Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/Jsw_ZPweVqZXQWmAYAOV9XcH4pQ.roa
File: Jsw_ZPweVqZXQWmAYAOV9XcH4pQ.roa (raw, json)
Hash identifier: KV0AxkGXq5nIVSwZCkN65ZouYqKhb6aR9mXCORIWBzo=
Subject key identifier: 26:CC:3F:64:FC:1E:56:A6:57:41:69:80:60:03:95:F5:77:07:E2:94
Certificate issuer: /CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Certificate serial: 01856BEECDCDC1EE07CE09922D3B7D03F4B2
Authority key identifier: 4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/Jsw_ZPweVqZXQWmAYAOV9XcH4pQ.roa
Signing time: Sun 01 Jan 2023 06:04:50 +0000
ROA not before: Sun 01 Jan 2023 06:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2094
IP address blocks: 185.4.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:cd:cd:c1:ee:07:ce:09:92:2d:3b:7d:03:f4:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Validity
Not Before: Jan 1 06:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26cc3f64fc1e56a657416980600395f57707e294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:52:b4:46:fb:8e:b4:99:d0:77:0e:7b:64:4a:
63:1d:40:0e:f7:14:1d:1e:d3:df:a5:fb:11:4a:cb:
be:cc:23:a1:73:ef:d7:4b:14:9c:55:65:89:a9:1d:
4c:23:f0:9a:3f:2c:e4:ac:b2:d6:50:28:7f:7e:8a:
7e:9b:0a:3f:7e:de:d6:f9:3a:51:c6:75:4e:c0:01:
76:af:6c:2b:a4:c2:f4:33:50:b9:4c:e3:9c:54:d8:
7e:9a:0f:2b:9b:a1:b8:31:09:83:54:04:27:ab:41:
28:1b:33:58:bd:e0:e6:9c:d7:ce:b8:d7:db:e0:66:
71:3e:e0:35:b9:59:24:32:dd:12:5c:de:b8:d6:d4:
29:de:14:32:87:01:4c:89:7b:2d:bb:3e:e3:9f:ec:
32:d0:52:3f:96:5f:a7:f9:c1:f5:5b:e6:bf:a6:03:
94:47:36:5f:ab:c1:99:f4:bc:a2:13:b5:46:fd:76:
fd:41:ac:e5:77:89:85:72:2e:e5:ba:42:c4:19:d2:
1c:4f:df:da:06:88:70:95:6c:e0:22:11:24:bc:5a:
96:90:8c:4f:47:e0:c8:12:f6:75:72:3f:bc:d3:97:
be:f2:0b:df:f0:a8:c0:ea:53:95:b4:26:23:9b:1b:
dc:7b:f5:06:8c:96:c6:ce:8d:c8:47:93:5f:44:e7:
b0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CC:3F:64:FC:1E:56:A6:57:41:69:80:60:03:95:F5:77:07:E2:94
X509v3 Authority Key Identifier:
keyid:4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/Jsw_ZPweVqZXQWmAYAOV9XcH4pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/TiopnxgqH9UdSwNimXr3qq4Na-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.250.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:09:8b:03:60:27:0d:50:a8:85:17:8c:37:35:3e:87:bd:50:
2a:be:fe:9c:c4:c8:ad:8b:19:84:e0:95:a7:5f:9a:92:5a:51:
5c:e6:db:11:47:da:88:e5:c1:f1:52:b0:1d:74:58:b9:35:fb:
61:65:b2:6f:d8:00:7d:ce:2f:aa:f5:65:ad:54:d4:80:af:9b:
05:34:b1:a9:48:d4:bd:29:04:85:6d:3e:81:cf:30:1c:1f:8d:
88:16:78:83:0b:ea:d1:da:f5:b6:1f:cf:e6:9b:84:89:36:b9:
39:4b:dc:84:f4:f1:d3:3b:1e:94:e7:e3:80:36:68:3e:ff:41:
3c:ab:d7:a2:bb:d2:65:48:f4:f9:a0:ef:57:4a:46:cf:fa:22:
13:bd:47:ae:63:65:7b:9d:ef:e6:8d:ce:9e:05:af:3a:33:5b:
7c:c5:39:a5:8a:a9:fc:3c:69:c6:55:82:9e:b7:21:32:25:9f:
06:79:a7:26:02:d3:88:ae:27:66:93:96:57:0d:72:2f:ba:2f:
ce:63:14:fe:45:3e:da:4a:d8:72:09:98:76:53:4f:6b:bc:51:
48:64:02:1a:95:92:c0:10:6d:54:85:dd:86:89:2d:56:49:36:
0f:c7:43:19:13:bc:53:b4:e3:1d:14:c8:de:be:c8:70:c6:2e:
72:72:95:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:23 2024 by rpki-client on console-ams.rpki-client.org