Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59XjnTpLPhhwi4zql4BoWg-egTM.roa
File: 59XjnTpLPhhwi4zql4BoWg-egTM.roa (raw, json)
Hash identifier: pK10Cr3GZ1I5CwLSGdXT4vwiJLstoW65qKMyW4dYvps=
Subject key identifier: E7:D5:E3:9D:3A:4B:3E:18:70:8B:8C:EA:97:80:68:5A:0F:9E:81:33
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018F0F7A0FDD076F06E5491E9CDF14DB9C48
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59XjnTpLPhhwi4zql4BoWg-egTM.roa
Signing time: Wed 24 Apr 2024 09:40:08 +0000
ROA not before: Wed 24 Apr 2024 09:40:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 195.133.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 18:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:7a:0f:dd:07:6f:06:e5:49:1e:9c:df:14:db:9c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 24 09:40:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7d5e39d3a4b3e18708b8cea9780685a0f9e8133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:08:79:3f:0e:c4:e1:2f:13:a2:d5:98:f3:2a:
ac:3b:0f:62:20:ea:67:8d:00:ac:ce:f3:82:d6:7d:
60:98:0d:11:1b:12:52:3f:4e:bd:ed:53:df:f2:19:
01:12:5f:29:18:a2:fc:ed:49:e4:02:29:f9:98:c0:
21:20:fd:0d:fd:5c:d6:e6:14:2f:bd:ec:2b:cb:8a:
ea:f4:ef:0e:84:97:83:a7:2e:db:93:8e:8a:4f:d2:
b5:26:2d:39:c0:26:ab:6f:b8:d3:9d:53:f7:b2:bc:
8b:c0:33:ec:f0:61:55:d2:d9:96:9a:87:13:07:f4:
2a:e3:15:24:31:97:4f:25:72:70:89:b7:f6:45:a1:
65:3c:65:52:98:94:8d:ae:03:70:c2:b7:87:0f:28:
b7:53:82:a0:e8:4d:d5:4f:55:a8:8c:67:1b:83:fa:
ea:48:c9:cc:b0:d7:4a:9e:a7:06:ac:50:a7:ad:15:
4d:ad:27:6f:ce:5d:f1:47:52:26:bb:ad:f8:26:7f:
a1:7a:af:39:0e:d4:bc:69:ae:77:a9:36:02:1d:08:
89:67:a3:b6:ce:ce:f8:e9:9b:96:80:2f:92:65:11:
f9:31:19:b3:a1:8f:b8:26:af:33:a7:17:45:12:4f:
ff:44:a7:be:33:af:db:f6:e8:88:2d:df:b9:ae:df:
29:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D5:E3:9D:3A:4B:3E:18:70:8B:8C:EA:97:80:68:5A:0F:9E:81:33
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59XjnTpLPhhwi4zql4BoWg-egTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.2.0/24
Signature Algorithm: sha256WithRSAEncryption
80:c0:2c:6a:23:a2:cd:2d:ea:dc:fe:cf:a4:0a:76:23:4d:83:
04:1f:41:a3:53:2f:af:46:1b:15:5f:c7:e0:2c:e6:4e:e9:08:
0c:68:54:57:ee:1e:56:39:62:be:8f:b9:40:96:5a:e6:84:87:
e5:10:9c:36:6b:db:51:c5:a6:90:b8:f2:df:fe:7a:3b:f2:0d:
ea:23:ce:57:8b:d3:29:f9:ee:0e:82:c6:97:6e:a3:4b:68:49:
04:32:a7:5c:fe:04:f0:ca:54:e9:a8:fa:c3:ff:d9:f8:07:d0:
fb:2d:60:64:d7:30:c4:3d:f0:94:19:c7:80:84:69:35:4c:08:
ec:c7:1c:23:95:c2:44:34:3a:c3:a0:f5:22:1b:cb:6e:b4:d4:
03:a9:89:c1:7d:42:e2:21:0c:b8:59:97:ff:aa:ea:db:23:e9:
77:49:70:be:58:bb:de:63:f3:65:1e:0d:3a:1a:fd:9f:36:42:
cc:26:0f:cc:8f:07:35:a1:00:84:6c:e2:f8:f6:92:c0:31:46:
a5:dd:a3:ee:57:34:e1:4d:0a:eb:ca:65:3b:ac:f4:ce:f2:c4:
4d:e5:fd:ec:b9:63:a9:dd:10:60:50:11:9d:28:b6:c7:18:f7:
fb:6b:ce:d2:38:41:cb:d6:18:9a:81:f9:39:42:1b:ce:79:da:
8f:f1:c3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 21:03:17 2024 by rpki-client on console-ams.rpki-client.org