Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/jV6453QwspGS-HFA-qlgfnREeL0.roa
File: jV6453QwspGS-HFA-qlgfnREeL0.roa (raw, json)
Hash identifier: tNDutCwn0EhD0Yjzayv76PAoUmKH8HPPRbBp7nWLGjU=
Subject key identifier: 8D:5E:B8:E7:74:30:B2:91:92:F8:71:40:FA:A9:60:7E:74:44:78:BD
Certificate issuer: /CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Certificate serial: 01856B9C6B343ECCE44FB2F1E80865A0D7FC
Authority key identifier: 4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/jV6453QwspGS-HFA-qlgfnREeL0.roa
Signing time: Sun 01 Jan 2023 04:34:51 +0000
ROA not before: Sun 01 Jan 2023 04:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13097
IP address blocks: 185.208.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:6b:34:3e:cc:e4:4f:b2:f1:e8:08:65:a0:d7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Validity
Not Before: Jan 1 04:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d5eb8e77430b29192f87140faa9607e744478bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3f:9d:fe:90:d4:ea:bc:fd:26:52:87:4b:61:
a0:8f:8e:29:38:1b:b2:47:de:80:ad:55:e1:a4:f7:
95:c5:18:bf:34:d1:b2:ee:70:f0:c7:48:8b:64:c7:
1f:58:cc:ed:dd:cc:20:18:1c:14:2d:d9:34:1b:78:
33:d7:50:8d:52:aa:4d:6c:43:a7:6a:13:2a:4b:29:
96:be:69:a6:da:29:ae:e7:00:d3:95:1f:ab:4d:90:
ff:d0:69:0a:5f:22:a2:75:35:3f:bd:7b:d0:bc:6d:
69:c6:5d:5b:76:44:e6:2c:d6:fc:d7:8e:75:ca:57:
24:db:85:6b:b4:c7:23:fb:36:59:ac:62:74:4e:01:
d9:6b:2a:10:6b:2c:62:9d:87:c0:de:86:7d:68:8b:
44:65:78:3c:5e:02:f9:30:bf:d7:a6:55:b4:d3:ee:
af:21:43:1f:80:9b:79:27:57:5e:7b:33:71:4f:c5:
ba:7f:0c:54:d9:2e:d3:4f:bd:6e:bf:32:ac:ba:e7:
32:86:30:ef:65:21:8f:d1:f0:76:98:42:2c:da:94:
59:19:cc:5a:12:33:f7:c2:27:5f:58:2f:9e:f2:f9:
d5:43:6b:69:ae:d8:8b:52:da:6b:da:a9:9f:8f:e4:
56:a5:bc:3c:34:0a:2d:74:45:53:a1:4a:b2:0f:1b:
8d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5E:B8:E7:74:30:B2:91:92:F8:71:40:FA:A9:60:7E:74:44:78:BD
X509v3 Authority Key Identifier:
keyid:4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/jV6453QwspGS-HFA-qlgfnREeL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.138.0/24
Signature Algorithm: sha256WithRSAEncryption
99:42:4e:d1:72:e8:79:b0:6c:06:7e:ca:fd:38:8c:17:9f:7b:
63:3a:29:5c:37:de:81:72:e6:09:d6:46:27:9b:95:03:e4:07:
2b:ef:2d:fc:c8:64:4a:c4:70:93:49:72:24:b0:73:e2:4b:a2:
92:8e:15:55:d9:17:bd:6f:23:c5:13:50:10:4a:ca:f5:27:1a:
f0:46:ac:a4:cb:12:6c:37:b0:4a:ca:2a:e6:6c:30:50:c6:cb:
37:a5:de:25:1b:02:f7:0a:01:20:2f:a3:4a:fe:3e:85:a4:84:
8c:ad:76:20:80:64:6c:d3:a3:2e:84:31:e6:c4:7f:d9:8e:6c:
f2:3e:66:1f:a2:30:86:a6:b7:83:45:2d:3c:a1:c3:93:9e:54:
69:e2:fe:e7:7a:a3:f9:b7:60:81:43:6d:d4:e9:90:f1:dd:6e:
ca:d9:20:14:10:fb:f0:b1:0d:c0:85:87:93:01:15:1f:e4:47:
83:a7:0e:9c:25:41:79:0e:25:a1:59:6a:04:60:7c:81:fa:0e:
29:f1:e5:e3:5d:cb:ca:44:35:68:92:b2:0d:d4:ef:0e:05:8f:
ad:3e:69:5e:79:de:f3:ac:d3:93:a4:81:a1:9f:13:df:63:8d:
38:1a:1e:2e:9c:46:9e:1f:60:38:94:f9:ba:ba:b9:4b:0f:f5:
d7:9b:d0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org