Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/JMT0Ttoc_GRdZyTmtXsikR775Sk.roa
File: JMT0Ttoc_GRdZyTmtXsikR775Sk.roa (raw, json)
Hash identifier: QZ6QlgUSAyC3i3EeWjhVYeoiQGATGbndgs5SbsntDso=
Subject key identifier: 24:C4:F4:4E:DA:1C:FC:64:5D:67:24:E6:B5:7B:22:91:1E:FB:E5:29
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 0187DB807A8F07F413D32AB06BBC9BF7D0B0
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/JMT0Ttoc_GRdZyTmtXsikR775Sk.roa
Signing time: Tue 02 May 2023 08:07:22 +0000
ROA not before: Tue 02 May 2023 08:07:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51269
IP address blocks: 194.147.47.0/24 maxlen: 24
185.32.70.0/24 maxlen: 24
194.147.67.0/24 maxlen: 24
194.146.126.0/24 maxlen: 24
185.163.124.0/22 maxlen: 22
2a0b:b800::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:80:7a:8f:07:f4:13:d3:2a:b0:6b:bc:9b:f7:d0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: May 2 08:07:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24c4f44eda1cfc645d6724e6b57b22911efbe529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:de:01:47:e8:b6:d0:34:b6:06:44:e2:52:82:
a5:c1:f2:d4:f0:d6:d0:48:80:4e:80:22:b2:8c:03:
77:3e:08:be:64:df:50:30:26:11:53:49:25:88:b1:
21:3c:e8:f0:0a:d9:fe:3c:56:0d:fb:1f:50:a0:e1:
31:8e:e9:12:e7:75:14:ef:a3:2a:55:7c:ba:1d:36:
ad:a3:e8:8a:6e:86:28:bf:39:19:ff:89:b7:d7:54:
52:cb:1b:7a:40:9c:25:13:7a:2a:95:d2:67:6b:4a:
11:67:86:04:e8:cf:21:b8:9b:61:6c:64:01:e3:4a:
43:15:fd:4d:69:3b:0d:25:37:9f:3a:07:8c:3e:25:
54:7a:af:33:07:cd:67:f6:d0:0b:e7:52:87:ad:34:
e2:63:06:a4:75:f6:9a:3f:2e:8f:78:06:9b:a4:51:
f3:0e:f1:9f:27:ec:ab:37:02:65:a7:b2:b6:1d:24:
73:e5:ae:a6:fa:be:e3:4f:1d:42:19:38:88:71:f0:
92:21:62:87:8f:b1:a2:21:16:cd:3d:3d:c4:8c:d6:
b2:5c:fb:be:f8:dd:3c:f2:59:9b:4f:6a:2e:80:2b:
2e:b2:f7:45:9b:ce:e1:1b:d4:b1:67:ab:96:da:cc:
80:04:9d:7d:4d:ed:8e:8c:1b:e8:e8:e3:5f:5f:fa:
ea:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C4:F4:4E:DA:1C:FC:64:5D:67:24:E6:B5:7B:22:91:1E:FB:E5:29
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/JMT0Ttoc_GRdZyTmtXsikR775Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.70.0/24
185.163.124.0/22
194.146.126.0/24
194.147.47.0/24
194.147.67.0/24
IPv6:
2a0b:b800::/29
Signature Algorithm: sha256WithRSAEncryption
0f:64:42:91:1c:ba:27:de:82:3b:77:72:a4:21:c2:14:9e:61:
fc:ea:61:08:39:fa:2d:f8:87:6e:6e:06:09:f9:8e:44:10:01:
76:1a:15:b5:ec:bc:26:9f:ff:bf:b5:1f:f2:6f:9c:2a:65:76:
c1:12:07:24:3c:c6:77:2c:f6:59:b8:a5:f6:88:a1:e1:e7:71:
bd:b1:90:c0:06:54:ae:c0:cc:44:2d:10:de:84:86:d0:f9:56:
74:ce:98:52:67:a4:92:5e:b7:38:47:34:39:ff:75:46:82:2d:
98:02:03:d9:d7:d5:fe:a8:09:bb:ff:af:20:25:8b:9b:d4:90:
6e:7a:f9:3d:24:13:e3:35:95:44:e5:bf:4a:b4:89:00:06:13:
e9:77:5e:a3:43:36:3d:bb:ae:16:6c:55:de:0a:a2:df:fa:35:
5d:54:91:92:27:7d:cb:b5:fd:01:34:6e:d3:a1:76:08:6e:14:
10:ae:c2:a3:07:9e:5a:fc:b2:fc:41:07:0e:dd:1b:cb:53:ef:
d7:dc:23:60:0b:7a:19:41:c5:e0:26:e3:aa:58:8c:c4:d5:d8:
54:3f:96:3e:b6:76:f9:30:af:20:1d:b3:47:bb:11:a1:53:22:
fb:3f:00:b4:0a:ec:8b:ed:39:88:55:fa:3c:ba:bf:16:dc:58:
14:f9:7d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:14 2024 by rpki-client on console-ams.rpki-client.org