Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JHUYS9EB8e-OshcBCueZF5ZEpaY.roa
File: JHUYS9EB8e-OshcBCueZF5ZEpaY.roa (raw, json)
Hash identifier: fKjD2RWjvwlD0oMaAh4FVMmuGQ8QcjTHD2EPRWWzhBE=
Subject key identifier: 24:75:18:4B:D1:01:F1:EF:8E:B2:17:01:0A:E7:99:17:96:44:A5:A6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B4C28FB32F8978C99AA989F6E1497E950
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JHUYS9EB8e-OshcBCueZF5ZEpaY.roa
Signing time: Fri 20 Oct 2023 08:17:15 +0000
ROA not before: Fri 20 Oct 2023 08:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197715
IP address blocks: 194.87.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:28:fb:32:f8:97:8c:99:aa:98:9f:6e:14:97:e9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 20 08:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2475184bd101f1ef8eb217010ae799179644a5a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:7a:bc:aa:24:cc:f2:54:3a:fc:62:03:55:
03:c3:4e:37:17:02:8e:5c:90:f9:44:c0:01:57:0b:
e0:a1:d2:ff:d8:47:8d:4f:2c:25:9c:e4:e6:60:96:
88:48:dd:e6:bd:ff:35:f7:56:e5:19:86:d4:dc:2f:
ba:3c:af:96:82:0e:01:14:08:93:bc:33:7e:34:cd:
0a:ec:f1:b2:ec:41:50:eb:df:b2:d3:ff:1d:55:c2:
44:c7:c3:65:39:60:73:2f:3f:ea:89:0b:68:c1:cb:
02:7a:82:43:e6:29:c8:ad:d5:37:91:6e:de:cb:85:
fc:70:1b:d2:82:a6:e0:29:92:57:6d:df:6b:01:c3:
5b:76:32:0c:88:36:d4:d4:77:3d:8c:d0:79:1d:eb:
20:5f:ec:f4:08:4a:73:df:b3:e3:b0:8b:34:e1:85:
48:24:d8:52:2b:56:fe:ff:a2:f9:6a:24:a5:ee:db:
1b:cd:fa:c5:a8:3a:77:ac:e9:2b:93:7c:a9:00:43:
f8:6b:2d:f7:f4:9b:83:36:8c:72:59:79:0f:a8:f3:
99:5b:e4:34:30:bb:d4:83:a2:b5:6b:f4:2e:e9:d3:
96:6c:ee:df:3e:c0:38:6f:ed:0a:13:fe:30:6a:45:
96:54:ae:43:d4:dd:90:22:52:3f:1f:65:cb:1f:ab:
53:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:75:18:4B:D1:01:F1:EF:8E:B2:17:01:0A:E7:99:17:96:44:A5:A6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/JHUYS9EB8e-OshcBCueZF5ZEpaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.129.0/24
Signature Algorithm: sha256WithRSAEncryption
38:41:8f:cf:ea:61:20:16:8a:40:2d:f7:1b:ec:9a:b8:d3:1d:
4f:d4:d2:e5:30:6a:f4:a5:71:eb:c0:36:c9:5a:a5:a6:bf:e4:
10:01:4d:c2:48:bf:4b:b5:73:66:38:39:67:ed:32:54:6c:d1:
65:7e:80:47:f3:41:30:05:cb:42:b4:20:9b:29:a3:b2:4b:be:
fb:6a:c3:75:53:23:6f:2f:9e:b7:cd:ff:85:9c:4b:32:72:dc:
ce:df:41:e5:ff:e5:bb:e5:ad:8d:e4:11:31:60:16:d2:72:f5:
ae:a6:99:f3:88:91:d0:b5:43:d9:d1:05:7b:c0:d1:c6:9e:cb:
f7:09:9d:cc:b4:d2:7d:a7:39:a7:6a:1c:5c:7c:12:81:d9:13:
99:25:ee:a5:a9:f3:c0:68:3b:e9:a0:67:89:96:96:46:fd:36:
fa:6a:91:24:8b:27:fc:40:e8:d6:e3:69:fe:c0:77:12:9f:a5:
1d:bb:c9:98:05:1f:f1:b0:d9:29:24:c0:54:48:10:4a:62:c1:
de:46:2e:8e:fe:5d:48:56:9d:1f:20:56:1d:ee:54:bd:c6:b6:
cb:f5:56:a4:c6:05:b9:69:1c:66:22:dd:d6:fd:51:d5:08:50:
ea:2e:f3:32:49:a4:56:d5:99:64:98:e5:af:fc:08:71:19:60:
95:7d:47:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:18 2024 by rpki-client on console-ams.rpki-client.org