Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jbll8wkbfbTdMEtlrUgT_1Zi0RQ.roa
File: Jbll8wkbfbTdMEtlrUgT_1Zi0RQ.roa (raw, json)
Hash identifier: NhZ9ChedrHoaJMH8rR2sAgh+PMUh6QSoxyBr429YBMY=
Subject key identifier: 25:B9:65:F3:09:1B:7D:B4:DD:30:4B:65:AD:48:13:FF:56:62:D1:14
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B6CD1941A4B340F0B98861150A76FE9E3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jbll8wkbfbTdMEtlrUgT_1Zi0RQ.roa
Signing time: Thu 26 Oct 2023 16:29:16 +0000
ROA not before: Thu 26 Oct 2023 16:29:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205663
IP address blocks: 194.135.18.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Nov 2023 04:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:d1:94:1a:4b:34:0f:0b:98:86:11:50:a7:6f:e9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 26 16:29:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25b965f3091b7db4dd304b65ad4813ff5662d114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5d:dc:b6:1b:c3:06:41:47:ef:c0:a5:a1:58:
58:7f:d4:b8:94:34:ee:ee:75:e0:70:9c:4c:73:8a:
9b:71:06:59:b3:ad:f5:95:dd:6f:39:34:8e:3a:53:
23:ba:9c:99:f1:f8:66:2c:22:e2:b5:49:f9:82:4f:
ce:99:f2:2e:8f:d9:f6:fc:a8:a4:16:ef:43:f8:81:
ef:3f:f3:9a:f8:7a:95:74:b2:09:e0:7e:fc:6d:e3:
82:81:3a:f3:07:fb:3b:02:4f:75:3c:91:1f:a7:77:
17:64:31:43:37:4f:1e:33:a1:8e:4d:fd:b7:60:cd:
a6:33:20:1b:8f:77:4c:a3:4f:67:7e:0d:93:25:2b:
ae:3b:22:7b:73:ee:4d:5e:e3:95:82:5f:73:3a:66:
95:fd:bf:06:20:cb:d7:ac:5c:97:d3:ee:02:e5:a6:
cd:46:07:bd:74:9a:a8:62:76:fe:e0:2f:98:4a:98:
ce:ab:31:8e:30:f8:c2:53:bc:43:78:6f:e6:6b:ab:
42:ad:85:72:3e:01:cb:d2:f1:15:b1:52:1a:be:b6:
b1:ac:a3:00:32:b8:19:cc:0d:e2:43:71:2f:dc:46:
28:1f:1a:ce:36:72:24:c1:a4:e3:55:c0:cd:5c:ad:
0a:45:9a:b0:57:da:63:4e:28:52:ce:2c:6b:42:36:
8f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B9:65:F3:09:1B:7D:B4:DD:30:4B:65:AD:48:13:FF:56:62:D1:14
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jbll8wkbfbTdMEtlrUgT_1Zi0RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.187.0/24
194.135.18.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e4:03:1a:17:37:7d:84:13:78:2c:35:1d:54:3f:92:45:ee:
f2:dd:97:0a:1f:b9:0d:08:25:cf:e1:d2:91:0e:ee:ba:8d:4c:
46:a3:da:9d:b0:35:6e:97:ae:5c:be:7f:66:d2:7b:b2:da:8f:
6f:06:03:92:ea:7e:fa:60:07:f6:b6:19:4e:fb:1d:a5:70:7e:
87:40:98:36:a6:ba:95:b4:79:68:af:77:2d:5c:a7:52:ef:5b:
c6:00:0b:bc:60:31:e3:69:35:14:ad:5b:f0:55:0e:32:c2:1d:
dd:41:e2:28:5b:4d:ba:67:76:81:0d:72:cc:39:b3:cd:03:19:
72:1b:9d:5e:88:df:ec:5f:28:4e:f1:28:a3:57:7b:82:f1:72:
06:09:62:31:81:35:d4:3c:20:90:72:4e:8c:dc:8c:c4:5f:32:
37:71:2d:a8:6a:1d:d5:c9:99:0a:a5:64:45:21:6e:7d:0d:6d:
c9:b8:18:aa:a5:27:2e:38:1c:8e:fc:c8:3b:e3:f1:d3:fd:87:
a1:79:b5:60:7d:e2:33:43:74:f0:74:f4:c1:45:ac:d3:af:8b:
fb:f5:63:73:9d:df:d1:3d:73:1a:89:42:b4:59:76:40:97:22:
c5:e9:44:91:27:a6:45:42:0c:07:97:d0:b5:56:fc:b6:de:d3:
5b:4a:b6:03
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYts0ZQaSzQPC5iGEVCnb+njMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMxMDI2MTYyOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWI5NjVmMzA5MWI3ZGI0ZGQzMDRiNjVhZDQ4MTNmZjU2NjJkMTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3F3cthvDBkFH78CloVhYf9S4lDTu
7nXgcJxMc4qbcQZZs631ld1vOTSOOlMjupyZ8fhmLCLitUn5gk/OmfIuj9n2/Kik
Fu9D+IHvP/Oa+HqVdLIJ4H78beOCgTrzB/s7Ak91PJEfp3cXZDFDN08eM6GOTf23
YM2mMyAbj3dMo09nfg2TJSuuOyJ7c+5NXuOVgl9zOmaV/b8GIMvXrFyX0+4C5abN
Rge9dJqoYnb+4C+YSpjOqzGOMPjCU7xDeG/ma6tCrYVyPgHL0vEVsVIavraxrKMA
MrgZzA3iQ3Ev3EYoHxrONnIkwaTjVcDNXK0KRZqwV9pjTihSzixrQjaPKwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCW5ZfMJG3203TBLZa1IE/9WYtEUMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvSmJsbDh3a2JmYlRkTUV0bHJVZ1RfMVppMFJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwle7AwQA
wocSMA0GCSqGSIb3DQEBCwUAA4IBAQCA5AMaFzd9hBN4LDUdVD+SRe7y3ZcKH7kN
CCXP4dKRDu66jUxGo9qdsDVul65cvn9m0nuy2o9vBgOS6n76YAf2thlO+x2lcH6H
QJg2prqVtHlor3ctXKdS71vGAAu8YDHjaTUUrVvwVQ4ywh3dQeIoW026Z3aBDXLM
ObPNAxlyG51eiN/sXyhO8SijV3uC8XIGCWIxgTXUPCCQck6M3IzEXzI3cS2oah3V
yZkKpWRFIW59DW3JuBiqpScuOByO/Mg74/HT/YehebVgfeIzQ3TwdPTBRazTr4v7
9WNznd/RPXMaiUK0WXZAlyLF6USRJ6ZFQgwHl9C1Vvy23tNbSrYD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:12 2024 by rpki-client on console-fra.rpki-client.org