Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/JaNEWZI1g47OV1s_gOw8Wp5KanM.roa
File: JaNEWZI1g47OV1s_gOw8Wp5KanM.roa (raw, json)
Hash identifier: frvQPPqltsxaS1fUI2HfNHY1sDi0HXWnxl1jUDT6W30=
Subject key identifier: 25:A3:44:59:92:35:83:8E:CE:57:5B:3F:80:EC:3C:5A:9E:4A:6A:73
Certificate issuer: /CN=a7c7544e8b482d2311903706eed724049fe385bf
Certificate serial: 01856FE6F253C15AF3736F79CA5CA9FDE452
Authority key identifier: A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/JaNEWZI1g47OV1s_gOw8Wp5KanM.roa
Signing time: Mon 02 Jan 2023 00:34:44 +0000
ROA not before: Mon 02 Jan 2023 00:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211141
IP address blocks: 185.120.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e6:f2:53:c1:5a:f3:73:6f:79:ca:5c:a9:fd:e4:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7c7544e8b482d2311903706eed724049fe385bf
Validity
Not Before: Jan 2 00:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25a344599235838ece575b3f80ec3c5a9e4a6a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c5:ae:fc:8f:69:8e:b3:bc:62:e4:80:b0:6a:
2f:2d:09:3c:dc:d8:6c:72:e2:21:5d:03:9c:dd:fe:
db:ca:72:2b:45:47:73:a8:0a:c5:14:50:a9:01:90:
3c:67:dc:d4:a3:79:fa:e1:d6:78:56:86:7c:be:59:
66:c1:6c:bc:1e:66:7e:85:ff:be:92:77:30:02:e4:
e7:66:39:b7:51:d0:28:9e:08:09:25:83:c3:9a:79:
ba:03:9f:26:a1:50:7f:d5:ed:0b:5c:a0:f6:cd:72:
91:53:aa:08:66:92:cf:f6:cc:af:4e:66:87:e9:f7:
11:91:06:11:97:79:13:21:02:17:95:9e:d9:4e:3d:
7b:81:fa:33:d8:40:a1:77:24:51:e6:66:dc:93:15:
43:2e:61:48:60:db:71:81:f9:1d:71:31:af:2f:b2:
d1:a3:34:46:32:ff:86:fe:64:1d:b8:36:f7:ed:d0:
a3:21:ab:33:89:2d:9f:8e:5d:06:16:77:9e:07:d2:
5f:4d:b8:f8:31:5e:7c:64:70:3f:bc:f9:a0:39:51:
c3:2d:db:1e:0a:8f:32:1e:29:d7:ed:6f:7a:08:35:
49:cf:f6:5b:55:70:e6:64:b3:ce:4b:61:9f:73:bf:
48:e8:2b:09:6f:4e:64:4c:f8:d3:89:e3:3e:15:97:
4b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A3:44:59:92:35:83:8E:CE:57:5B:3F:80:EC:3C:5A:9E:4A:6A:73
X509v3 Authority Key Identifier:
keyid:A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/JaNEWZI1g47OV1s_gOw8Wp5KanM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/p8dUTotILSMRkDcG7tckBJ_jhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.182.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:74:98:ba:33:38:c0:2a:97:09:e1:87:c6:a8:73:90:3a:a9:
e2:d5:32:a3:a9:ed:ae:1c:8b:68:98:07:d9:d0:4f:dc:8d:e2:
72:c7:df:ce:22:4b:10:7a:29:b1:9d:dd:a3:3c:56:4f:a5:3d:
28:a8:54:8f:d8:85:c8:47:31:a8:e7:e9:ae:ad:f6:2d:b4:28:
17:1e:b2:93:e2:93:8b:26:19:c9:7d:9e:ff:01:41:88:03:c2:
40:31:70:5f:9a:50:02:14:7b:22:28:ad:e8:21:53:6c:ee:01:
07:2d:ea:1d:83:68:4b:ed:2e:70:80:d5:8f:55:52:a3:e8:82:
bb:d4:4f:76:c3:56:23:b6:90:b5:e1:03:b2:eb:de:2d:0d:c9:
25:b5:ab:b0:dc:72:f8:4c:ae:f2:e8:d1:d6:7f:f8:66:d5:2d:
a4:1a:a8:78:0d:46:36:cb:38:f3:82:a8:d8:69:d6:b2:66:bb:
39:df:13:b0:0e:c4:76:0e:d9:7d:99:cf:4b:df:1d:1d:3c:87:
2c:b5:71:fd:6d:6b:7a:32:65:04:ea:2a:fc:7b:f6:8b:ec:8f:
38:d8:5d:84:54:73:f8:0f:6f:4e:21:50:b5:06:58:93:64:05:
97:4b:d9:5d:11:4c:06:49:79:5e:f2:e4:72:6a:d3:9c:6a:e2:
06:95:14:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org