Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DPqnFGHeyxJwhjWREXmqrRQl5E.roa
File: _DPqnFGHeyxJwhjWREXmqrRQl5E.roa (raw, json)
Hash identifier: ObpEOwTlU+O4HBU9g4EPxLo+wBl8iEkC9DYz4SIJsVg=
Subject key identifier: FC:33:EA:9C:51:87:7B:2C:49:C2:18:D6:44:45:E6:AA:B4:50:97:91
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188D3C505558EF26EE13EF7D80BEA080502
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DPqnFGHeyxJwhjWREXmqrRQl5E.roa
Signing time: Mon 19 Jun 2023 13:08:04 +0000
ROA not before: Mon 19 Jun 2023 13:08:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9002
IP address blocks: 195.133.32.0/24 maxlen: 24
193.124.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Jun 2023 15:34:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:c5:05:55:8e:f2:6e:e1:3e:f7:d8:0b:ea:08:05:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 19 13:08:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc33ea9c51877b2c49c218d64445e6aab4509791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:39:da:7a:e5:84:7d:36:16:5a:74:dc:8f:4c:
dc:24:78:f9:30:74:36:85:de:24:49:db:62:d1:be:
b8:89:ce:12:0a:70:f7:b7:2e:fa:f4:a9:9e:16:6f:
f6:a9:33:cc:5f:78:d6:ef:e2:5a:02:02:b8:01:27:
c8:bc:01:5b:33:cc:81:2a:a2:e7:7d:62:5f:04:f4:
a7:3f:4a:42:1e:e0:51:2a:db:28:e3:8f:51:ad:b1:
50:1b:e8:fb:76:38:ed:1d:ec:4f:06:03:68:49:6b:
09:1c:b3:06:f9:d1:3f:76:18:24:97:fb:72:42:21:
ca:c4:81:2c:68:7d:1a:29:1f:4a:07:3c:e6:bd:d5:
ad:f9:22:17:6e:7a:1f:ee:a6:34:c7:04:c5:35:33:
fe:ef:6e:f7:d6:9f:b5:7a:91:f9:51:a5:c7:d9:cf:
6c:21:51:49:a7:5f:c8:e8:aa:40:c0:15:29:82:95:
9b:29:65:4b:24:ed:20:2f:5d:41:63:48:86:62:89:
3a:d5:f1:9d:a2:18:52:60:c0:cf:f4:32:4e:ad:a1:
23:ee:c0:63:53:66:d9:a9:4b:ab:10:8d:1b:e5:63:
8f:28:66:e1:ba:15:ea:56:3f:61:48:5d:d4:e6:80:
b7:0f:69:a5:74:b0:fb:60:33:0d:3d:43:92:7c:34:
f5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:33:EA:9C:51:87:7B:2C:49:C2:18:D6:44:45:E6:AA:B4:50:97:91
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_DPqnFGHeyxJwhjWREXmqrRQl5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.92.0/24
195.133.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:8a:02:69:37:38:aa:ed:e2:58:8b:ea:14:bc:c8:2e:86:7f:
9a:fb:e1:f4:c0:ec:8b:a6:fc:ad:8d:d8:f8:22:dd:a3:28:60:
15:f6:7a:77:6a:7e:1c:15:51:35:f6:be:8d:80:60:0e:24:11:
f5:16:ad:9a:9c:a9:d0:9e:ba:ec:9b:bd:9d:bf:01:c3:e0:3d:
ca:95:fe:ba:91:c3:31:09:d8:5a:8b:24:22:46:73:b3:3a:6c:
17:74:c4:2c:98:b5:71:19:56:19:35:97:1a:9c:07:22:e4:df:
cb:d0:c4:a9:dc:d3:31:04:bc:39:50:6c:61:6c:76:47:ab:6a:
e4:33:9e:dd:0e:fe:78:70:cc:ff:8d:02:89:8f:00:ad:d5:ed:
26:a2:af:25:cd:bc:29:7d:c0:d5:5f:35:1e:15:7d:37:7a:bf:
31:d3:63:ab:18:64:f7:a9:02:81:11:9d:e4:48:c0:c2:30:42:
03:13:0b:a5:e3:c6:cd:52:eb:59:a1:2b:e7:b7:7f:7c:86:10:
5f:d3:a0:63:26:65:7f:c8:63:d2:bb:7b:3f:b5:04:a9:f7:5d:
89:f5:db:ce:8a:98:1c:7f:9e:23:62:b0:84:90:e1:6a:ab:98:
45:0c:30:5a:65:22:41:16:3e:a9:59:8d:96:7e:33:30:56:90:
6a:df:20:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:20 2024 by rpki-client on console-fra.rpki-client.org