Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7joI5JsLZ1hsXtOojQw3KH6EJWw.roa
File: 7joI5JsLZ1hsXtOojQw3KH6EJWw.roa (raw, json)
Hash identifier: xQQSVMpv5irvHiO3uj9iK9OCqECJSACTkB/aSzmBDg0=
Subject key identifier: EE:3A:08:E4:9B:0B:67:58:6C:5E:D3:A8:8D:0C:37:28:7E:84:25:6C
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 0189F9747C15F2B17BFB161D3FB9BE67E93B
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7joI5JsLZ1hsXtOojQw3KH6EJWw.roa
Signing time: Tue 15 Aug 2023 13:48:28 +0000
ROA not before: Tue 15 Aug 2023 13:48:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8985
IP address blocks: 194.190.146.0/24 maxlen: 24
194.226.16.0/24 maxlen: 24
194.85.16.0/24 maxlen: 24
195.208.222.0/24 maxlen: 24
195.208.24.0/21 maxlen: 21
195.208.29.0/24 maxlen: 24
193.232.64.0/24 maxlen: 24
193.232.76.0/24 maxlen: 24
195.209.147.0/24 maxlen: 24
195.209.148.0/24 maxlen: 24
193.232.226.0/23 maxlen: 23
194.226.41.0/24 maxlen: 24
194.226.38.0/23 maxlen: 23
195.19.8.0/24 maxlen: 24
194.226.56.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 15 Aug 2023 14:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f9:74:7c:15:f2:b1:7b:fb:16:1d:3f:b9:be:67:e9:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Aug 15 13:48:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee3a08e49b0b67586c5ed3a88d0c37287e84256c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:93:47:01:cd:66:28:1c:16:4b:d5:3b:3b:
c7:a1:da:4f:68:f6:40:cd:8c:92:f7:5c:81:14:6c:
be:83:5e:6b:b6:0b:3f:9d:0d:82:11:37:27:27:20:
f5:33:fc:f8:de:1d:9f:93:9a:ff:e5:5e:e0:7e:43:
eb:51:9a:68:ab:1a:14:2f:6e:64:ad:1b:9c:eb:22:
58:db:62:34:85:58:0f:ea:12:2e:0b:74:41:17:1f:
72:7f:70:3f:d9:dd:1e:fb:4d:24:5b:cf:33:44:31:
a3:b0:59:65:db:4c:e9:24:89:98:bb:94:d8:f8:cf:
73:8a:3b:10:28:b1:b6:52:a2:6f:94:82:18:30:7e:
14:99:3f:b5:79:88:50:6d:aa:c6:16:6c:82:06:84:
1d:11:9d:9d:75:2b:85:40:81:69:0c:b2:ba:1d:22:
d6:58:c7:a3:cb:8e:ff:72:f0:1e:72:00:6a:24:ea:
a1:1a:30:7f:06:98:8c:6f:4a:f9:6c:6d:e7:cc:a3:
19:38:c2:b2:a7:84:5e:11:94:31:0a:ff:b7:f5:ee:
95:e2:fa:c1:02:39:f5:2e:aa:dd:24:3f:7b:7f:0b:
17:0a:1d:82:23:9d:b8:6f:f2:5b:e5:81:4c:3a:7d:
1a:31:a2:52:50:c7:0c:38:dc:26:81:3a:61:3f:9e:
f6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3A:08:E4:9B:0B:67:58:6C:5E:D3:A8:8D:0C:37:28:7E:84:25:6C
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7joI5JsLZ1hsXtOojQw3KH6EJWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.64.0/24
193.232.76.0/24
193.232.226.0/23
194.85.16.0/24
194.190.146.0/24
194.226.16.0/24
194.226.38.0/23
194.226.41.0/24
194.226.56.0/23
195.19.8.0/24
195.208.24.0/21
195.208.222.0/24
195.209.147.0-195.209.148.255
Signature Algorithm: sha256WithRSAEncryption
1a:df:a5:f8:9d:ba:b3:2a:75:73:87:e0:ae:a9:8b:21:ef:83:
b9:ac:41:2d:bf:18:cc:ef:8e:35:9e:bc:e2:66:a0:d7:25:b2:
ed:ae:63:88:f1:26:a9:c2:94:f8:9e:d7:8c:da:8d:74:c0:a1:
d9:98:b0:84:e9:2d:6a:3d:0e:8e:b2:0a:46:b0:6a:91:f7:be:
b5:27:f2:5e:3e:9d:df:24:05:d0:60:ae:a8:40:6e:03:06:66:
25:d1:af:93:13:37:50:d3:58:99:a8:51:4a:0a:45:9c:b3:06:
07:9b:45:1a:6b:d6:ee:d9:47:b3:69:93:0d:d9:ef:9d:77:a4:
1b:ef:08:64:88:72:50:a0:9e:86:c4:29:fa:f0:d6:e5:cf:e4:
f7:3b:a7:e2:bd:1b:84:7b:f7:61:92:a2:35:f6:62:cc:68:49:
dd:1c:6f:23:26:a3:d4:93:18:b3:a1:23:42:c2:e8:ec:d8:b4:
a9:3b:ae:3d:41:e2:e2:93:8c:06:01:24:20:8c:d0:a4:d5:9e:
b8:36:a3:99:0e:d1:21:d5:eb:31:29:fa:fe:74:97:bd:0c:f2:
38:29:ca:61:34:c5:78:75:7e:88:4b:d8:99:c4:03:57:13:90:
73:6b:61:27:90:0d:ba:81:d7:d8:f9:83:a6:66:86:18:85:b2:
b4:ff:34:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:51 2024 by rpki-client on console-ams.rpki-client.org