Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/njBDoX56HhgquXJLp05jZXAItsc.roa
File: njBDoX56HhgquXJLp05jZXAItsc.roa (raw, json)
Hash identifier: cKyopU5ayyVTeiuhG71AW1brhglPQ5dzYTBZcx8Eh18=
Subject key identifier: 9E:30:43:A1:7E:7A:1E:18:2A:B9:72:4B:A7:4E:63:65:70:08:B6:C7
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 018C39985A0E767DFDF869E6269F0C24D456
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/njBDoX56HhgquXJLp05jZXAItsc.roa
Signing time: Tue 05 Dec 2023 10:48:54 +0000
ROA not before: Tue 05 Dec 2023 10:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.207.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:39:98:5a:0e:76:7d:fd:f8:69:e6:26:9f:0c:24:d4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Dec 5 10:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e3043a17e7a1e182ab9724ba74e63657008b6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f5:3c:c7:3f:8f:2f:01:0e:3c:ae:b0:6f:8f:
ab:da:c8:81:34:b0:de:1d:79:dc:c1:cf:18:b2:ae:
2c:55:e0:0e:98:4f:ae:bf:a1:8b:f3:e4:23:ce:c5:
6a:15:be:0d:8c:d2:30:6f:7b:9d:19:5d:bf:17:f3:
f0:ca:35:09:3c:77:79:ca:46:00:66:40:ff:97:c7:
c7:63:3c:ae:40:c1:57:73:e1:fe:c2:dc:56:2d:84:
d2:f7:65:d4:c7:45:6b:27:27:14:3b:91:e9:ca:a5:
dc:d7:c7:94:54:98:40:d0:da:da:ba:28:68:52:36:
22:99:bd:06:a5:2e:66:60:8b:e5:98:7c:fb:8b:8c:
a9:1b:9a:d8:66:24:fd:2c:57:db:3b:c5:7c:74:ef:
0f:20:91:9d:8a:eb:f5:52:69:77:fd:6a:26:98:fa:
80:a2:60:76:19:f6:e4:82:7e:28:d7:f1:87:3e:a9:
1a:95:fb:a2:2f:04:5c:b3:cd:9c:47:c4:ce:ef:9e:
d5:b5:a5:7e:4f:d7:a7:99:c1:ea:52:db:ab:63:84:
34:3a:90:8b:3a:aa:bb:9b:91:1a:04:a7:ea:4c:cf:
13:ec:32:1a:36:6d:58:08:1b:d2:33:5b:1e:e0:0f:
ed:11:3d:d3:7a:40:da:04:50:ef:1c:b3:a3:5d:29:
8f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:30:43:A1:7E:7A:1E:18:2A:B9:72:4B:A7:4E:63:65:70:08:B6:C7
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/njBDoX56HhgquXJLp05jZXAItsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.134.0/24
Signature Algorithm: sha256WithRSAEncryption
14:3d:7d:d2:fd:12:80:9c:6d:48:18:86:48:71:30:88:a8:47:
8b:cf:96:ea:3b:93:8d:25:ae:ae:03:db:19:fc:c2:36:b8:2a:
e2:18:6a:2f:ec:df:fa:e1:50:0f:c7:73:7b:98:99:ff:db:50:
b5:ec:66:18:d4:57:f1:01:cd:1b:73:2c:4f:33:c0:62:02:e9:
5b:40:c9:4c:67:73:45:34:4b:77:2d:b5:e5:1a:80:66:b3:2e:
50:55:5b:0f:ae:e0:3c:3d:2e:d1:02:8e:06:a7:22:02:73:07:
ba:f1:a5:ca:b8:8f:b4:53:df:02:88:b4:e4:08:27:9e:19:f7:
f7:ba:6f:f1:5d:38:f1:af:08:db:a0:8b:a1:f7:21:24:7f:3e:
d6:51:96:57:22:0a:98:48:f6:71:08:34:44:67:72:a9:e6:9c:
dd:f4:46:6b:31:1d:e5:c8:9f:aa:78:10:65:12:2e:f1:c0:4a:
0c:1a:32:43:13:9a:65:87:bd:76:65:9a:a2:79:22:0c:3d:bf:
a0:a4:f6:a3:c9:e4:f0:5c:33:58:9b:cc:8f:76:1f:cc:78:03:
74:c3:f5:4e:3d:f1:c5:d5:da:2f:e1:22:a5:76:39:0b:ad:eb:
fa:bc:af:0d:0c:c4:9c:4c:ff:ca:7d:25:5a:ac:9e:f5:64:7a:
fd:8c:77:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:41 2024 by rpki-client on console-ams.rpki-client.org