Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/JULdoQK4qnghfmvwUxg3K-O4jtU.roa
File: JULdoQK4qnghfmvwUxg3K-O4jtU.roa (raw, json)
Hash identifier: IKpFIU0vKaCGJlAY8MfPcaYcyHWJlKr5J4KtJvGswKs=
Subject key identifier: 25:42:DD:A1:02:B8:AA:78:21:7E:6B:F0:53:18:37:2B:E3:B8:8E:D5
Certificate issuer: /CN=6c6ddb72e7268298c1714583131bbe4ae4ef0916
Certificate serial: 01856DC1AB08ACF00EADCF4D3A4141CF1085
Authority key identifier: 6C:6D:DB:72:E7:26:82:98:C1:71:45:83:13:1B:BE:4A:E4:EF:09:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG3bcucmgpjBcUWDExu-SuTvCRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/JULdoQK4qnghfmvwUxg3K-O4jtU.roa
Signing time: Sun 01 Jan 2023 14:34:46 +0000
ROA not before: Sun 01 Jan 2023 14:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24637
IP address blocks: 193.110.139.0/24 maxlen: 24
212.3.64.0/19 maxlen: 24
193.19.183.0/24 maxlen: 24
193.19.180.0/22 maxlen: 24
80.244.208.0/20 maxlen: 24
2a02:1798::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ab:08:ac:f0:0e:ad:cf:4d:3a:41:41:cf:10:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6ddb72e7268298c1714583131bbe4ae4ef0916
Validity
Not Before: Jan 1 14:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2542dda102b8aa78217e6bf05318372be3b88ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:78:85:75:6a:99:ba:f6:fd:27:85:69:31:
84:1b:c3:64:b2:60:b2:67:a2:42:79:0b:13:c7:3e:
72:35:96:42:3e:61:33:d2:08:53:f5:50:03:be:4a:
a0:7a:33:eb:fe:49:ec:ff:73:11:f8:9a:43:0c:ea:
75:ac:0f:3a:de:cb:a4:c0:81:da:e6:4b:0b:c6:69:
0b:4f:88:59:a1:ed:f6:6d:f3:a6:06:69:0a:da:e0:
44:0d:34:01:82:9f:21:50:17:9c:59:a7:f3:95:c0:
14:cd:79:28:1e:64:60:3e:81:13:77:b3:b6:6f:d2:
9d:aa:75:98:5e:9b:c3:4c:42:3b:0c:ee:6e:82:a0:
ae:cc:bb:03:99:44:c7:8a:9a:e6:68:f2:c5:fe:53:
28:70:ec:cc:7c:81:20:d0:e9:2f:35:54:09:0b:95:
3a:46:e0:7e:a1:00:a1:80:25:a6:02:a7:2c:a0:92:
a2:36:6c:b7:d1:1f:ee:12:61:64:b9:80:66:3f:11:
a8:38:67:29:15:bb:ec:84:9e:2e:d6:dc:90:02:e7:
af:b6:53:a7:b9:4c:09:b1:23:37:36:08:07:87:b7:
2a:a5:3b:13:31:1e:54:2f:da:cb:cc:ea:be:1c:a6:
5b:11:81:89:5d:d0:a6:c9:07:c3:10:31:11:30:87:
c7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:42:DD:A1:02:B8:AA:78:21:7E:6B:F0:53:18:37:2B:E3:B8:8E:D5
X509v3 Authority Key Identifier:
keyid:6C:6D:DB:72:E7:26:82:98:C1:71:45:83:13:1B:BE:4A:E4:EF:09:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG3bcucmgpjBcUWDExu-SuTvCRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/JULdoQK4qnghfmvwUxg3K-O4jtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/dd7764-1a58-45e6-ad83-32a60912ef40/1/bG3bcucmgpjBcUWDExu-SuTvCRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.208.0/20
193.19.180.0/22
193.110.139.0/24
212.3.64.0/19
IPv6:
2a02:1798::/29
Signature Algorithm: sha256WithRSAEncryption
36:65:e3:60:2a:07:32:e9:bf:23:0c:20:5f:67:dc:45:67:b5:
76:fb:d2:2d:56:db:29:ec:ac:94:d2:8c:80:a9:ce:88:cb:97:
6c:e0:2c:4c:f1:27:75:93:90:f3:86:21:3e:75:e7:ab:6d:95:
18:47:5b:0b:dd:45:f1:53:43:fd:7e:6d:e6:90:90:b2:07:bc:
41:59:b3:43:04:c9:58:20:89:15:b2:6c:bf:f1:96:a5:1e:c0:
95:88:db:e8:8a:08:14:e7:36:03:d6:4b:a6:72:c8:3d:c3:88:
eb:17:a2:65:9a:4a:18:d8:b8:e0:cd:e2:1a:d0:08:ca:fc:22:
b6:b4:3b:eb:43:fb:5f:0a:b5:5d:fe:02:47:8d:54:97:c7:17:
ca:53:6c:95:c2:72:ed:a3:43:d7:9d:8a:0f:87:ed:e9:39:e1:
f0:5f:fc:c3:c2:a6:a5:45:6e:fb:21:64:6c:a5:8e:4d:e4:70:
77:d3:46:02:db:bb:be:4a:2d:d0:e5:cf:43:bc:cd:9b:c0:50:
ca:2d:cb:57:36:2c:1d:0f:b4:87:ce:d1:56:9d:07:93:76:1a:
b4:c6:e8:25:bc:cc:38:fd:14:e6:e0:e4:16:4a:cd:f6:75:7c:
f2:fe:cd:ef:de:26:f6:b4:df:a4:38:64:ef:be:38:b8:1f:e3:
40:ca:c9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:11 2024 by rpki-client on console-ams.rpki-client.org