Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2VEVfX6glyReRWeTuiy33RYXjIU.roa
File: 2VEVfX6glyReRWeTuiy33RYXjIU.roa (raw, json)
Hash identifier: hY59xFfmoVZAiIRgwknrmYjRrrrlGjDYmDptntuM8vw=
Subject key identifier: D9:51:15:7D:7E:A0:97:24:5E:45:67:93:BA:2C:B7:DD:16:17:8C:85
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190782F5F0AC5AF1867D2BAD40703FE3170
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2VEVfX6glyReRWeTuiy33RYXjIU.roa
Signing time: Wed 03 Jul 2024 10:41:28 +0000
ROA not before: Wed 03 Jul 2024 10:41:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216093
IP address blocks: 194.87.28.0/24 maxlen: 24
195.133.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 09:37:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:78:2f:5f:0a:c5:af:18:67:d2:ba:d4:07:03:fe:31:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 3 10:41:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d951157d7ea097245e456793ba2cb7dd16178c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:31:e9:cb:8f:8b:03:b6:a4:21:d4:3a:7e:
0a:d4:1f:61:b0:a1:de:d3:fa:46:cb:62:1e:78:68:
f6:4a:d5:93:de:3f:80:38:0b:b2:ad:11:3e:f3:3d:
f1:5e:9e:05:6d:ea:d3:f6:de:7a:1a:87:73:62:d5:
40:76:a9:f0:e1:9e:43:02:62:bb:37:e8:a9:2b:35:
d7:fb:65:9b:74:f3:f8:0d:16:63:95:db:c2:a2:29:
a2:7c:a3:94:23:17:33:d2:ed:48:a2:34:a6:d8:a1:
17:84:dc:d5:63:32:c8:25:73:2c:ce:8c:82:44:c4:
46:53:7f:54:6c:00:64:b7:1a:77:53:b7:ad:c2:a6:
cd:c1:20:33:82:4d:cc:76:1d:3a:7a:52:19:4c:69:
d1:5c:ea:ea:41:76:52:74:4e:2e:b6:81:6b:ee:e4:
b5:3e:3e:b6:2c:71:f8:0e:86:23:5c:ca:0f:bd:1f:
24:17:7e:27:bc:8a:d1:0b:8f:55:bb:60:12:39:49:
b1:74:43:19:d8:29:ff:89:ac:a5:4f:e7:6a:09:29:
73:f5:aa:47:d2:af:65:2e:46:6b:78:81:e6:69:7b:
a2:90:25:f8:c0:f1:53:ce:5b:a2:b3:1a:e4:2b:6b:
75:4e:aa:00:ad:a4:e2:7b:1a:39:b2:fb:83:90:97:
f1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:51:15:7D:7E:A0:97:24:5E:45:67:93:BA:2C:B7:DD:16:17:8C:85
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/2VEVfX6glyReRWeTuiy33RYXjIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.28.0/24
195.133.51.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e4:b3:18:84:cc:ce:68:4f:62:26:7c:01:01:23:28:ad:5a:
8c:ca:3e:82:be:73:3b:9d:c7:72:eb:e3:2a:fb:45:24:c4:68:
51:a9:14:6e:d2:09:0d:32:88:64:d3:2c:c5:c5:cb:f5:b7:f3:
e6:f1:19:f7:a1:c4:79:6b:a2:32:c6:7b:9b:f0:da:7b:d7:cb:
30:d0:00:11:d7:bb:e6:9c:49:f8:25:f7:98:f9:8c:3a:de:fd:
45:f0:d9:de:fe:f2:71:77:b2:1c:03:10:a6:da:40:61:cf:14:
c2:24:e5:b7:be:2b:c9:f0:d0:e8:22:ba:29:7e:4a:b9:7e:e1:
a5:14:9a:80:84:84:e3:1d:85:8c:f7:23:30:0c:73:76:1e:21:
04:74:3b:91:32:2d:d7:b3:19:f8:b3:73:3a:7e:fd:0f:ab:c3:
48:5f:9e:4e:53:5a:96:94:23:ae:bb:42:f5:dc:9e:da:b1:25:
41:60:76:0c:fd:ac:19:43:9b:91:0f:08:a3:63:fa:d4:12:b6:
f3:fb:4e:53:39:d8:e4:70:d3:a2:5b:a5:ab:22:53:d0:46:88:
c2:5c:c6:9b:b2:41:b5:8d:6a:e4:e4:d7:22:45:8f:2e:9f:b6:
a7:f8:4c:95:1b:e2:a4:13:03:a4:1a:5d:32:e0:d8:56:83:25:
34:53:46:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 12:18:41 2024 by rpki-client on console-ams.rpki-client.org