Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/i9Q_3MQGAt6N2mRzKti-HljE8bw.roa
File: i9Q_3MQGAt6N2mRzKti-HljE8bw.roa (raw, json)
Hash identifier: CSx87bI2EEo0MQkkiU/kmuuzIqn1S8EvNOyPkrdF2jI=
Subject key identifier: 8B:D4:3F:DC:C4:06:02:DE:8D:DA:64:73:2A:D8:BE:1E:58:C4:F1:BC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C16627ABCE2352311FB9835BB1294AF19
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/i9Q_3MQGAt6N2mRzKti-HljE8bw.roa
Signing time: Tue 28 Nov 2023 14:43:21 +0000
ROA not before: Tue 28 Nov 2023 14:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211138
IP address blocks: 195.58.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:16:62:7a:bc:e2:35:23:11:fb:98:35:bb:12:94:af:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 28 14:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bd43fdcc40602de8dda64732ad8be1e58c4f1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7e:00:e8:3b:13:7d:b3:3f:d9:1b:dd:ca:a8:
88:56:26:40:8c:ba:de:40:31:54:86:f0:4d:ca:74:
fd:38:d7:98:c0:e9:48:81:38:a6:4f:e9:1d:7e:65:
1d:23:b5:68:3f:86:61:52:be:05:28:9e:49:cf:8c:
f5:08:90:9c:50:59:a3:fb:de:54:9e:9b:65:ab:09:
ac:25:7c:82:1a:9d:a2:9f:17:bd:e5:a4:69:72:48:
bc:ad:ce:4f:8c:7c:82:61:de:43:45:f2:d8:a5:5f:
38:51:79:12:ef:93:3c:33:c7:16:79:e5:56:5f:d3:
34:b4:4f:8c:65:28:10:4d:78:9f:0b:e2:27:3a:48:
9d:2b:bb:db:06:e2:b9:36:e8:a4:bf:0f:e9:fb:9f:
e2:b4:d3:05:3e:30:c7:28:6b:e5:5f:b3:34:5f:be:
09:7f:39:ef:88:70:a6:89:67:e6:10:86:b5:83:9f:
5e:56:7a:96:91:76:76:30:ab:90:5b:49:4a:81:9a:
42:8a:33:9d:58:50:a6:c1:27:d3:3f:b5:18:57:77:
1f:2b:71:c8:71:d8:50:a1:5f:eb:19:1d:fd:24:ba:
a9:07:67:bf:ef:33:bd:0b:e8:a3:10:22:01:00:7a:
9d:0c:35:45:8f:75:55:f8:ea:23:31:f3:23:f7:56:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D4:3F:DC:C4:06:02:DE:8D:DA:64:73:2A:D8:BE:1E:58:C4:F1:BC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/i9Q_3MQGAt6N2mRzKti-HljE8bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.58.39.0/24
Signature Algorithm: sha256WithRSAEncryption
67:1e:63:59:ee:12:d3:49:db:8a:6b:46:e7:6a:a1:8a:6e:d5:
5d:22:af:8e:f8:bf:ff:d1:e2:6d:2d:4d:66:64:2b:53:77:eb:
69:9d:1e:78:ec:33:bf:17:6f:42:d7:32:f0:49:11:aa:2a:f4:
9d:c4:61:38:ba:3d:c7:17:52:99:49:0e:8a:b6:76:e7:58:73:
41:c8:67:3d:f5:d5:65:6d:f3:09:f6:72:20:f0:77:61:0d:28:
20:3e:aa:67:ea:55:ed:0f:0d:a4:82:8f:a3:6e:55:b5:36:fe:
c2:55:87:91:be:42:7e:4e:a8:f1:00:aa:dd:ee:25:63:52:0d:
ab:7c:89:7a:59:81:48:2b:de:19:52:db:27:93:ee:6e:8d:12:
15:00:3b:4c:e5:7b:63:62:8a:ce:70:67:0e:73:38:98:20:92:
51:95:03:df:1f:d9:74:a5:10:da:fd:7f:a2:97:b3:02:19:dc:
50:38:8a:6f:e1:e6:c4:d9:2d:5f:30:52:6f:d6:a4:b9:c2:75:
4e:64:5b:e4:7a:82:f7:bc:c0:85:fc:7b:f7:25:c1:69:91:a2:
af:05:87:1c:ab:89:e8:6e:0e:34:32:55:b4:23:89:d7:8c:a7:
f0:ed:67:bf:ef:d7:1c:5a:ab:66:db:1c:20:c8:48:cc:07:e8:
4a:90:af:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 28 15:51:00 2023 by rpki-client on console-ams.rpki-client.org