:0d:7e:79:49:de:22:f2:0b:47:a0:56:ce:
4b:a3:53:3a:ca:65:b4:39:3c:2d:64:41:58:73:56:
31:9a:5c:a5:c5:6e:55:c4:34:52:93:ed:5c:c9:75:
b1:27:94:ff:b3:fc:98:ec:32:21:e8:50:cd:a7:af:
71:f3:92:ac:8b:c4:aa:f9:51:c6:8c:fd:58:2e:d2:
9f:31:06:a4:c3:09:43:88:b6:77:72:67:d4:d7:b0:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6C:93:67:70:02:5E:E3:A8:23:DC:AA:6F:F4:FD:D8:28:E4:D6:26
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/FGyTZ3ACXuOoI9yqb_T92Cjk1iY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.224.0.0/15
31.4.0.0/16
37.222.0.0/15
46.24.0.0/14
46.136.0.0/16
62.87.0.0/17
77.208.0.0/14
77.224.0.0/13
87.124.192.0-87.125.255.255
87.235.0.0/16
89.6.0.0/15
93.113.16.0/21
93.113.136.0/21
94.248.64.0/18
95.60.0.0/14
148.56.0.0/16
159.147.0.0/16
178.57.128.0/18
178.139.0.0/16
188.84.0.0/14
188.211.228.0/22
193.125.0.0/16
194.220.0.0/16
212.73.32.0/19
212.145.0.0/16
212.166.128.0/17
217.130.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2a:7a:ff:5b:bc:5a:82:22:44:c8:c5:37:2a:7e:18:89:1e:d5:
e2:c1:6a:00:e0:ea:30:2a:70:de:d7:fd:85:b5:ab:cd:df:e2:
75:16:b7:97:b2:74:64:53:96:28:14:4c:77:30:dc:b7:3c:8b:
01:ae:9e:ef:de:ff:4f:58:8e:d3:f5:1f:9f:b1:c7:1f:5c:4c:
5b:c2:0e:9a:21:8f:2e:1d:82:ba:2b:82:5a:40:80:5d:ef:20:
44:68:b0:2e:ca:50:bc:d1:96:e7:7f:66:6e:03:79:8b:1d:83:
b9:85:83:1b:9f:54:4d:d3:e7:55:62:94:f9:f3:e8:c7:ff:ca:
51:8e:60:f9:7e:c8:f4:77:6d:a2:d7:60:c9:2d:81:69:5d:36:
fb:a7:cc:e8:16:b9:e7:11:47:b6:b0:6f:9b:56:da:e9:5e:34:
c3:35:aa:c6:c8:dd:b5:2f:bc:41:b0:a5:78:55:f0:ff:4e:ca:
88:b0:d0:86:8c:6b:18:45:3b:c3:36:9b:06:3f:77:6a:a9:f1:
af:c4:a8:e9:1d:6a:83:8e:08:67:f2:58:7a:7b:5b:17:b8:ad:
fa:7e:e1:58:fa:a6:c0:49:f8:02:cb:cd:b4:ae:e2:9c:71:4e:
ae:8c:51:57:ec:a1:22:72:16:55:1a:3c:df:9a:d2:2d:57:68:
85:31:65:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:21:01 2024 by rpki-client on console-fra.rpki-client.org