Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/JgJeruIVl0x1NUGUv4nV_SqjTHw.roa
File: JgJeruIVl0x1NUGUv4nV_SqjTHw.roa (raw, json)
Hash identifier: FRVfKawS1/zciRjLEstPGumuRVJaQaicxhM7zvgQ92k=
Subject key identifier: 26:02:5E:AE:E2:15:97:4C:75:35:41:94:BF:89:D5:FD:2A:A3:4C:7C
Certificate issuer: /CN=19f1a9dd126f37237ce200fb8616ff937bca966c
Certificate serial: 01856F14D8B6CEB26A5B27C3F0B11B503E0E
Authority key identifier: 19:F1:A9:DD:12:6F:37:23:7C:E2:00:FB:86:16:FF:93:7B:CA:96:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GfGp3RJvNyN84gD7hhb_k3vKlmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/JgJeruIVl0x1NUGUv4nV_SqjTHw.roa
Signing time: Sun 01 Jan 2023 20:45:15 +0000
ROA not before: Sun 01 Jan 2023 20:45:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49467
IP address blocks: 85.95.224.0/24 maxlen: 24
85.95.225.0/24 maxlen: 24
85.95.226.0/24 maxlen: 24
85.95.227.0/24 maxlen: 24
85.95.230.0/24 maxlen: 24
85.95.231.0/24 maxlen: 24
85.95.228.0/24 maxlen: 24
85.95.229.0/24 maxlen: 24
85.95.232.0/24 maxlen: 24
85.95.233.0/24 maxlen: 24
85.95.234.0/24 maxlen: 24
85.95.235.0/24 maxlen: 24
85.95.236.0/24 maxlen: 24
85.95.245.0/24 maxlen: 24
85.95.246.0/24 maxlen: 24
85.95.251.0/24 maxlen: 24
85.95.252.0/24 maxlen: 24
85.95.249.0/24 maxlen: 24
85.95.250.0/24 maxlen: 24
85.95.253.0/24 maxlen: 24
85.95.248.0/24 maxlen: 24
85.95.247.0/24 maxlen: 24
85.95.254.0/24 maxlen: 24
92.42.32.0/24 maxlen: 24
92.42.33.0/24 maxlen: 24
92.42.36.0/24 maxlen: 24
92.42.37.0/24 maxlen: 24
92.42.34.0/24 maxlen: 24
92.42.35.0/24 maxlen: 24
92.42.38.0/24 maxlen: 24
92.42.39.0/24 maxlen: 24
37.152.72.0/24 maxlen: 24
37.152.75.0/24 maxlen: 24
37.152.76.0/24 maxlen: 24
37.152.73.0/24 maxlen: 24
37.152.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d8:b6:ce:b2:6a:5b:27:c3:f0:b1:1b:50:3e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19f1a9dd126f37237ce200fb8616ff937bca966c
Validity
Not Before: Jan 1 20:45:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26025eaee215974c75354194bf89d5fd2aa34c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5c:38:71:07:ca:b5:df:4e:64:0c:37:7b:70:
f7:68:bd:63:4e:a3:6c:73:ec:9b:13:b2:b6:43:1b:
a3:75:96:e3:d5:0d:0b:42:c1:d7:57:01:e4:71:93:
14:70:f5:89:23:f5:b6:07:32:1f:13:1b:10:d4:70:
d8:f9:8b:a7:2f:b4:fc:f1:a8:4c:9a:60:82:1f:8f:
b1:f6:85:d3:7d:25:1d:7a:f0:c8:f0:fa:1d:f4:77:
bf:8c:29:9a:db:b6:a7:99:de:65:12:35:37:ae:c0:
cc:d6:e3:e3:79:a6:2d:72:6a:9f:1e:f3:a1:16:d2:
b5:74:c4:d7:64:53:60:5c:43:ef:ed:fd:9c:66:9b:
68:33:f5:94:cc:74:7e:e3:72:5c:03:d1:1f:a1:2a:
af:83:19:c3:8f:f6:b3:87:f4:14:7f:1e:f4:c3:c1:
d4:a5:38:5f:a4:ab:1e:50:06:fb:eb:cb:b1:c8:95:
17:07:f1:31:b1:10:1e:65:dd:e7:72:f9:cc:da:bb:
7c:77:49:73:be:06:f5:57:54:38:1c:95:f1:29:9e:
fc:13:9d:82:7a:c6:c8:ed:ea:ca:76:1f:ff:77:80:
cf:9c:bc:b3:48:53:82:cf:91:93:f7:92:06:c4:16:
73:da:ed:a5:13:51:cc:73:6c:c9:cb:8c:c4:23:43:
73:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:02:5E:AE:E2:15:97:4C:75:35:41:94:BF:89:D5:FD:2A:A3:4C:7C
X509v3 Authority Key Identifier:
keyid:19:F1:A9:DD:12:6F:37:23:7C:E2:00:FB:86:16:FF:93:7B:CA:96:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GfGp3RJvNyN84gD7hhb_k3vKlmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/JgJeruIVl0x1NUGUv4nV_SqjTHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/GfGp3RJvNyN84gD7hhb_k3vKlmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.72.0-37.152.76.255
85.95.224.0-85.95.236.255
85.95.245.0-85.95.254.255
92.42.32.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:a8:67:6b:b7:19:ac:a5:56:3f:fa:78:92:86:94:43:40:90:
70:b8:89:cd:f8:87:0e:97:89:b0:ec:3a:00:4d:8b:6b:44:a2:
da:62:da:13:d6:13:8c:42:92:b0:b8:25:38:c0:59:10:3c:01:
c7:8b:11:16:3b:4d:e7:3e:e0:c1:ba:8a:0c:82:0f:39:53:1d:
2e:c4:56:03:3b:cb:5b:ae:5a:df:63:d1:87:c8:32:6d:ba:02:
61:99:15:14:23:ec:6c:2f:86:a8:88:31:35:06:3c:d3:9d:70:
7c:c0:eb:9c:38:95:44:2a:f0:cd:a3:72:0f:3b:a7:c8:e5:1c:
d4:1f:6c:2a:9b:e8:6b:69:80:cc:7d:64:61:d8:03:6d:bc:1c:
86:4e:b1:d6:3b:ce:e9:23:ca:42:7d:ea:47:fb:52:68:6c:79:
c5:d8:00:c9:6b:83:61:a1:23:63:82:dd:2f:75:61:c3:5e:a0:
0c:7a:4f:ef:bc:09:ab:52:7c:64:e4:fd:10:b9:92:cf:7c:a6:
75:85:5e:72:69:7a:d4:9a:53:e4:6c:01:67:96:f1:99:16:76:
17:ff:96:0b:c7:7a:e1:b0:bc:42:83:09:24:56:53:9f:ea:33:
e4:5f:23:38:92:f5:86:4a:ab:ef:9c:0d:16:87:33:66:cb:36:
b6:9b:58:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:14 2024 by rpki-client on console-ams.rpki-client.org