Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2x2glN74UNi4qtPGpViGaKbFiM.roa
File: J2x2glN74UNi4qtPGpViGaKbFiM.roa (raw, json)
Hash identifier: RE38cuE3uwSSlJPu2yMlgqyTV925sw51QNnwo4U8LL0=
Subject key identifier: 27:6C:76:82:53:7B:E1:43:62:E2:AB:4F:1A:95:62:19:A2:9B:16:23
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A879F3AA4C7CE1482B182441D8341
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2x2glN74UNi4qtPGpViGaKbFiM.roa
Signing time: Tue 02 Jan 2024 12:33:53 +0000
ROA not before: Tue 02 Jan 2024 12:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205320
IP address blocks: 194.135.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 08:25:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:87:9f:3a:a4:c7:ce:14:82:b1:82:44:1d:83:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=276c7682537be14362e2ab4f1a956219a29b1623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ff:30:7e:61:16:7b:33:ef:57:ea:bd:fe:79:
7d:8a:66:88:4c:ac:d7:5d:c5:e0:92:86:99:20:16:
d6:11:4b:81:43:e3:6a:32:58:dd:f7:62:16:53:ae:
e7:55:8d:03:9d:83:e5:9d:6a:76:76:af:83:ae:44:
43:0c:90:d1:7b:c9:61:cc:1f:2a:db:8e:3e:39:81:
49:7d:f6:0c:a8:65:2a:77:6e:74:12:21:ef:69:50:
a7:ba:d1:13:15:5b:17:63:b9:89:59:aa:67:5c:eb:
a7:89:9f:0c:ba:86:8b:f1:b2:71:db:ea:c1:0b:d6:
19:ec:67:41:47:42:16:fc:35:ac:67:25:f6:e9:33:
08:47:e8:82:fd:0f:1a:3d:f0:d6:7b:db:9b:df:9e:
95:12:2a:65:ea:f1:29:d7:51:db:38:8d:01:bd:11:
31:9e:4e:98:a5:3e:3a:d9:b0:a0:b5:7f:98:69:d2:
b8:a9:62:54:bc:03:cb:3e:e4:e6:76:dd:3d:fc:85:
50:0d:7c:a3:18:41:b0:5d:13:1e:53:9d:ea:ba:60:
3e:ba:ba:5d:38:fc:ee:e9:d1:35:9a:5f:ed:1c:fc:
46:8d:97:29:72:d5:95:6e:da:ac:08:b4:43:20:e4:
68:5b:b7:8c:7b:3d:83:d6:11:4a:61:1c:6d:c8:0e:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6C:76:82:53:7B:E1:43:62:E2:AB:4F:1A:95:62:19:A2:9B:16:23
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/J2x2glN74UNi4qtPGpViGaKbFiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.38.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b7:56:41:64:4a:3b:6a:30:3b:a3:d5:26:83:88:cc:08:15:
36:05:75:16:84:cd:4b:b7:8d:ec:b7:88:0f:77:75:03:ee:f3:
be:cb:85:48:e1:db:4c:27:af:77:5c:b0:43:c1:52:de:19:ff:
b1:b2:6d:76:f7:8f:85:05:99:8d:0b:25:a5:b1:9d:72:54:e4:
1b:05:fa:d4:07:c9:60:90:d9:fe:35:28:fc:20:97:c3:5e:bb:
ee:06:31:d1:cb:fb:d0:e0:5c:ce:f7:ab:e1:89:4b:39:3c:fb:
ac:9e:8f:a8:d3:30:32:e3:d4:ba:c6:7b:34:7a:16:7c:91:f6:
7b:ec:b2:ae:cc:5c:7d:9a:5f:0d:9a:4f:c2:73:f4:12:75:4a:
cb:56:bd:60:9a:82:92:02:0b:65:78:70:37:23:a3:dd:fd:af:
fa:1e:ec:a5:f3:41:c1:14:a0:1a:2f:aa:32:e7:71:38:0c:b5:
69:8f:03:ee:8f:84:75:29:ff:1b:b9:08:9f:46:09:db:6e:1e:
d2:89:33:25:2b:be:1f:18:67:05:e8:4f:d8:cd:cf:fe:8d:4a:
52:53:ba:94:95:1e:7b:83:ff:0e:3f:64:4d:3c:26:1f:42:8a:
6e:57:f3:a3:cf:28:5e:92:35:69:5a:b0:33:41:47:e0:6e:f1:
ad:d1:67:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKoefOqTHzhSCsYJEHYNBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMTAyMTIzMzUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzZjNzY4MjUzN2JlMTQzNjJlMmFiNGYxYTk1NjIxOWEyOWIxNjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjv8wfmEWezPvV+q9/nl9imaITKzX
XcXgkoaZIBbWEUuBQ+NqMljd92IWU67nVY0DnYPlnWp2dq+DrkRDDJDRe8lhzB8q
244+OYFJffYMqGUqd250EiHvaVCnutETFVsXY7mJWapnXOuniZ8MuoaL8bJx2+rB
C9YZ7GdBR0IW/DWsZyX26TMIR+iC/Q8aPfDWe9ub356VEipl6vEp11HbOI0BvREx
nk6YpT462bCgtX+YadK4qWJUvAPLPuTmdt09/IVQDXyjGEGwXRMeU53qumA+urpd
OPzu6dE1ml/tHPxGjZcpctWVbtqsCLRDIORoW7eMez2D1hFKYRxtyA53WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCdsdoJTe+FDYuKrTxqVYhmimxYjMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvSjJ4MmdsTjc0VU5pNHF0UEdwVmlHYUtiRmlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwocmMA0G
CSqGSIb3DQEBCwUAA4IBAQA4t1ZBZEo7ajA7o9Umg4jMCBU2BXUWhM1Lt43st4gP
d3UD7vO+y4VI4dtMJ693XLBDwVLeGf+xsm1294+FBZmNCyWlsZ1yVOQbBfrUB8lg
kNn+NSj8IJfDXrvuBjHRy/vQ4FzO96vhiUs5PPusno+o0zAy49S6xns0ehZ8kfZ7
7LKuzFx9ml8Nmk/Cc/QSdUrLVr1gmoKSAgtleHA3I6Pd/a/6Huyl80HBFKAaL6oy
53E4DLVpjwPuj4R1Kf8buQifRgnbbh7SiTMlK74fGGcF6E/Yzc/+jUpSU7qUlR57
g/8OP2RNPCYfQopuV/OjzyhekjVpWrAzQUfgbvGt0Wef
-----END CERTIFICATE-----
Generated at Fri Feb 2 11:59:59 2024 by rpki-client on console-fra.rpki-client.org