Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/jw_QIwRO2sBx8zEGucr55iIhpyw.roa
File: jw_QIwRO2sBx8zEGucr55iIhpyw.roa (raw, json)
Hash identifier: kMzqFDmwxS2OJJCZ/Kln9d+tTEEGl8fYzybiIwljhOU=
Subject key identifier: 8F:0F:D0:23:04:4E:DA:C0:71:F3:31:06:B9:CA:F9:E6:22:21:A7:2C
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01884CCB7ED6774F716C23F58508EF0AD656
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/jw_QIwRO2sBx8zEGucr55iIhpyw.roa
Signing time: Wed 24 May 2023 08:06:24 +0000
ROA not before: Wed 24 May 2023 08:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202468
IP address blocks: 193.109.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 10:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:cb:7e:d6:77:4f:71:6c:23:f5:85:08:ef:0a:d6:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 24 08:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f0fd023044edac071f33106b9caf9e62221a72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:71:55:8c:fa:e9:d9:82:04:51:8d:4a:de:9e:
db:0e:1e:0b:2d:47:8d:c5:15:3f:43:8a:80:6e:48:
3f:b4:46:96:5a:0f:bd:6c:8e:71:0e:69:62:b9:85:
f8:b7:88:21:fb:22:f5:52:07:4c:b4:97:e8:75:79:
01:0a:31:1c:3b:d0:fe:84:df:89:61:c3:9d:20:49:
69:78:57:39:fb:85:23:74:96:84:5a:37:d0:5e:1e:
6c:10:47:32:e4:e5:73:91:3c:b0:08:ed:1e:5a:e6:
13:d1:22:1e:5a:0b:d9:f6:20:0f:68:5c:da:e9:18:
c2:3f:5d:5c:7c:3d:0f:8e:64:24:08:0a:f6:05:b9:
ae:11:71:2d:1f:e6:96:ee:49:35:c0:de:c4:b1:16:
33:06:d6:56:8a:d7:97:c8:b8:ad:09:b1:66:82:67:
53:ed:15:28:19:e7:47:b4:88:68:0a:d3:f7:28:c8:
40:96:ea:29:1a:de:b5:57:ec:f0:76:d9:5e:e1:dd:
b0:c5:bf:40:70:f8:00:49:45:d6:f4:b1:81:0c:63:
a7:37:d6:6d:4c:9c:e3:e0:1b:7e:57:22:76:f9:ed:
98:32:79:6e:ba:6d:8e:c8:e8:1a:80:f2:32:88:25:
d2:00:96:99:80:f4:f0:04:b3:fb:b0:24:2e:6b:f5:
4a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0F:D0:23:04:4E:DA:C0:71:F3:31:06:B9:CA:F9:E6:22:21:A7:2C
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/jw_QIwRO2sBx8zEGucr55iIhpyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.137.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:10:60:af:34:92:39:a9:ac:88:9e:0f:3e:c5:df:e9:8f:dc:
b2:e3:11:34:0d:e0:78:a1:4e:6f:35:36:99:ae:6c:f5:3e:43:
83:f2:1c:b1:d9:c7:26:c0:3c:bb:c1:ad:f2:b8:f7:b2:32:35:
9f:7c:65:d4:dc:f3:03:f9:c5:52:e0:c4:ca:ed:fe:f2:df:be:
62:cf:cb:03:9f:4c:3b:1b:2c:f5:30:d0:6d:d1:84:8c:40:78:
8b:32:6f:6f:5c:e2:9c:df:ee:10:cb:b5:51:df:2a:fd:80:a8:
11:78:c2:1c:a0:dd:61:85:16:99:12:b9:57:9a:72:d5:a7:d7:
fa:ae:e6:ee:1d:aa:fb:48:44:20:05:e2:a1:ef:51:4f:a0:1c:
75:a3:96:74:6e:42:90:3f:1e:4f:0d:2c:54:16:47:2c:cf:8d:
32:c7:69:c6:6c:65:9d:3c:9f:9e:e2:7c:20:1d:fa:3b:51:be:
cd:b2:51:e9:8a:00:bc:06:f5:45:f0:bc:af:67:d6:7a:16:28:
a2:4f:d9:19:61:7e:91:8a:18:5c:de:4d:88:68:0b:a8:c3:af:
3a:97:58:fb:01:78:cc:93:fc:10:89:0a:c2:6d:e7:6f:a1:d3:
de:b9:ef:9c:18:8d:b9:85:50:44:9c:20:25:c1:18:32:61:6d:
fa:10:a5:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org