Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ovnuNkjEyVJ_JKM014PTalTShLk.roa
File: ovnuNkjEyVJ_JKM014PTalTShLk.roa (raw, json)
Hash identifier: yDw3pF6IQUzbfV2viDpg5eoIcyfuk1/ua8qE9jbvXPs=
Subject key identifier: A2:F9:EE:36:48:C4:C9:52:7F:24:A3:34:D7:83:D3:6A:54:D2:84:B9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C3EDEC08FBCDF10B3B99DE681275F6F61
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ovnuNkjEyVJ_JKM014PTalTShLk.roa
Signing time: Wed 06 Dec 2023 11:23:54 +0000
ROA not before: Wed 06 Dec 2023 11:23:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211138
IP address blocks: 195.58.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:de:c0:8f:bc:df:10:b3:b9:9d:e6:81:27:5f:6f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 6 11:23:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2f9ee3648c4c9527f24a334d783d36a54d284b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:79:2f:b9:a2:d4:48:73:e0:4e:77:56:53:71:
80:0c:12:f8:7b:b8:b5:2c:8f:97:40:9f:e0:08:67:
85:f8:9b:04:55:26:56:1d:a8:54:49:40:fc:54:7f:
d5:56:1f:ba:2f:c2:b9:23:6b:bc:bd:3f:dc:fa:51:
c8:42:fb:f9:15:84:bd:88:7b:5b:9a:a3:26:0b:4a:
3c:1f:37:27:25:51:7d:ea:7b:6b:f8:6f:f9:f9:90:
48:0f:03:4c:03:39:bd:d9:4b:cb:ec:2d:0b:30:14:
ef:05:ab:01:a6:27:eb:e3:f3:01:61:17:ce:3d:13:
25:a2:2c:43:3a:2c:2f:e0:da:52:70:c0:88:ee:7d:
a6:d5:8a:62:03:58:51:b9:19:9c:39:f4:96:8b:87:
0e:63:77:6e:9b:3e:1d:72:d9:b1:38:06:f6:bc:97:
a5:66:ba:ce:85:6d:d0:1a:9d:59:97:77:e9:dc:1b:
bf:eb:4e:5d:91:56:c4:08:ab:01:5a:a0:45:6a:14:
c4:97:94:52:a4:ba:f5:34:1e:d0:aa:c6:d3:fd:64:
9e:5b:a8:b8:ef:a6:0c:2b:dc:a6:1d:1f:0b:6d:74:
4a:0e:2d:92:b2:9d:4d:3e:30:7a:42:50:d5:d4:a4:
e8:33:86:e5:af:b9:04:79:82:21:a8:a4:a8:60:d0:
52:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F9:EE:36:48:C4:C9:52:7F:24:A3:34:D7:83:D3:6A:54:D2:84:B9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ovnuNkjEyVJ_JKM014PTalTShLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.58.39.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ae:13:9b:1d:c9:c7:cb:93:a7:87:6c:e3:6b:da:d8:46:12:
65:2e:48:7c:7a:0f:18:49:d2:94:bc:e9:c9:32:d1:aa:5a:aa:
ca:c2:60:cb:67:df:ed:61:68:fa:7e:cf:7b:34:ed:26:d9:ff:
3b:ab:41:f5:51:1e:69:79:21:27:28:51:16:c0:05:84:f7:4b:
64:88:21:5a:4c:16:0b:29:9d:58:e6:45:f5:85:ca:c9:32:34:
ac:73:a5:cd:f8:5e:d6:8d:46:58:b2:76:cb:7b:e7:8c:16:ad:
55:c6:d5:b6:e6:1c:5d:fe:6b:d3:fb:a0:b7:bf:0d:16:cc:d3:
30:dd:f5:86:56:db:52:d0:85:0d:7e:16:32:ed:cf:69:17:14:
54:af:6f:03:f7:9e:e2:64:c8:bf:4c:b8:69:28:eb:db:03:93:
39:97:2f:ed:5f:ab:fb:e0:d0:8b:ce:49:5e:bd:10:ea:bf:ae:
a0:e2:e6:63:b6:e0:b4:ca:9b:b1:18:15:81:2c:95:08:28:aa:
e5:6b:04:fd:ba:49:a4:4a:4b:08:21:b5:c4:14:60:b7:1f:30:
05:fb:fb:e0:ed:c2:a5:fa:09:af:00:91:2c:4f:e6:ae:2a:38:
3d:81:82:1d:02:05:91:c4:49:f3:74:1c:bb:8f:e6:8d:04:12:
53:dd:c4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:19 2024 by rpki-client on console-ams.rpki-client.org