Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/JpAL83ZKCR-N52hW4qn4HYU44Sw.roa
File: JpAL83ZKCR-N52hW4qn4HYU44Sw.roa (raw, json)
Hash identifier: +gZ6i7gsmQLF4ZC6jXWItbdB7SJDPXsP5fJ6ZFw8Sc8=
Subject key identifier: 26:90:0B:F3:76:4A:09:1F:8D:E7:68:56:E2:A9:F8:1D:85:38:E1:2C
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 019129234C9B13670FD17E2A970B3474EC66
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/JpAL83ZKCR-N52hW4qn4HYU44Sw.roa
Signing time: Tue 06 Aug 2024 19:21:04 +0000
ROA not before: Tue 06 Aug 2024 19:21:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39130
IP address blocks: 195.5.124.0/24 maxlen: 24
2a10:d80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 14 Aug 2024 07:25:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:29:23:4c:9b:13:67:0f:d1:7e:2a:97:0b:34:74:ec:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Aug 6 19:21:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26900bf3764a091f8de76856e2a9f81d8538e12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:71:37:73:af:c9:c4:18:ce:85:78:f6:09:6e:
0a:52:16:17:c2:92:04:f3:3b:ac:f3:96:cc:66:93:
31:87:bf:8b:60:84:ab:50:52:71:5f:75:da:ff:45:
15:43:45:b2:15:e7:f3:f6:2f:31:f1:bf:77:80:cd:
bb:9b:ce:2d:c0:81:df:e1:c4:a4:95:65:f8:7b:f5:
ad:fb:88:d2:39:03:a2:e0:a0:25:4d:d7:40:86:e4:
b3:b6:40:3a:41:ef:c5:72:56:1b:98:a8:38:6f:db:
92:bc:d2:f3:4b:05:35:13:48:ad:73:61:ad:cd:e6:
b4:fb:94:06:86:81:1b:39:fa:1d:81:2c:22:89:a3:
f5:27:0d:6c:5b:98:dc:7c:21:4e:53:a9:83:d0:e0:
26:de:d2:94:8d:0d:9b:a7:73:e4:d7:9b:eb:45:02:
f5:6b:a7:99:0b:a3:91:15:2d:24:56:15:e3:cb:1b:
63:a0:5f:ee:af:51:54:a0:71:d9:0d:5c:8b:69:6b:
7b:e4:e7:aa:78:e8:19:80:3b:7b:e9:98:5c:f0:7b:
7a:99:43:fe:97:b0:94:c0:57:21:10:8e:b5:8b:30:
3d:dd:63:d7:95:d7:0a:9f:2f:f6:e2:fe:44:07:a9:
1f:6a:46:72:e0:c3:84:d9:fd:48:91:f6:18:21:05:
ec:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:90:0B:F3:76:4A:09:1F:8D:E7:68:56:E2:A9:F8:1D:85:38:E1:2C
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/JpAL83ZKCR-N52hW4qn4HYU44Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.124.0/24
IPv6:
2a10:d80::/29
Signature Algorithm: sha256WithRSAEncryption
37:57:93:c0:b8:e0:db:fe:7f:96:83:f2:24:71:cf:d8:b6:70:
39:01:e1:90:2f:a6:b3:a4:f9:91:fa:cf:11:c6:11:ab:f2:b8:
e6:f3:a9:d4:fc:0e:7a:b3:14:c8:47:b0:ae:66:16:9c:66:be:
f7:fd:9d:14:c7:ed:3b:8a:c9:6f:55:b0:16:ca:02:53:bc:c1:
74:56:ad:00:4e:b6:da:a7:64:1e:b4:2b:e4:42:f6:a9:59:95:
76:78:56:ca:c4:a4:b7:13:4a:8d:c9:80:ac:49:ae:fb:07:9c:
f9:76:68:a1:f1:c5:01:39:c7:45:e1:c5:58:71:ba:55:95:77:
91:33:d3:24:e2:a9:a1:9f:97:b8:4d:db:ad:f6:81:6e:81:44:
c1:7d:74:cf:fc:c1:62:4d:88:ca:23:ba:b1:34:c2:ca:1f:67:
e9:20:49:da:21:d9:3d:de:fd:62:4b:e7:c0:a4:2a:10:d7:21:
d3:66:69:35:7e:ee:e3:ea:16:51:7f:8d:b4:7c:f6:70:37:8f:
27:a9:43:7b:54:ac:94:7d:d9:0e:17:90:af:a6:e4:45:d9:a5:
30:5d:25:85:95:a5:53:50:f6:93:c2:17:af:35:33:28:64:33:
b3:0a:01:59:5e:e5:27:af:91:6a:7a:52:0f:e1:20:9f:55:7c:
0b:bc:fa:10
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZEpI0ybE2cP0X4qlws0dOxmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZGY3NmM1NGI5ZTY5MzVjMzBhOWI0YzliYTkzMDlhYzQ3
MGVjMDIwHhcNMjQwODA2MTkyMTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjkwMGJmMzc2NGEwOTFmOGRlNzY4NTZlMmE5ZjgxZDg1MzhlMTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinE3c6/JxBjOhXj2CW4KUhYXwpIE
8zus85bMZpMxh7+LYISrUFJxX3Xa/0UVQ0WyFefz9i8x8b93gM27m84twIHf4cSk
lWX4e/Wt+4jSOQOi4KAlTddAhuSztkA6Qe/FclYbmKg4b9uSvNLzSwU1E0itc2Gt
zea0+5QGhoEbOfodgSwiiaP1Jw1sW5jcfCFOU6mD0OAm3tKUjQ2bp3Pk15vrRQL1
a6eZC6ORFS0kVhXjyxtjoF/ur1FUoHHZDVyLaWt75OeqeOgZgDt76Zhc8Ht6mUP+
l7CUwFchEI61izA93WPXldcKny/24v5EB6kfakZy4MOE2f1IkfYYIQXsyQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFCaQC/N2SgkfjedoVuKp+B2FOOEsMB8GA1UdIwQY
MBaAFIvfdsVLnmk1wwqbTJupMJrEcOwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgt
OGQyMTg2NjUwMjdkLzEvSnBBTDgzWktDUi1ONTJoVzRxbjRIWVU0NFN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgtOGQyMTg2NjUwMjdk
LzEvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwwV8MA0E
AgACMAcDBQMqEA2AMA0GCSqGSIb3DQEBCwUAA4IBAQA3V5PAuODb/n+Wg/Ikcc/Y
tnA5AeGQL6azpPmR+s8RxhGr8rjm86nU/A56sxTIR7CuZhacZr73/Z0Ux+07islv
VbAWygJTvMF0Vq0ATrbap2QetCvkQvapWZV2eFbKxKS3E0qNyYCsSa77B5z5dmih
8cUBOcdF4cVYcbpVlXeRM9Mk4qmhn5e4Tdut9oFugUTBfXTP/MFiTYjKI7qxNMLK
H2fpIEnaIdk93v1iS+fApCoQ1yHTZmk1fu7j6hZRf420fPZwN48nqUN7VKyUfdkO
F5CvpuRF2aUwXSWFlaVTUPaTwhevNTMoZDOzCgFZXuUnr5FqelIP4SCfVXwLvPoQ
Generated at Wed Aug 14 09:28:03 2024 by rpki-client on console-ams.rpki-client.org