Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IEvpnPrya-lt2Qe-wZXL3Du7338.roa
File: IEvpnPrya-lt2Qe-wZXL3Du7338.roa (raw, json)
Hash identifier: UN07vt7MTChwym5qtiQiSMupynnMVznutOgLCtpp67I=
Subject key identifier: 20:4B:E9:9C:FA:F2:6B:E9:6D:D9:07:BE:C1:95:CB:DC:3B:BB:DF:7F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B477141B8B7E84453350E08765D94A115
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IEvpnPrya-lt2Qe-wZXL3Du7338.roa
Signing time: Thu 19 Oct 2023 10:18:06 +0000
ROA not before: Thu 19 Oct 2023 10:18:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 194.58.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:71:41:b8:b7:e8:44:53:35:0e:08:76:5d:94:a1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 19 10:18:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=204be99cfaf26be96dd907bec195cbdc3bbbdf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e8:89:53:b5:9e:d5:40:d4:37:75:86:d5:44:
d2:1b:a6:3d:b4:07:a7:db:b5:97:50:6b:46:79:32:
da:da:bd:45:4c:5e:53:17:7f:a1:5b:4d:34:1e:ab:
8d:f6:d4:07:68:6d:da:bf:51:c7:11:14:87:e0:98:
3b:30:e4:ff:33:1b:27:27:22:70:8a:2c:26:97:1f:
4d:02:74:dd:51:18:b0:71:d9:d7:77:d3:a4:5b:09:
87:99:de:f9:0e:6b:ce:64:a8:3c:10:3e:85:4d:9c:
82:fd:89:79:6b:af:1a:4c:e2:95:29:e1:05:21:03:
77:e1:f9:63:76:30:db:ce:3d:57:f2:09:f0:6d:d0:
8b:15:5d:a2:e2:5e:73:f6:44:d4:50:77:97:2b:9d:
56:e5:f4:cd:7e:96:b3:f8:36:5b:5b:db:e4:a4:44:
af:25:d3:22:38:93:ac:47:d4:fc:b4:c2:d1:45:e4:
12:d9:b5:f1:eb:e3:00:94:ff:07:ed:42:c9:31:b1:
74:d7:b1:7f:98:a9:4e:a3:47:7d:41:fd:10:af:5d:
16:3c:12:e7:20:58:bc:b2:2b:c7:45:10:6e:1a:48:
ec:e6:92:32:b6:f1:4d:f6:07:89:96:53:00:ab:61:
91:93:60:02:e6:60:d1:b8:85:fb:6a:23:de:4d:6b:
56:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4B:E9:9C:FA:F2:6B:E9:6D:D9:07:BE:C1:95:CB:DC:3B:BB:DF:7F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IEvpnPrya-lt2Qe-wZXL3Du7338.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.41.0/24
Signature Algorithm: sha256WithRSAEncryption
78:66:0b:8f:85:0e:02:7d:cf:ff:43:4d:8d:ff:4e:cd:ba:49:
94:19:3a:eb:67:ed:36:85:19:e5:16:c9:10:54:40:ef:7c:cf:
a7:e4:08:3d:d6:c1:1a:13:34:4c:ce:ee:5b:3f:78:9f:ec:64:
a8:15:9d:03:30:6c:93:43:43:8a:3d:e0:c2:e3:e0:d1:27:c4:
a0:31:aa:39:1e:37:d7:f2:39:5b:e0:fc:6d:f9:c1:1e:ba:39:
2e:47:83:9f:76:e2:32:8e:27:69:e6:de:0d:22:6c:6a:5e:75:
d1:c7:3e:41:03:33:22:5c:32:a5:01:36:1e:6f:48:6e:24:2b:
23:55:de:ba:98:f6:0f:a3:44:a0:23:ec:63:49:85:d7:00:56:
88:77:c7:c8:cc:ac:8d:0d:42:58:fa:a7:e5:74:e7:a4:55:4b:
7e:b1:e2:80:9a:94:0e:c2:2a:38:ed:84:5d:bd:77:c0:01:12:
cb:67:a8:8f:d5:3a:0c:26:2f:c9:03:7d:1c:e9:98:af:b4:e2:
00:51:f8:0f:ad:0f:fc:98:41:14:d5:80:b2:a0:d0:f3:f8:9d:
46:12:98:cc:b5:d2:fc:a6:7c:8c:7f:13:10:f2:91:be:3f:d5:
53:59:42:48:14:a4:03:04:85:e6:7e:16:b2:98:6a:1d:cc:e6:
1a:62:7b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:20 2024 by rpki-client on console-fra.rpki-client.org