Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/osIk_Kb-YhkqoGGiF3yGc6CRXcQ.roa
File: osIk_Kb-YhkqoGGiF3yGc6CRXcQ.roa (raw, json)
Hash identifier: fTa4t2Vwe3MdZEN6QLHh7r6WwzaOx6zzwBk0Hm3Lq6c=
Subject key identifier: A2:C2:24:FC:A6:FE:62:19:2A:A0:61:A2:17:7C:86:73:A0:91:5D:C4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018F14790E90C3D3DBE46295B51B258406D9
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/osIk_Kb-YhkqoGGiF3yGc6CRXcQ.roa
Signing time: Thu 25 Apr 2024 08:57:08 +0000
ROA not before: Thu 25 Apr 2024 08:57:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56322
IP address blocks: 195.133.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 09:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:79:0e:90:c3:d3:db:e4:62:95:b5:1b:25:84:06:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 25 08:57:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2c224fca6fe62192aa061a2177c8673a0915dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a3:29:d4:fa:92:ea:e1:8b:af:63:9e:60:0f:
61:c0:47:a2:ac:65:5b:98:8c:25:e8:d8:ac:06:8c:
1f:8d:1b:3c:af:1e:e9:0a:5d:a3:6a:64:4f:20:4f:
2b:04:8a:68:6e:f7:cd:3d:66:c5:8a:d7:08:0f:05:
e4:4d:f1:c1:bb:77:a4:9c:c5:34:3f:8b:d5:5b:d6:
28:ab:06:62:44:d5:0b:d0:cc:4a:9b:79:a7:87:48:
91:5b:84:89:67:c2:c7:70:39:80:e3:35:bf:f9:90:
14:c1:39:de:d8:f7:4b:65:9f:6c:03:4a:c8:37:69:
52:73:77:72:b3:0e:be:4f:d5:14:36:7d:7f:9a:2b:
5e:ec:68:d6:ed:7c:3d:ad:3a:74:37:12:e5:58:40:
af:a9:6b:68:de:82:32:ee:84:82:29:9a:1f:9f:44:
d6:fd:d7:67:a8:73:69:97:6a:af:3e:ba:60:41:81:
09:55:9d:b2:1b:ca:ff:5f:43:64:89:53:6d:b4:36:
ed:a5:74:43:45:05:a0:63:40:3f:ef:e5:35:bf:fa:
35:21:b7:d8:87:cc:40:74:6b:2a:a5:7f:ac:27:e2:
e4:ec:35:f8:60:e0:e6:3a:f7:f8:6a:8d:44:8d:9b:
da:b9:6c:b7:93:6f:89:11:fe:8b:19:ea:35:55:25:
ab:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C2:24:FC:A6:FE:62:19:2A:A0:61:A2:17:7C:86:73:A0:91:5D:C4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/osIk_Kb-YhkqoGGiF3yGc6CRXcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.76.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:6d:e5:37:c9:9d:d6:f4:30:05:dc:dc:cf:f4:c1:1c:77:86:
16:89:bd:37:68:f1:53:7d:f2:70:90:69:93:7a:f3:2e:20:47:
03:cc:45:27:33:7c:95:24:a0:e4:cd:6e:a7:69:9b:0e:15:85:
50:a5:bf:ce:ef:62:8c:5b:4e:83:e1:90:f0:2f:a4:49:ed:f7:
d3:d2:6a:54:b5:a9:79:d8:33:a7:89:84:60:af:7d:78:1d:d6:
16:e6:22:75:48:07:2c:ed:bf:30:0e:cf:7f:bf:71:51:ed:14:
bc:ca:cc:61:01:47:4a:71:ff:0b:f1:ef:60:01:76:d5:26:59:
46:ed:08:90:2b:9d:4d:36:e1:d9:75:4c:bb:86:c7:1f:5f:b2:
4a:1e:75:9d:37:57:12:ab:52:6c:92:b5:f3:2a:60:59:54:31:
c3:1e:c6:d7:fb:4c:d8:f0:17:31:68:dc:a8:90:01:a8:46:1d:
b4:bb:f9:5d:73:2b:88:bf:be:87:04:12:e8:9e:ef:a0:3d:d1:
bf:b4:9a:2d:66:de:ba:aa:4b:a1:df:6a:bd:dc:c9:4f:fa:27:
89:7c:d2:ec:f9:be:eb:35:5f:ba:8a:f4:dc:e7:4e:34:fb:2b:
31:6d:98:61:8e:f4:1c:1e:7e:c9:20:58:ed:95:29:61:2e:29:
b9:38:27:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 12:08:03 2024 by rpki-client on console-fra.rpki-client.org