Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LoSeNbI5VjMwxtxMTYaGKOeRDnI.roa
File: LoSeNbI5VjMwxtxMTYaGKOeRDnI.roa (raw, json)
Hash identifier: SVx6iJQZHyxvvtvZe7EXOksrA3a0n2ktFkToBnq6tPg=
Subject key identifier: 2E:84:9E:35:B2:39:56:33:30:C6:DC:4C:4D:86:86:28:E7:91:0E:72
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01938323EE335CAA985B5920D85819858CF0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LoSeNbI5VjMwxtxMTYaGKOeRDnI.roa
Signing time: Sun 01 Dec 2024 16:53:10 +0000
ROA not before: Sun 01 Dec 2024 16:53:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 195.133.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Dec 2024 15:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:83:23:ee:33:5c:aa:98:5b:59:20:d8:58:19:85:8c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 1 16:53:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e849e35b239563330c6dc4c4d868628e7910e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1b:06:21:90:c3:d2:e3:88:3f:8e:30:64:5f:
6a:00:24:71:83:76:0d:15:3b:50:a5:90:cd:92:97:
70:84:10:d3:18:86:72:ed:ca:37:53:dd:cd:3e:92:
86:8d:26:2d:ed:e7:48:a1:d5:b5:a5:e2:b4:74:a3:
1a:8b:4f:51:40:7e:41:21:61:13:6e:19:64:e5:46:
d1:bf:96:65:9f:3b:c1:f3:24:5d:46:f5:99:f1:6b:
69:6c:66:57:35:31:5c:61:31:68:db:41:ea:83:3c:
f5:e8:b7:18:71:7d:75:43:c4:96:76:4b:69:70:5e:
9f:1f:e2:4f:ac:e6:7a:88:b7:6f:7e:a3:18:6d:28:
4c:3b:19:69:fb:2a:2e:c3:8f:af:74:1d:af:98:92:
c1:c5:a9:b6:08:b7:59:6d:24:e7:f1:e5:ef:59:ee:
62:14:a4:d3:7a:70:65:e1:e9:bd:e0:90:35:bd:56:
8d:ed:b9:82:b8:6f:4b:ac:16:d3:6a:1c:68:5c:53:
be:0b:9e:47:7f:1b:0f:f1:66:2a:0e:7e:03:5d:51:
05:a5:31:5b:68:e2:09:b4:06:ce:cc:33:0b:4c:5e:
6f:e6:53:76:47:f1:a9:da:4d:9c:4e:90:95:a1:80:
f2:3c:3c:ef:7c:bf:8e:8d:8d:31:ae:8a:b3:9f:e1:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:84:9E:35:B2:39:56:33:30:C6:DC:4C:4D:86:86:28:E7:91:0E:72
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LoSeNbI5VjMwxtxMTYaGKOeRDnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b1:5b:1a:68:4b:ab:b9:7d:99:17:fe:9b:cc:29:40:80:b8:
8b:d0:27:39:9e:46:5e:de:0c:79:5d:51:66:c5:d2:0c:77:5b:
d3:ef:61:3f:26:ef:d9:d4:79:ad:87:4a:d1:ad:09:88:ba:10:
42:bc:18:0d:46:97:03:00:3a:e5:9c:b7:cb:78:ee:61:b6:a9:
9e:8c:44:61:e7:aa:3a:07:3f:b3:62:09:84:48:70:7d:66:1f:
3f:83:35:c9:f9:79:90:84:6b:dd:4d:17:cf:b8:fc:fa:85:8c:
93:e6:14:7e:b4:2a:a0:8d:03:41:09:91:e4:bd:d8:97:20:37:
e3:23:2f:8d:72:bf:c9:dd:5e:c5:02:65:3c:4d:2a:d4:53:b1:
81:90:ae:01:1f:c1:62:e3:be:a1:cb:83:04:d9:c4:47:53:00:
6c:bd:ab:33:eb:c1:5c:09:36:87:9b:7d:fc:8f:0e:c9:ae:d9:
77:63:a3:cf:d8:3f:19:05:3b:ca:95:b9:10:53:14:43:7a:fa:
5a:d5:68:c6:c8:88:ad:7a:e1:a9:41:50:08:c5:6e:ff:6c:60:
8f:eb:23:d2:aa:97:ca:1e:eb:1f:1e:23:f1:2b:a2:d9:86:ca:
a1:0c:54:7a:a5:32:64:7f:85:e0:81:e7:15:3e:d9:cb:f9:3b:
02:e6:13:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:15:47 2025 by rpki-client