Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/JtPg6HGorj8QZfXAor9lFjf9ons.roa
File: JtPg6HGorj8QZfXAor9lFjf9ons.roa (raw, json)
Hash identifier: 5Go19CxzwPGIdsMUOI/bv5lvdpOCM76yVgejtxat9SY=
Subject key identifier: 26:D3:E0:E8:71:A8:AE:3F:10:65:F5:C0:A2:BF:65:16:37:FD:A2:7B
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 018FD1574240825E0948B9DA5F7184CD16F0
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/JtPg6HGorj8QZfXAor9lFjf9ons.roa
Signing time: Sat 01 Jun 2024 01:08:27 +0000
ROA not before: Sat 01 Jun 2024 01:08:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.18.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 08:07:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d1:57:42:40:82:5e:09:48:b9:da:5f:71:84:cd:16:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Jun 1 01:08:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26d3e0e871a8ae3f1065f5c0a2bf651637fda27b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:db:cb:60:9e:c3:b6:0a:ea:57:11:e3:c8:fd:
c4:f7:74:44:b4:ad:76:7c:14:4f:bd:b4:75:4f:66:
3e:c2:09:aa:f1:fa:5c:fd:de:b3:80:28:35:f1:c1:
0f:f9:c9:7d:03:a5:9b:5b:a0:34:5a:f0:12:67:63:
cf:b8:95:88:5b:cf:b3:15:b3:19:4d:03:a8:ea:1b:
a1:23:1e:14:8c:a3:92:2d:14:85:0b:d3:72:07:cc:
53:8f:62:c8:30:d8:b5:e0:10:7b:6b:df:86:d5:03:
15:0c:e0:91:77:1d:e2:8b:16:a0:95:3e:d5:8a:5b:
d7:30:9d:85:d6:a2:ce:68:24:9f:9c:55:bc:4c:9a:
32:48:ab:f3:b3:8d:4c:58:ed:85:c1:f6:1e:57:ef:
f5:21:5d:83:28:32:d6:a8:79:0a:21:62:58:78:60:
b2:4a:e9:fc:75:5a:7b:d9:63:88:c6:18:16:0c:74:
6b:4b:09:6b:f1:51:3a:5c:90:a0:92:73:d4:e5:41:
7c:33:f2:8b:1f:f3:7f:b2:aa:b2:ca:94:57:70:21:
fc:a2:9d:9d:d4:84:5e:78:6c:b7:93:77:27:fd:4d:
ac:1c:f3:d3:87:70:d8:29:77:67:d6:01:d2:96:f8:
60:36:48:9d:47:61:f6:f1:1f:22:00:c7:88:ee:d4:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D3:E0:E8:71:A8:AE:3F:10:65:F5:C0:A2:BF:65:16:37:FD:A2:7B
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/JtPg6HGorj8QZfXAor9lFjf9ons.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.222.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0f:50:47:0e:1c:b3:7c:9a:58:84:e0:74:4b:9f:0f:11:d2:
fc:38:50:cc:8d:fd:37:60:18:bf:97:40:13:ba:bd:c8:a4:5d:
32:97:71:8d:07:1b:33:82:a3:8e:fc:e3:83:59:fa:86:ac:94:
44:e6:3a:ea:36:e4:b8:a8:70:24:a0:a5:3b:ed:2c:40:be:af:
cf:32:9d:aa:85:9e:9f:f8:87:b7:53:4f:e4:a0:f1:74:52:a1:
b4:98:47:81:ba:da:5d:14:f0:b1:f4:7e:e3:6d:eb:25:9c:e0:
e5:4c:49:8e:12:c6:b0:f6:9d:2d:b1:7d:da:fb:7c:8f:30:e8:
c2:79:09:98:e1:24:05:0b:c2:07:fc:7b:a0:e0:d8:23:ae:db:
7a:b8:21:22:dc:59:c5:b9:5f:d4:8b:14:59:d4:5d:17:8a:74:
a9:e2:33:7b:72:6f:5f:31:2a:f7:8b:3d:c5:cc:6c:db:f3:f2:
19:22:21:c2:92:82:89:40:6c:d7:d2:68:d2:83:7a:32:dc:18:
bd:34:39:c4:86:83:d9:5a:d8:2d:84:0c:0a:40:03:50:99:b3:
89:d3:ad:0c:6d:a4:a1:b7:c7:1a:b0:59:08:e6:0b:a1:d9:67:
b7:27:f5:fa:7b:c4:74:2a:be:ef:ad:67:17:ff:8f:e4:60:1f:
8b:e4:b6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:21 2024 by rpki-client on console-ams.rpki-client.org