Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2-bTXZn0JJoE-99mZKY8YbCY9I.roa
File: J2-bTXZn0JJoE-99mZKY8YbCY9I.roa (raw, json)
Hash identifier: ydBD1K5aLEZjd0v9VsFLZ5xpn2Rb/D7ner/RryQ5BHQ=
Subject key identifier: 27:6F:9B:4D:76:67:D0:92:68:13:EF:7D:99:92:98:F1:86:C2:63:D2
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F671512E4878784CD3BB49F7BC95B13
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2-bTXZn0JJoE-99mZKY8YbCY9I.roa
Signing time: Sun 01 Jan 2023 22:15:04 +0000
ROA not before: Sun 01 Jan 2023 22:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211922
IP address blocks: 195.133.93.0/24 maxlen: 24
195.133.92.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:15:12:e4:87:87:84:cd:3b:b4:9f:7b:c9:5b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=276f9b4d7667d0926813ef7d999298f186c263d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2e:ae:ef:4e:f6:ff:37:b1:9e:73:27:77:08:
3f:ef:ca:55:11:7b:e3:c3:e4:34:e9:fb:19:13:99:
f0:86:69:5a:49:f5:fd:bd:5b:32:4c:d6:d0:6f:fa:
0e:2e:e5:d8:3b:da:fb:2e:a0:63:51:41:f2:ae:09:
b8:c1:cc:73:f9:4c:cf:f2:b1:0b:f9:b1:b7:3d:e4:
20:d7:89:55:c0:05:44:da:bf:16:d4:7b:f8:e3:6a:
a1:72:87:73:ba:a0:33:07:43:ca:d9:57:37:ec:c9:
c8:bf:b4:87:44:52:fa:92:a5:93:49:8a:02:cb:89:
dd:5f:d1:d3:be:a2:2b:fe:9c:91:48:c6:b0:97:77:
3d:2f:67:5e:ed:3c:e8:56:6c:95:2f:f4:20:84:b3:
4b:b6:a1:04:c3:ca:d9:a6:cc:81:f8:c5:a3:fe:cc:
b4:f5:0a:7c:bb:24:bb:e2:86:14:86:ce:bd:e7:ec:
3f:5a:ba:b9:fa:a6:de:ce:e1:37:c2:e2:58:8d:a4:
19:06:87:2f:56:89:9b:53:4c:e0:28:27:65:cf:47:
9e:74:6e:c0:74:60:b0:86:d3:a5:cc:d4:3f:ea:1a:
ce:10:62:46:fc:63:11:07:19:82:a9:3f:67:aa:e4:
0e:32:95:c7:fc:3c:88:80:59:28:99:27:b8:74:c6:
b7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6F:9B:4D:76:67:D0:92:68:13:EF:7D:99:92:98:F1:86:C2:63:D2
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2-bTXZn0JJoE-99mZKY8YbCY9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.92.0/23
Signature Algorithm: sha256WithRSAEncryption
48:0d:e0:d8:7c:c8:63:85:66:96:c4:20:d0:ec:5f:36:42:32:
77:91:d0:20:39:c3:04:86:47:f9:cf:53:ff:eb:2e:b6:eb:ff:
09:6d:46:7c:55:6a:53:65:eb:57:8b:76:14:38:75:44:20:ce:
3d:e4:0b:85:d2:25:89:15:53:87:c4:d1:e0:6b:98:2b:a6:00:
40:a1:c5:68:f0:1e:c1:40:44:5a:96:66:33:37:2a:b4:2b:65:
8e:86:66:c5:3d:de:8a:08:9f:24:2b:6b:8d:39:3d:7a:aa:f8:
0e:81:d8:d1:64:f4:b9:47:4a:79:5c:1e:1b:0f:b6:d7:aa:27:
ec:d5:cd:63:48:79:46:68:ca:74:0a:19:01:a4:92:61:91:54:
6e:d2:ab:d8:22:16:23:b3:9d:95:55:e7:93:37:e7:c1:fe:31:
50:7c:75:0e:b9:1f:07:fa:49:27:73:55:ee:dd:eb:63:c9:c2:
f9:bc:cb:c0:60:85:67:5c:78:8e:f9:6a:1d:94:f2:3b:f0:3a:
85:12:a8:2a:a7:d3:b0:38:6a:0e:6f:1d:fe:fa:ff:12:e0:e4:
95:ce:9a:40:dd:64:b3:db:4f:54:cb:7b:9d:cb:09:88:9f:ff:
ab:06:71:ab:26:82:90:96:1b:1d:53:f0:96:46:92:c4:d7:2d:
92:fc:53:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 25 11:37:45 2023 by rpki-client on console-ams.rpki-client.org