Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mI27WoRxdtTVLelLbT0sYJDyg6s.roa
File: mI27WoRxdtTVLelLbT0sYJDyg6s.roa (raw, json)
Hash identifier: +qe6/H37y72EMGoRWCuDaMWbPpglSS7Hu2dYPxsN3F0=
Subject key identifier: 98:8D:BB:5A:84:71:76:D4:D5:2D:E9:4B:6D:3D:2C:60:90:F2:83:AB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018E74A5C77776D91A324AE4A119B6FF0641
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mI27WoRxdtTVLelLbT0sYJDyg6s.roa
Signing time: Mon 25 Mar 2024 08:06:45 +0000
ROA not before: Mon 25 Mar 2024 08:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204902
IP address blocks: 195.133.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 05:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:74:a5:c7:77:76:d9:1a:32:4a:e4:a1:19:b6:ff:06:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 25 08:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=988dbb5a847176d4d52de94b6d3d2c6090f283ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:7e:e8:b4:7a:b6:a7:ee:d2:52:bc:f8:33:
53:21:ca:c0:b7:81:49:b5:96:a1:e7:d9:e9:75:1e:
08:25:e4:ca:08:ad:79:dc:b2:0b:65:c3:77:74:d1:
94:d7:0c:04:b5:69:15:12:4a:1b:ec:6c:50:ed:44:
5e:5a:0b:94:9a:aa:ac:46:6a:65:60:ce:3a:03:44:
ab:e1:d1:b8:40:41:98:64:99:61:fa:ae:31:2a:8a:
75:68:ef:b2:d8:92:93:9a:ce:8d:1d:17:16:3e:de:
ec:99:ef:69:a9:af:0f:4e:6e:28:6d:e1:ed:c9:ac:
b0:ba:6e:8b:95:25:57:09:46:4f:13:cf:e8:a2:40:
fd:ef:63:9f:bf:66:cc:9f:e9:6c:16:17:d5:f4:9d:
70:24:ad:c2:2c:a2:a1:2b:68:e0:32:2e:12:1e:55:
e1:c0:7f:7d:07:f8:90:6b:b2:f0:5b:8b:ee:48:04:
0e:d4:21:fb:e0:ef:ed:1d:cd:e1:c0:fa:83:2c:de:
8a:2f:38:35:bd:1a:92:2b:08:5b:f6:9f:95:59:c5:
cf:3b:bb:b2:df:75:ba:84:76:d9:a1:81:e1:b6:e2:
12:55:9a:34:ce:f3:86:06:4f:37:13:24:e6:bc:a0:
39:e3:56:26:e6:e4:d0:1e:1e:6d:ef:a5:a6:fb:09:
ff:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8D:BB:5A:84:71:76:D4:D5:2D:E9:4B:6D:3D:2C:60:90:F2:83:AB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mI27WoRxdtTVLelLbT0sYJDyg6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.77.0/24
Signature Algorithm: sha256WithRSAEncryption
50:53:6f:78:68:04:00:f1:07:9e:b3:d9:00:0d:d3:fb:f7:8a:
34:fe:b0:6d:e9:ee:50:00:4d:51:7a:b9:20:fc:04:fc:3f:e7:
98:5f:7e:b3:2a:f2:a7:bd:a7:5b:ea:ce:96:fc:8c:70:0b:1a:
c3:12:ea:e8:ce:ca:b6:00:ca:b3:35:20:90:81:36:10:09:87:
7e:9e:03:20:66:58:7c:93:1d:01:07:05:e0:38:ee:ef:2a:ca:
74:af:ce:d8:17:c3:47:3e:7d:e8:e4:82:b0:94:ef:97:64:b8:
f3:0c:dc:56:1e:4c:85:c8:49:9b:1c:eb:9d:ea:41:cb:e4:b7:
1a:0f:55:15:07:cd:e7:ce:a4:42:17:b2:1f:a8:24:68:20:7d:
a7:43:9f:31:bc:53:72:8f:4f:fb:a6:5b:04:e2:89:a3:27:dc:
08:33:7c:c7:ec:7f:d5:e9:f6:b4:63:4a:5c:52:df:97:67:da:
a8:fe:da:e6:b3:89:2e:b5:16:b2:24:1f:3a:5a:f3:c4:c8:cd:
f8:6b:56:1d:14:5f:d4:7c:16:d8:bc:15:1a:42:b1:af:46:f7:
82:b2:53:cf:22:3e:65:69:bd:56:ca:b0:31:23:43:f5:23:8b:
c4:de:d4:fc:76:34:7d:44:30:58:bf:61:6f:4e:eb:22:a8:8e:
be:d7:4e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org