Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3d3b56-e4e1-4c07-99e6-2fdfe3507a2f/1/jPa-uULWeK_-bSOkzSEVbLh9lxI.roa
File: jPa-uULWeK_-bSOkzSEVbLh9lxI.roa (raw, json)
Hash identifier: iMXFcW7RxvBryGgfBAVAeMYh1CxI8yAqXolsCBvvLUA=
Subject key identifier: 8C:F6:BE:B9:42:D6:78:AF:FE:6D:23:A4:CD:21:15:6C:B8:7D:97:12
Certificate issuer: /CN=52bab6d360e93d98fce9e7888e564bd464e89e8a
Certificate serial: 01856F79A20F19F299842507650A94DEADD1
Authority key identifier: 52:BA:B6:D3:60:E9:3D:98:FC:E9:E7:88:8E:56:4B:D4:64:E8:9E:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urq202DpPZj86eeIjlZL1GTonoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3d3b56-e4e1-4c07-99e6-2fdfe3507a2f/1/jPa-uULWeK_-bSOkzSEVbLh9lxI.roa
Signing time: Sun 01 Jan 2023 22:35:20 +0000
ROA not before: Sun 01 Jan 2023 22:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32322
IP address blocks: 193.239.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:a2:0f:19:f2:99:84:25:07:65:0a:94:de:ad:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52bab6d360e93d98fce9e7888e564bd464e89e8a
Validity
Not Before: Jan 1 22:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cf6beb942d678affe6d23a4cd21156cb87d9712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e2:ad:c6:49:34:e1:5d:ec:9d:f6:3b:ed:b5:
3b:4d:9c:e9:0e:ab:a8:94:dc:11:b2:cd:a7:42:bd:
a9:23:0a:50:eb:c4:92:4f:96:7a:08:6d:33:06:9c:
a8:02:f5:11:ea:12:78:2f:74:48:9f:6a:e7:51:5e:
23:a6:c9:0f:4a:8f:60:15:3d:94:c3:12:54:ef:56:
4f:92:9b:8a:2f:4d:32:94:c3:84:b0:c8:95:52:89:
ad:9a:01:84:56:be:f6:2c:f9:47:10:e1:97:c4:3a:
d7:96:f2:70:99:ee:55:10:5c:a7:3c:56:c2:f2:90:
ef:88:69:b4:7b:10:95:a9:cc:79:65:e0:90:eb:fb:
82:63:7d:82:17:d5:64:26:da:6f:c9:54:d0:6b:f4:
f6:ee:6f:0f:9e:d3:4a:98:16:59:00:05:66:2f:40:
a8:cb:6a:ca:64:29:de:2a:3b:23:93:5d:8e:2f:fc:
9b:a4:24:c7:a8:d9:2d:a1:38:ef:61:8c:12:be:8a:
e6:21:37:ed:57:d1:4d:e7:6e:c4:20:e5:e1:7e:93:
7a:e5:1f:8e:64:80:df:fc:4c:f2:11:51:6c:ba:8d:
25:12:fb:e7:45:8f:d2:02:6c:18:58:53:1c:21:69:
15:8d:e1:ae:b9:60:0c:f4:56:f0:79:fa:88:98:8c:
9e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F6:BE:B9:42:D6:78:AF:FE:6D:23:A4:CD:21:15:6C:B8:7D:97:12
X509v3 Authority Key Identifier:
keyid:52:BA:B6:D3:60:E9:3D:98:FC:E9:E7:88:8E:56:4B:D4:64:E8:9E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urq202DpPZj86eeIjlZL1GTonoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3d3b56-e4e1-4c07-99e6-2fdfe3507a2f/1/jPa-uULWeK_-bSOkzSEVbLh9lxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3d3b56-e4e1-4c07-99e6-2fdfe3507a2f/1/Urq202DpPZj86eeIjlZL1GTonoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.231.0/24
Signature Algorithm: sha256WithRSAEncryption
06:63:c5:f2:53:6f:36:76:db:37:b6:6b:87:37:05:8b:a9:45:
c5:8c:10:e8:a4:28:58:39:f9:6e:c6:44:8b:07:60:86:b2:2f:
bd:9d:bd:79:3c:a4:8c:56:a7:df:71:b5:8d:bf:d1:1e:3b:a5:
10:78:e0:57:45:ea:9f:b2:96:ec:54:89:52:ac:52:8a:6f:4a:
18:a0:59:30:38:4e:bc:33:85:28:ce:63:f8:ac:13:52:85:98:
94:36:28:e2:75:48:a4:4f:9a:bc:c7:b8:85:fb:57:7e:95:75:
8b:93:d3:dc:3d:f5:16:40:11:16:90:f3:cd:93:3f:6a:d2:f7:
e4:7e:96:fa:ae:12:88:df:8d:a3:64:ce:1a:d4:2e:dc:6e:cd:
0f:b4:41:a9:6c:4b:9b:b0:0a:45:a5:ea:63:cd:b4:67:09:8c:
12:d7:7e:c9:9a:59:e5:0b:63:f3:33:43:61:a9:3b:7b:fa:ae:
11:4a:7d:d7:f7:0e:2e:9d:e9:00:79:9d:62:8a:07:96:83:20:
94:24:49:76:af:a6:0a:f9:b0:fc:dd:d8:17:6f:91:86:cd:c9:
c7:40:e5:97:0b:5b:6b:ed:a1:e5:65:3e:20:eb:01:d5:6a:bd:
f0:ec:6d:85:a4:09:b2:52:5b:85:1c:0e:ad:04:ab:3f:63:a6:
ee:d1:62:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org