Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_h-EzlM7ICRs10emAdJTBywehVM.roa
File: _h-EzlM7ICRs10emAdJTBywehVM.roa (raw, json)
Hash identifier: fxODBfSouqljypAFq/CsmrrgNpl49qtwJsDFADA0cuk=
Subject key identifier: FE:1F:84:CE:53:3B:20:24:6C:D7:47:A6:01:D2:53:07:2C:1E:85:53
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B13EF7A2134610943CCC82E5236F4B0DE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_h-EzlM7ICRs10emAdJTBywehVM.roa
Signing time: Mon 09 Oct 2023 10:15:43 +0000
ROA not before: Mon 09 Oct 2023 10:15:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211318
IP address blocks: 195.133.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:ef:7a:21:34:61:09:43:cc:c8:2e:52:36:f4:b0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 9 10:15:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe1f84ce533b20246cd747a601d253072c1e8553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:45:ca:f7:2e:c7:dd:16:53:3b:61:5c:c5:20:
13:32:8d:41:2d:81:d9:63:a7:c5:75:86:65:5b:21:
4d:5c:e6:9f:5c:ea:2e:6d:e7:ad:11:83:d3:9b:37:
35:34:7a:6b:6b:63:7e:83:0b:b8:c7:33:04:1b:cc:
e1:4e:4e:e1:df:7f:51:46:2b:f8:1c:10:79:25:ae:
5e:ff:ab:57:e8:15:21:cc:97:eb:2d:e8:3c:af:f4:
a6:f6:94:ad:f8:f0:d2:38:9d:2e:e1:ea:18:d1:b9:
b6:8b:c4:ee:e8:66:7d:06:44:7d:85:58:0e:33:bf:
6a:94:9a:32:56:21:58:06:32:1a:85:4c:75:fb:f6:
9a:ed:d8:2c:8c:30:b2:54:3f:d2:44:6d:d7:b6:de:
33:57:77:84:a9:86:a4:34:bc:bf:36:fa:ea:93:e0:
47:30:21:09:db:f3:55:38:e3:27:cb:b5:f3:5a:15:
ee:d7:e3:62:21:54:11:18:f7:84:57:33:54:94:f5:
07:2b:b7:e6:97:a0:f6:76:d8:c8:5d:6d:a3:70:88:
01:4c:5b:64:e5:e4:dd:15:56:e7:5c:53:20:62:b1:
ca:ba:cb:bd:24:e2:3b:05:45:6c:12:79:b4:8a:74:
9f:20:7b:40:f9:72:5b:29:78:a8:51:11:0a:78:f8:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1F:84:CE:53:3B:20:24:6C:D7:47:A6:01:D2:53:07:2C:1E:85:53
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_h-EzlM7ICRs10emAdJTBywehVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.18.0/24
Signature Algorithm: sha256WithRSAEncryption
58:96:ae:98:19:49:1f:70:06:b9:0a:a2:ed:c9:62:7f:b8:5e:
05:d0:db:4c:ec:ba:a6:80:7a:4d:7a:0e:62:7b:42:39:db:8f:
8c:01:48:30:26:25:dd:9d:63:d9:60:8f:d8:e5:38:24:fd:51:
6f:7d:8b:c8:61:9e:c0:bd:32:8f:8b:7f:63:55:e5:d3:7e:79:
65:93:83:b4:1e:3b:d3:ca:34:a1:78:f2:e7:ab:7e:be:0f:0e:
d8:e4:4b:ad:9b:17:2c:50:d3:48:ac:7c:19:ca:da:ca:3a:f8:
4c:d1:22:7f:10:87:b1:9c:27:49:b9:85:06:7a:a7:0b:92:f5:
70:97:35:fc:1f:21:c1:2b:99:5e:b4:55:fe:08:1a:73:43:17:
ca:0c:44:d2:e8:7f:83:8a:b0:0f:40:45:34:77:62:49:66:72:
0d:b1:96:a2:0d:74:79:92:10:95:c3:a5:c5:2b:57:c4:5c:e1:
72:70:de:3d:c1:ba:db:c6:57:3f:e6:fa:29:51:24:70:c3:4c:
55:d3:6b:5d:ad:9f:3b:31:42:53:7f:44:7d:70:46:17:e1:12:
03:15:23:96:fd:62:87:c4:9a:fd:43:21:29:15:b3:0e:88:29:
f7:50:bd:c1:96:02:e0:13:7e:98:59:62:c8:6e:b1:b1:e3:3d:
22:15:9e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 11 09:58:25 2023 by rpki-client on console-fra.rpki-client.org