Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B-aatUE4KncfVAKHQlFHnRUYzqk.roa
File: B-aatUE4KncfVAKHQlFHnRUYzqk.roa (raw, json)
Hash identifier: jwfUGFBTp58trToS44/xSn4VlkqSAIcjAxrO43UNCgc=
Subject key identifier: 07:E6:9A:B5:41:38:2A:77:1F:54:02:87:42:51:47:9D:15:18:CE:A9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018698F9B0DFADEBE44BB8C00ACDDEE755C5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B-aatUE4KncfVAKHQlFHnRUYzqk.roa
Signing time: Tue 28 Feb 2023 17:02:25 +0000
ROA not before: Tue 28 Feb 2023 17:02:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 195.133.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:98:f9:b0:df:ad:eb:e4:4b:b8:c0:0a:cd:de:e7:55:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 28 17:02:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07e69ab541382a771f5402874251479d1518cea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4f:5c:23:b5:58:37:84:34:a3:6b:5f:4c:5a:
7a:a5:49:45:09:32:c3:e7:a7:a3:1f:3b:3d:93:18:
b6:4c:1c:47:b4:08:31:72:83:1e:a2:80:ff:85:38:
b1:c6:e2:09:8c:b5:5a:02:21:71:fe:a4:cc:f8:58:
83:7d:b9:e0:d1:b8:82:da:0e:4e:d1:75:1b:b1:03:
4d:c8:d4:69:25:d9:4c:06:f3:13:c2:d9:64:d7:b6:
de:64:2f:3d:96:4e:34:28:f9:be:b2:5d:9e:67:59:
1f:ce:65:97:74:a9:4a:eb:16:40:14:90:d9:c5:8f:
4e:41:d0:6d:ec:1a:b3:26:44:84:97:bb:b3:21:89:
98:af:12:02:07:9b:0f:24:83:6d:79:f9:d1:31:f2:
b3:55:c3:41:b0:00:2f:21:50:5e:ee:a6:03:45:e4:
e3:42:33:62:23:d7:41:fa:2a:05:94:66:b2:de:1a:
99:3e:95:41:01:d6:c4:ce:9f:2e:0e:bd:3c:07:90:
b3:de:83:62:a8:5c:86:f9:54:80:0d:b5:08:42:95:
17:15:f8:e9:fa:a0:c2:89:de:9b:c3:70:06:3e:5e:
25:3d:f6:2f:a4:a4:bc:cd:4e:fc:60:5b:e4:9e:8c:
e1:0c:6e:64:be:34:35:4b:81:06:19:c7:71:72:c0:
93:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E6:9A:B5:41:38:2A:77:1F:54:02:87:42:51:47:9D:15:18:CE:A9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/B-aatUE4KncfVAKHQlFHnRUYzqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.24.0/24
Signature Algorithm: sha256WithRSAEncryption
15:07:90:d6:ff:18:b0:2d:fc:cf:35:36:d7:10:57:7e:f7:41:
59:29:7a:66:0f:36:56:32:5a:d7:16:9b:ac:72:3c:3b:17:06:
a0:b6:57:f2:74:1b:70:d6:b5:3d:76:f7:e7:95:ae:7a:71:46:
14:20:78:3f:0b:6d:7e:e7:dd:4a:48:81:79:a2:e1:16:64:2b:
36:18:b4:1e:a9:99:60:c6:72:53:51:a3:1e:94:21:94:37:17:
bd:c9:08:ab:4b:33:74:8e:b9:ab:d7:69:aa:9b:8f:73:2a:fb:
f0:01:69:52:5f:0b:53:cf:2a:a4:23:f9:5b:f6:7b:32:56:3e:
82:e9:08:c4:84:48:0c:7c:31:8b:3b:ab:d9:00:e8:24:42:c9:
bd:aa:35:63:13:fa:ed:61:b5:5e:0c:96:9d:1d:9a:3a:35:a4:
03:1a:f9:e9:70:4b:a3:da:3f:f7:ef:07:d5:d7:c4:d7:29:c6:
ab:d7:dc:a8:23:e9:05:78:05:d0:f7:39:ba:a3:e2:5a:46:cd:
cf:c9:f3:ce:67:f3:6c:30:a4:d4:76:95:6f:4e:89:c0:18:ec:
02:72:4b:2b:62:18:d5:05:71:4c:40:00:17:1e:be:8d:2a:90:
e4:b3:f1:fe:f8:9b:79:cf:be:4f:76:42:34:be:31:fc:b2:79:
64:1d:a4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-ams.rpki-client.org