Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/jUnthy-CKsY6rqYQ5hG5-I6FsGA.roa
File: jUnthy-CKsY6rqYQ5hG5-I6FsGA.roa (raw, json)
Hash identifier: Jid1QFWC7PrWg5lKt/+OKOwX9TA4RFSkjeTVfNw0r9k=
Subject key identifier: 8D:49:ED:87:2F:82:2A:C6:3A:AE:A6:10:E6:11:B9:F8:8E:85:B0:60
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01856E5427D71C1080486204EE2534E41AF8
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/jUnthy-CKsY6rqYQ5hG5-I6FsGA.roa
Signing time: Sun 01 Jan 2023 17:14:47 +0000
ROA not before: Sun 01 Jan 2023 17:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4775
IP address blocks: 163.171.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:27:d7:1c:10:80:48:62:04:ee:25:34:e4:1a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Jan 1 17:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d49ed872f822ac63aaea610e611b9f88e85b060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:f4:df:16:24:2f:13:c1:ec:e3:8f:ae:b8:
c6:94:d3:7b:0d:d3:f5:26:f2:00:47:1d:56:eb:59:
bb:9c:77:34:49:c5:3f:fb:f1:3b:3d:71:61:3e:42:
7d:56:74:c4:c7:70:1f:8d:3e:eb:29:31:ae:a8:c9:
3f:33:e9:07:d8:d3:21:93:1b:7f:a8:aa:37:6b:1d:
8f:8d:83:74:e3:33:3a:e5:4b:77:9d:ae:e6:2c:79:
86:a5:5c:4c:0f:e4:6e:5e:87:4e:f4:c4:d1:2e:a1:
9d:62:eb:73:8c:71:5e:fc:a4:c1:b5:4d:99:04:c5:
88:68:78:7f:90:fb:a2:b7:f7:05:97:ba:f9:d9:36:
04:cb:ea:8e:ad:6a:95:d6:0a:da:01:e5:3b:97:1c:
62:16:a3:52:ed:11:a3:48:7c:42:b0:6c:43:ab:0d:
59:62:96:78:6a:44:26:52:e4:03:57:5b:99:14:f2:
ce:b8:45:f8:25:11:3e:e3:d2:c8:5e:a6:49:0f:30:
d3:ac:57:81:31:f8:93:e9:95:9e:64:8e:0c:fa:50:
84:f5:42:0f:af:91:f3:42:97:22:de:69:4d:cd:69:
b3:da:9c:59:49:c7:e7:ff:93:44:35:23:e9:99:44:
7a:84:93:0b:fc:b8:6c:3d:19:2e:87:70:88:20:63:
36:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:49:ED:87:2F:82:2A:C6:3A:AE:A6:10:E6:11:B9:F8:8E:85:B0:60
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/jUnthy-CKsY6rqYQ5hG5-I6FsGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.65.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:37:9d:5c:ac:8a:77:63:e7:d2:61:58:72:97:2a:6d:fe:1a:
07:04:84:91:5d:c7:ec:2b:6f:e1:78:7d:80:3e:30:e2:76:03:
0d:57:fc:bb:d0:42:f6:4e:b0:26:e4:74:09:94:58:fb:29:99:
42:3e:ef:b4:94:35:19:f8:15:41:5c:6c:61:73:6c:39:3d:3f:
45:80:59:c8:c1:c2:57:e1:13:90:42:cf:43:53:fc:22:a3:39:
5b:2a:19:a3:b7:d7:a0:e7:30:82:75:1a:36:38:ec:97:de:ca:
1e:b6:da:c1:86:bc:6c:49:4f:8e:b0:72:0b:19:15:e0:07:34:
9f:35:00:bf:da:3c:47:77:1a:3e:f1:2d:3d:45:c8:85:3c:29:
9c:3a:76:f5:db:4f:4e:51:4f:8a:68:90:a1:b1:a6:c4:47:bd:
24:a4:0d:1c:61:ce:77:67:99:c1:45:49:60:61:fe:4c:56:37:
6f:17:fc:08:d6:84:ca:a9:8e:74:a9:c9:19:0a:75:a9:57:2c:
36:4b:2a:97:fb:d8:79:63:c2:e4:c5:d5:69:9b:70:dc:76:0b:
54:7b:40:74:20:9c:b0:7b:62:37:58:15:6d:a0:44:f8:69:e8:
33:30:43:5a:28:9f:19:ed:aa:ef:7d:ce:97:5c:43:b8:1a:20:
d6:04:0f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org