Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JKTqdxc-KbNK59LeymiGvVqqztE.roa
File: JKTqdxc-KbNK59LeymiGvVqqztE.roa (raw, json)
Hash identifier: LEELJBPDenOp3MkRhdgaTHatb0LFDi2A04PpwVnX4rk=
Subject key identifier: 24:A4:EA:77:17:3E:29:B3:4A:E7:D2:DE:CA:68:86:BD:5A:AA:CE:D1
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 018CCA2A3B211631C8640446B5592701AB7D
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JKTqdxc-KbNK59LeymiGvVqqztE.roa
Signing time: Tue 02 Jan 2024 12:33:34 +0000
ROA not before: Tue 02 Jan 2024 12:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24961
IP address blocks: 45.91.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 07:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:3b:21:16:31:c8:64:04:46:b5:59:27:01:ab:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Jan 2 12:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24a4ea77173e29b34ae7d2deca6886bd5aaaced1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:34:49:b0:27:7f:ce:39:b8:8f:59:61:bc:29:
83:3b:ec:a4:12:f0:47:2a:86:2d:73:3e:30:3f:51:
e4:f8:bc:e6:61:49:81:c7:de:9c:b7:ea:d3:06:df:
ce:65:cc:10:4c:03:6a:c8:29:b0:e2:ff:aa:6a:bf:
dc:7c:87:8f:61:88:91:f1:48:71:08:e7:ef:91:b8:
5a:63:ac:f1:df:b1:0d:04:11:97:3a:ea:4d:81:3d:
d4:6c:8c:5e:6b:40:a0:54:76:0a:95:b0:6d:b2:e6:
df:16:7c:d0:1a:04:81:fd:8e:d2:12:f2:7c:81:c6:
b0:38:1e:65:93:a7:1e:3f:ef:2c:9e:41:21:01:cd:
3a:97:e1:12:54:a3:94:99:9f:1c:9b:fa:1c:5c:f7:
4f:6b:19:09:89:57:d6:1a:aa:e9:e5:3e:8b:9f:7a:
f6:29:92:b3:b4:3b:71:f9:7c:97:26:84:2f:6f:00:
be:ad:69:e3:32:5c:6b:a5:22:81:3e:40:a9:42:0e:
92:a4:51:f2:55:84:69:52:20:6c:39:a6:61:d9:52:
df:a0:09:a7:27:a4:d2:44:29:90:63:0a:57:93:cd:
da:0f:18:e4:e6:6b:23:cb:5c:ad:b9:87:90:5f:80:
42:97:1a:40:d5:94:00:3f:87:fd:07:47:b1:e6:14:
f1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A4:EA:77:17:3E:29:B3:4A:E7:D2:DE:CA:68:86:BD:5A:AA:CE:D1
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JKTqdxc-KbNK59LeymiGvVqqztE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:91:75:67:46:c1:78:f6:e6:a5:ee:86:bf:2b:8d:4c:30:41:
f3:86:78:19:ec:68:81:7f:28:11:20:69:d1:a3:d1:a5:26:9a:
73:64:84:10:56:37:e0:f9:d6:80:b6:19:06:22:d2:f8:dc:a9:
04:62:34:5d:46:1c:e0:7e:ef:13:8b:9f:5e:be:8a:d3:4e:cd:
35:ee:62:1b:3c:df:4f:14:48:bf:be:d2:d6:2a:a1:71:fc:1f:
58:10:03:dd:51:9f:71:66:0e:a9:e5:aa:29:de:64:5b:59:ad:
e8:ca:27:db:4c:bc:4b:c9:6d:7f:46:1b:46:94:0a:73:dd:e0:
85:89:cb:6d:75:25:ac:8e:d9:14:14:70:fd:21:29:1d:1a:08:
97:56:b7:3c:15:da:91:1e:1b:cc:ae:27:10:8b:f7:f6:19:78:
f6:a9:f1:fe:8b:d5:8e:cd:82:8c:3b:56:17:32:4d:79:d2:2c:
27:be:e3:2e:30:be:7a:a3:12:95:36:4a:a0:97:9b:06:0e:c6:
5d:1d:db:e2:2f:04:b0:2d:49:a3:d8:23:7b:08:b0:67:5e:70:
bc:fc:b8:6c:bd:36:5e:bc:a9:30:67:3a:3f:33:94:a9:cb:86:
1d:9d:4e:27:31:60:cb:64:dd:e1:4a:d3:50:00:c3:86:2a:19:
3b:85:ad:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 11:39:08 2024 by rpki-client on console-ams.rpki-client.org