Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JWsDnZxmBF-yZT5og3yCJUYMYR0.roa
File: JWsDnZxmBF-yZT5og3yCJUYMYR0.roa (raw, json)
Hash identifier: Yk+d5gpNiLDzQFGjdYSfS37p6KO86jxwSHD8zEiktZQ=
Subject key identifier: 25:6B:03:9D:9C:66:04:5F:B2:65:3E:68:83:7C:82:25:46:0C:61:1D
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E8647EC056FC089AF45C82BE1A85C
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JWsDnZxmBF-yZT5og3yCJUYMYR0.roa
Signing time: Mon 02 Jan 2023 08:34:52 +0000
ROA not before: Mon 02 Jan 2023 08:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56994
IP address blocks: 195.208.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:86:47:ec:05:6f:c0:89:af:45:c8:2b:e1:a8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256b039d9c66045fb2653e68837c8225460c611d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:02:e1:9f:02:77:f2:4e:de:1c:87:a7:a6:
17:1e:1a:1f:17:67:6c:2e:fc:9e:1d:57:08:4d:21:
1c:64:b6:b1:fd:9a:ec:3c:e3:fa:21:0e:61:fc:f2:
12:c8:db:b4:95:e5:fc:3b:31:db:a1:02:f3:2e:49:
73:3e:25:96:0c:00:91:1a:e3:b1:a4:2d:ed:83:2a:
7e:5b:27:85:23:0e:9f:a3:40:86:b7:3d:c7:96:16:
17:72:d6:41:6e:95:9f:30:05:d8:8c:45:60:9a:8a:
5c:68:48:37:80:fd:0f:1d:3f:61:96:87:e3:79:7d:
59:aa:18:7e:dd:af:c8:db:85:f6:46:0c:80:f4:15:
26:31:76:51:e2:f6:f9:af:d8:05:3c:d8:14:a2:0c:
7a:6d:68:eb:b9:33:ba:42:8c:d7:a3:39:f9:de:f2:
ea:a6:b7:57:9e:2f:23:d4:54:33:b1:04:5d:52:69:
3a:4a:e4:6c:9b:eb:c8:0d:9f:d2:7d:90:58:f7:d2:
98:c3:79:d4:e3:28:55:d7:82:26:37:c8:b8:1b:77:
55:28:04:73:29:11:48:ef:de:8d:60:f5:58:23:f1:
c3:20:16:1b:ba:c4:c6:9c:a0:66:67:69:ff:51:9e:
02:bd:b4:e3:48:18:c5:9b:3c:0b:09:44:6f:60:a8:
19:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6B:03:9D:9C:66:04:5F:B2:65:3E:68:83:7C:82:25:46:0C:61:1D
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JWsDnZxmBF-yZT5og3yCJUYMYR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.184.0/22
Signature Algorithm: sha256WithRSAEncryption
49:42:6e:ac:79:dc:c4:60:eb:9f:d2:45:0b:4b:1c:f3:4b:ab:
88:88:ee:7a:86:c7:b0:37:20:a9:5b:6e:4d:60:4a:38:cd:15:
7d:71:e7:b8:b9:d4:78:81:40:8f:f7:bd:e6:f6:9d:9b:1f:17:
66:02:c1:39:b8:32:c1:39:7b:05:db:96:21:59:c2:74:8d:f2:
62:32:49:83:8f:33:13:fd:c2:49:ee:4c:13:7a:3e:35:57:80:
00:28:1d:8d:44:39:e2:62:7e:cd:d1:cb:c6:4f:65:da:71:51:
ae:78:b7:eb:61:df:44:ba:ab:b6:d4:1f:67:2f:53:43:51:75:
78:b3:8d:ce:0a:cf:cb:8f:f2:e3:58:2b:1e:cb:91:91:7c:d3:
2e:ea:e4:14:02:33:1b:1c:b3:10:c4:60:f6:8d:d1:3b:4b:ca:
f1:c6:37:00:05:ce:42:51:08:6b:25:bf:80:97:22:a3:f8:e8:
6e:87:3c:82:b1:f8:ab:15:1f:4f:34:a9:14:3e:fb:f6:f7:1c:
33:ab:6a:fc:92:8a:eb:a3:ae:ed:3c:60:b7:37:de:44:25:aa:
12:d2:cd:12:a8:a8:74:5a:f8:cf:40:5d:73:0e:e1:d1:fc:50:
e8:20:45:7c:ae:77:f0:30:a9:b5:4e:d2:53:2a:c6:46:93:c4:
d7:89:7e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org