Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jsHOITvaDlPx_nHl9wRgkXwPaNk.roa
File: jsHOITvaDlPx_nHl9wRgkXwPaNk.roa (raw, json)
Hash identifier: QHG5EgwmUdYKIjWShon2m2CYTXZ/7+ivCV/3GfrfkcQ=
Subject key identifier: 8E:C1:CE:21:3B:DA:0E:53:F1:FE:71:E5:F7:04:60:91:7C:0F:68:D9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01891B9A8B6521F1AB16F2C1B33A366A41AE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jsHOITvaDlPx_nHl9wRgkXwPaNk.roa
Signing time: Mon 03 Jul 2023 11:54:20 +0000
ROA not before: Mon 03 Jul 2023 11:54:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 194.87.227.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 12:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:9a:8b:65:21:f1:ab:16:f2:c1:b3:3a:36:6a:41:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 3 11:54:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ec1ce213bda0e53f1fe71e5f70460917c0f68d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:00:be:66:e3:1e:43:2f:74:c7:e1:62:95:0b:
47:aa:c5:69:3c:a5:2a:43:cf:43:54:a2:6d:6b:10:
21:2f:80:ec:3b:59:dd:3b:59:79:e5:30:d1:6d:ec:
f5:28:92:57:80:20:df:b3:35:bf:be:cf:96:54:05:
8f:9b:04:3d:f9:3b:66:54:4a:bb:65:d2:25:f4:8c:
36:2a:6b:e1:f9:b8:3d:8d:4d:a2:cd:e6:b7:75:cb:
ed:8f:bb:01:3e:59:7d:38:27:94:73:aa:97:6a:2a:
01:10:f7:c7:80:5d:26:1e:0b:ea:19:ef:d5:81:12:
f6:e9:c9:53:50:e1:6f:fc:da:1b:21:05:3c:74:16:
62:9f:61:2b:49:af:f3:57:82:94:da:f3:89:bb:74:
27:9d:6c:ae:48:2a:b9:29:ef:62:a8:99:92:45:82:
e1:37:97:82:66:f9:8e:3f:db:e0:5d:51:4f:3c:e1:
35:d4:1a:7f:2f:25:ae:65:d1:f4:de:6e:e4:94:9a:
30:b8:9e:88:c1:3a:92:3d:80:f1:16:61:eb:55:72:
38:a7:e3:0c:bc:ae:de:2b:ab:36:7b:27:cb:7c:82:
08:90:c4:a8:49:b8:78:7f:f4:3f:c4:fb:40:cd:47:
1a:f8:2a:63:51:ee:7d:19:c1:69:f2:b0:40:91:bd:
9a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C1:CE:21:3B:DA:0E:53:F1:FE:71:E5:F7:04:60:91:7C:0F:68:D9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jsHOITvaDlPx_nHl9wRgkXwPaNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.155.0/24
194.87.227.0/24
Signature Algorithm: sha256WithRSAEncryption
96:64:32:7a:02:6e:5d:1e:fd:27:0d:ce:e3:83:dc:81:62:b2:
19:b8:05:69:c9:9f:0b:94:5e:d9:53:d5:b2:0a:56:d0:a3:dc:
fa:3e:c1:c5:e0:e9:6d:25:19:e2:cb:73:4b:af:30:48:49:43:
18:af:da:e1:42:b4:a6:c3:81:cb:ef:be:16:85:b7:ec:ff:7f:
b4:75:7c:11:77:9e:60:86:f5:ed:51:72:50:51:a2:cf:ff:69:
99:64:69:7b:b9:d1:ee:66:23:9e:b2:fe:f1:f4:72:b4:a6:2b:
ab:1b:53:73:6b:3f:9e:a3:a8:41:2b:55:0f:fc:a9:20:cf:d1:
00:65:a4:46:6a:8d:74:80:aa:b1:d2:c3:35:c9:27:f9:aa:b3:
3f:b6:1d:0d:53:78:31:04:c4:b9:33:47:3a:88:3c:82:5e:a2:
39:e8:7a:6e:32:15:70:6d:66:ee:d0:e6:16:ea:42:70:78:8d:
d9:5b:7d:be:1e:c3:cf:59:fb:09:74:aa:f5:b4:84:3f:cf:93:
1d:e2:ea:34:2a:47:cc:4d:30:2c:b1:fd:9f:cb:a5:e2:d4:18:
01:66:f1:68:cf:28:d1:ec:59:d7:f4:d0:46:47:7f:7a:47:de:
da:cc:be:b9:04:29:4f:87:d5:87:cb:ae:d3:42:52:b8:70:74:
03:58:e9:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org