Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/JZ-p4Vfz8A3HdXEM1x6St1DP4Cs.roa
File: JZ-p4Vfz8A3HdXEM1x6St1DP4Cs.roa (raw, json)
Hash identifier: Ju6gIsktfU9kJt273Gtl75Np0VI7BiDYc1Nu2jj/q7U=
Subject key identifier: 25:9F:A9:E1:57:F3:F0:0D:C7:75:71:0C:D7:1E:92:B7:50:CF:E0:2B
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018CC5003F08079B7638A64A940D70EFE894
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/JZ-p4Vfz8A3HdXEM1x6St1DP4Cs.roa
Signing time: Mon 01 Jan 2024 12:29:36 +0000
ROA not before: Mon 01 Jan 2024 12:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61102
IP address blocks: 45.150.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 07:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:3f:08:07:9b:76:38:a6:4a:94:0d:70:ef:e8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 1 12:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=259fa9e157f3f00dc775710cd71e92b750cfe02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f6:15:71:52:61:fc:b0:d9:11:00:27:79:1a:
0d:d5:33:c5:5b:8d:fe:89:35:b4:e7:6e:53:e3:95:
e7:1f:2b:ba:05:ac:8b:57:49:6c:90:60:2f:53:8e:
2a:c4:6e:d3:e0:81:cc:75:20:33:26:5e:91:1d:c6:
53:9b:d4:27:31:3c:e0:d5:91:06:ee:27:c6:14:51:
c7:b1:d3:09:99:04:40:84:18:f8:3d:75:91:e7:0f:
a1:d0:a7:29:30:8d:72:b2:d6:e8:dc:aa:5e:99:7e:
86:9e:63:36:5a:34:cd:a7:8e:3d:e5:91:fe:c9:1d:
65:45:10:b5:70:82:38:07:0b:dc:fe:e4:ea:1e:98:
db:68:76:84:f3:8e:74:3c:48:2e:a2:4d:22:b1:3d:
9b:de:ac:99:94:56:f0:c0:69:e7:e0:a0:90:2a:7d:
0f:cf:a8:87:4d:e6:80:d3:d4:84:13:04:25:6e:0f:
15:3d:56:01:2f:d9:30:dc:47:3a:f5:bd:a6:68:a1:
d5:16:37:06:85:b2:69:95:dd:5a:9b:2a:d2:57:0e:
47:5b:94:30:b0:4f:59:fd:87:4d:70:d8:03:8c:e2:
c7:87:ef:52:18:8e:2b:aa:d5:ff:b9:5f:72:db:4b:
40:33:d2:f1:2a:1a:58:93:1e:df:e0:33:92:c0:83:
f9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:9F:A9:E1:57:F3:F0:0D:C7:75:71:0C:D7:1E:92:B7:50:CF:E0:2B
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/JZ-p4Vfz8A3HdXEM1x6St1DP4Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.108.0/24
Signature Algorithm: sha256WithRSAEncryption
43:89:0c:e7:8e:37:97:e0:6c:2c:ee:88:c8:bd:f7:db:c6:8c:
41:3b:a9:1d:c5:92:d1:5f:1b:5f:bb:1c:4f:a7:fe:b8:f2:c0:
df:64:13:d0:28:57:ab:59:74:fe:5f:40:3f:a9:56:0a:b8:56:
43:f3:5d:3c:ba:6c:d4:ad:a8:29:39:4d:f2:ce:0f:8c:79:7c:
0f:3c:29:b4:c1:23:a0:5c:82:da:ad:9a:d3:8e:b0:3d:54:b4:
af:47:27:e5:44:a9:5a:e9:db:fd:f1:a1:d3:69:9a:eb:7b:68:
00:f4:2a:78:c9:b6:4e:a0:d1:a7:94:0c:a6:00:71:1b:05:f1:
3a:44:08:83:36:64:4c:29:67:43:8c:4b:78:c8:1f:fa:fb:b3:
33:df:26:b8:12:3d:25:80:de:75:ad:6b:d7:37:d2:a4:e9:69:
a9:ad:09:b8:10:c2:2b:fc:2f:27:99:69:31:a2:8e:b3:e9:1c:
ef:15:16:95:85:70:fb:53:21:18:51:2b:1b:91:04:bc:3e:05:
3e:5d:02:db:64:5d:4b:31:78:c3:1c:bb:0d:b0:07:da:0d:e7:
30:da:b2:c5:61:ee:1d:9a:03:12:d9:4b:22:18:99:af:32:df:
9d:c9:e9:89:ac:e0:fa:e6:45:44:68:05:6c:93:58:0e:fd:63:
de:b7:56:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org