Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/JPKZk8C8SYNMXEO_8Sc8_dqntBg.roa
File: JPKZk8C8SYNMXEO_8Sc8_dqntBg.roa (raw, json)
Hash identifier: fTcksCUZg4K0OBH37idA3j3KFzboB7XNOqw7VXJN1jA=
Subject key identifier: 24:F2:99:93:C0:BC:49:83:4C:5C:43:BF:F1:27:3C:FD:DA:A7:B4:18
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018DD7E558BF23526EA5AD01C94715812982
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/JPKZk8C8SYNMXEO_8Sc8_dqntBg.roa
Signing time: Fri 23 Feb 2024 21:35:48 +0000
ROA not before: Fri 23 Feb 2024 21:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210538
IP address blocks: 45.94.170.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 17:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d7:e5:58:bf:23:52:6e:a5:ad:01:c9:47:15:81:29:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Feb 23 21:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24f29993c0bc49834c5c43bff1273cfddaa7b418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:e0:17:cb:69:ec:2a:75:3c:3b:55:03:89:
57:57:66:fb:45:43:d8:8a:5d:04:8f:59:c3:a8:d1:
63:1b:36:7c:29:69:ac:53:e2:4a:9d:bd:33:3e:72:
26:88:9a:fc:cf:14:21:32:4a:2d:f1:67:e2:06:61:
7a:9d:e3:d6:8f:59:3e:c1:08:36:d5:a1:c5:99:b6:
61:ee:07:8b:f3:e0:3e:b3:d6:5d:49:4d:60:84:e7:
35:0d:60:bf:c9:8e:90:b4:97:3c:e5:ef:00:9b:42:
eb:94:9b:ce:1d:2b:bd:3c:d3:ed:72:bc:01:8a:1a:
53:c5:b8:47:4a:cf:74:71:23:52:1f:09:8c:ae:16:
51:14:9e:0b:e8:d9:58:e1:89:7f:7f:8e:81:e0:65:
2b:6d:e5:07:88:fb:1a:eb:98:69:3a:9e:9e:92:a7:
dc:db:82:2e:b7:bd:c9:9d:3f:3b:93:51:26:d8:0f:
4c:55:72:60:d7:cf:50:e3:db:66:1b:ab:e4:c5:b3:
02:f5:59:82:9b:d8:31:e6:7a:f4:e1:ac:f1:2b:18:
f5:e7:46:1b:fd:7e:23:46:23:12:31:2e:73:9d:89:
36:ee:15:eb:8c:1d:6d:81:33:a0:87:62:f5:45:bc:
b9:57:fe:ab:33:73:3c:f2:d2:c7:d3:2b:1e:d9:5c:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F2:99:93:C0:BC:49:83:4C:5C:43:BF:F1:27:3C:FD:DA:A7:B4:18
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/JPKZk8C8SYNMXEO_8Sc8_dqntBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.170.0/24
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:d4:16:59:d6:b6:4d:60:9e:9f:f1:2a:b9:fb:7f:65:9f:fd:
87:b7:80:03:39:b7:ed:ff:e0:f7:ee:09:3f:12:ab:4b:e8:05:
db:2f:87:23:d7:7d:0f:1b:1d:1a:74:8e:7c:ed:d6:bc:3a:96:
c5:07:c1:7a:97:3b:51:ec:e2:8e:e6:b7:bf:a8:19:ce:6a:8d:
2c:ca:f7:e2:f2:51:e2:49:3c:17:63:96:85:08:8d:4e:c2:66:
eb:0c:eb:f9:49:ea:cd:3f:b6:6f:a5:48:db:4d:09:23:cb:92:
d6:fd:3c:b4:dc:60:49:2c:e9:fc:10:2a:db:c7:61:3a:28:dc:
1d:e5:bf:74:aa:4e:f1:de:38:1a:5e:bb:e0:bd:83:81:18:2b:
93:fd:ec:89:46:3d:6a:62:d7:69:dc:96:bf:51:1c:12:cc:cc:
46:9b:9e:2b:e5:52:2e:d1:0b:08:7b:63:b6:e5:4a:2c:54:01:
a4:0f:8a:63:5c:b6:b8:8a:5b:db:25:12:e2:eb:d8:ae:6e:1b:
f7:c1:08:89:f2:60:b8:04:9a:3a:9f:36:89:ef:8a:0b:37:f5:
fd:18:d8:d6:5a:cb:fc:d3:f9:ae:83:c1:9d:32:f4:e0:fd:f9:
fb:8e:82:7c:45:c0:02:02:46:2a:f7:80:a6:6e:d1:d7:f6:1c:
0a:0d:82:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org