Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/76wsU1u1mftHThIvIUC_1jtjs7w.roa
File: 76wsU1u1mftHThIvIUC_1jtjs7w.roa (raw, json)
Hash identifier: 7lfK330v1qkEZJ68myMVYLREINzOf4UzR6ZFbzdkFyY=
Subject key identifier: EF:AC:2C:53:5B:B5:99:FB:47:4E:12:2F:21:40:BF:D6:3B:63:B3:BC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A84EA83D2B3AA2DE3B8AA4AC4838C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/76wsU1u1mftHThIvIUC_1jtjs7w.roa
Signing time: Tue 02 Jan 2024 12:33:53 +0000
ROA not before: Tue 02 Jan 2024 12:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203647
IP address blocks: 194.135.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jan 2024 08:24:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:84:ea:83:d2:b3:aa:2d:e3:b8:aa:4a:c4:83:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efac2c535bb599fb474e122f2140bfd63b63b3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:d0:31:47:4b:89:7e:19:1a:bc:50:d2:35:
a9:ce:6b:06:b8:53:11:c9:6e:0d:c4:70:50:42:c3:
b4:3c:e4:f5:2d:ef:17:d4:c4:79:34:fd:8e:8b:82:
29:a9:25:18:77:09:f8:e3:7a:3f:1f:c2:73:e0:21:
61:9e:26:75:f7:60:24:6d:d8:12:af:f8:66:f4:bd:
f6:f7:45:86:56:ae:46:96:5e:f0:0a:45:05:67:06:
fb:15:83:57:d8:99:ba:b4:34:7a:4a:97:10:82:d4:
1a:58:b4:12:30:70:c7:8d:f2:75:0b:24:8f:86:61:
b3:55:5b:05:45:b4:a6:d6:11:42:96:3b:fe:28:be:
03:cf:7e:39:16:82:6a:d7:56:8b:2d:d6:f3:99:c8:
13:05:fe:70:b4:a3:a1:ea:7f:56:87:48:c7:86:78:
4c:a5:2e:49:36:20:3b:e4:13:e3:9c:a5:d9:05:da:
11:7c:46:b0:fb:25:85:34:9d:67:fc:ce:a0:dc:5c:
28:be:9e:2a:dd:15:9e:59:b2:70:16:2a:64:54:4e:
00:eb:f8:5e:83:a5:90:3a:45:23:d9:d4:ca:5e:33:
f4:fe:ba:e9:a0:72:b8:5c:be:6b:fe:56:a7:a4:64:
22:3b:83:e2:08:b2:f5:6f:91:ae:0f:ad:c0:f2:48:
88:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AC:2C:53:5B:B5:99:FB:47:4E:12:2F:21:40:BF:D6:3B:63:B3:BC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/76wsU1u1mftHThIvIUC_1jtjs7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
13:31:2c:ba:5c:33:99:54:1b:63:c2:0e:7d:bb:8f:55:db:e5:
fe:7b:4f:69:8e:f4:9d:bb:29:69:0a:03:77:8b:7b:b8:cd:08:
a3:4a:66:2e:67:89:2e:af:e5:d8:17:c7:12:06:98:78:0e:6a:
fd:ea:40:97:f8:ae:f9:4b:54:aa:60:b4:2e:a8:71:15:85:53:
53:70:85:ed:8e:6d:86:85:5a:ea:fc:0a:87:26:1f:31:36:12:
ff:a2:bc:47:7c:8e:76:d2:bc:64:8d:1f:d4:e0:54:f9:bf:00:
bd:bc:0e:fc:e7:6d:3d:e9:d1:e9:3b:78:a7:e1:e8:4f:6e:5c:
c9:df:06:36:01:2a:2a:d5:14:eb:b8:6e:61:db:2e:32:ef:2f:
92:9c:4a:09:c4:4b:0b:5c:ce:02:16:ee:d2:71:bd:08:87:3b:
b0:17:38:f8:81:af:68:d5:39:ba:c8:8a:fa:2a:4d:74:54:f6:
ec:5a:a7:4c:e1:0a:f8:63:a3:c5:06:45:df:50:dc:b3:3d:1f:
cf:b7:77:b4:e1:cc:eb:bb:d0:c5:b3:8f:1d:3d:6f:a0:15:21:
50:e5:5f:f6:67:5c:0e:45:4d:7a:bb:72:8f:b4:65:fd:1c:bb:
6c:ec:c4:9b:25:44:8b:8d:90:36:ae:73:ae:e1:ba:67:25:42:
51:84:b0:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 28 11:37:33 2024 by rpki-client on console-fra.rpki-client.org