Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/J7jW7dzft29jF_1RRbLoDTWN1cE.roa
File: J7jW7dzft29jF_1RRbLoDTWN1cE.roa (raw, json)
Hash identifier: JOyPNuudEv8M3lYXQe65H1GJgPz7+EAd9aA/jrKjTII=
Subject key identifier: 27:B8:D6:ED:DC:DF:B7:6F:63:17:FD:51:45:B2:E8:0D:35:8D:D5:C1
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 01857102BBF5CE13F6EE5F46856420B82EFD
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/J7jW7dzft29jF_1RRbLoDTWN1cE.roa
Signing time: Mon 02 Jan 2023 05:44:42 +0000
ROA not before: Mon 02 Jan 2023 05:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 194.59.139.0/24 maxlen: 24
2a07:cb81::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 11 Jan 2023 12:47:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:bb:f5:ce:13:f6:ee:5f:46:85:64:20:b8:2e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Jan 2 05:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27b8d6eddcdfb76f6317fd5145b2e80d358dd5c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:48:52:91:83:61:89:49:fa:c4:40:03:a7:0f:
c6:0d:19:8a:a0:d7:d7:dd:aa:e5:85:bf:27:e6:51:
4d:95:5a:7a:29:09:31:ed:6d:aa:e2:11:5b:1b:00:
64:6d:29:78:a5:71:d0:7b:53:91:73:31:73:7c:9f:
41:2d:07:01:f1:5a:ea:32:f4:ca:7b:0c:de:99:7e:
98:32:ee:f4:5a:3d:70:2d:34:83:de:08:5f:51:0a:
c0:67:b7:51:83:73:81:48:eb:3a:fb:95:f1:fd:71:
b2:ba:86:71:3a:f2:26:6e:3d:cb:64:a5:96:0a:39:
e8:30:59:2f:77:18:6c:5e:c1:88:f8:88:a2:3e:4c:
19:13:a3:58:de:67:c4:89:ec:5e:f4:a0:8a:e2:d0:
70:5d:ef:3c:b8:20:89:10:3b:69:15:58:12:12:61:
3a:30:5c:9e:02:d4:96:21:89:d6:71:e8:e7:90:95:
d4:35:b3:99:5e:61:79:46:55:81:6d:c5:91:53:eb:
9d:23:74:fc:bd:79:65:d6:69:ef:4d:78:8d:01:12:
8a:b8:20:54:c0:99:6d:e8:ec:0e:2e:cb:03:48:e5:
e7:e1:6f:d2:ca:fe:7f:bd:5e:1b:7e:37:10:8f:05:
51:ea:46:f6:7d:dc:3a:1f:31:22:ad:7c:b8:a2:e8:
21:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B8:D6:ED:DC:DF:B7:6F:63:17:FD:51:45:B2:E8:0D:35:8D:D5:C1
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/J7jW7dzft29jF_1RRbLoDTWN1cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.139.0/24
IPv6:
2a07:cb81::/32
Signature Algorithm: sha256WithRSAEncryption
87:d1:d0:28:b2:a1:f8:25:32:a7:ac:a1:74:ae:7a:66:83:35:
2f:4b:74:21:06:3e:38:2d:45:50:08:10:6f:9f:54:1b:39:d2:
f2:df:b6:41:6a:e4:0c:d4:8f:43:c8:c9:65:2d:69:5b:2d:ae:
2e:9c:12:ca:a2:3a:15:13:c8:c8:3f:da:ad:0f:b9:f1:00:c6:
e3:d7:5c:15:c7:89:5f:5e:93:94:f1:9e:0b:cc:c0:c2:0d:81:
8e:54:fa:ff:ae:09:76:a0:35:8a:ec:0b:38:ce:ea:2e:d4:a3:
21:34:25:7b:48:3a:f0:10:96:e9:7d:fb:15:d3:34:48:7f:f2:
db:d1:0e:22:21:32:32:5b:87:6a:ab:2c:35:a7:52:71:7d:6e:
7e:b5:88:2b:5f:a4:69:b6:2b:d4:7f:87:48:bb:02:26:26:7f:
ea:0e:f5:44:9f:81:af:cb:72:89:1b:73:2c:43:6b:d3:23:35:
87:93:8b:d6:59:03:64:f1:0d:4f:44:d8:05:76:7f:c4:1c:dc:
55:2e:76:7f:0a:57:7f:02:de:d5:f8:67:ec:10:2d:2b:ba:b8:
8d:7f:52:02:99:03:89:d7:02:af:7c:65:bc:7d:8b:9f:00:ec:
a1:01:3d:0c:45:23:11:69:09:5e:e5:c0:89:4e:74:e7:64:06:
b5:44:9a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:23 2024 by rpki-client on console-ams.rpki-client.org