Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/32b61c-ce82-463c-8f64-2775de5202fb/1/JwmdmAz2fJEvE-SdFiN83Oz7M5g.roa
File: JwmdmAz2fJEvE-SdFiN83Oz7M5g.roa (raw, json)
Hash identifier: FPcfyi1NdktB/YRHQroA4F7e1JtpvwgvdRC3Wo6IBCE=
Subject key identifier: 27:09:9D:98:0C:F6:7C:91:2F:13:E4:9D:16:23:7C:DC:EC:FB:33:98
Certificate issuer: /CN=9e4274f139bd669aaef774d6503b28d996637bbd
Certificate serial: 0185707043DB5BF88C4AA93225E9C0F2B7BC
Authority key identifier: 9E:42:74:F1:39:BD:66:9A:AE:F7:74:D6:50:3B:28:D9:96:63:7B:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkJ08Tm9Zpqu93TWUDso2ZZje70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/32b61c-ce82-463c-8f64-2775de5202fb/1/JwmdmAz2fJEvE-SdFiN83Oz7M5g.roa
Signing time: Mon 02 Jan 2023 03:04:43 +0000
ROA not before: Mon 02 Jan 2023 03:04:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9136
IP address blocks: 46.17.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:43:db:5b:f8:8c:4a:a9:32:25:e9:c0:f2:b7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e4274f139bd669aaef774d6503b28d996637bbd
Validity
Not Before: Jan 2 03:04:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27099d980cf67c912f13e49d16237cdcecfb3398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:52:09:8c:6c:90:d6:05:f0:db:a7:16:bb:bf:
d4:bf:eb:25:22:dc:70:ee:f1:ea:ec:08:65:eb:36:
b6:2a:27:e7:27:34:fd:89:23:79:6c:43:b2:18:51:
f7:e9:86:86:03:b0:a9:74:54:d1:8f:17:65:9f:00:
e2:1d:c4:a1:e5:a1:2e:8e:6c:6c:2d:aa:c4:87:b9:
10:10:41:df:1e:2c:a1:9b:76:29:5d:77:32:f2:6c:
fc:0e:04:1d:9e:e2:b1:8d:1b:56:53:3a:fd:89:4e:
01:5e:1e:b5:da:19:91:13:bb:89:9f:43:c5:51:d9:
02:d9:0b:14:96:cc:1b:69:00:1a:54:16:ae:89:ce:
ab:30:a0:db:0c:44:ed:6f:a5:d9:8d:69:c4:e1:fc:
af:de:23:9e:66:aa:47:6d:b2:4d:b8:dd:f6:12:ce:
49:7c:db:68:9e:ee:5f:aa:8f:5d:41:2d:3f:20:1c:
db:9c:bc:72:9a:f7:2e:dd:a5:c2:a3:b8:84:6a:05:
1e:57:88:6e:f3:3d:9f:52:0e:b1:ab:c0:7b:ec:fe:
36:70:69:60:6e:d5:c2:e7:e1:fd:a6:5a:54:77:4f:
0b:6f:b4:43:e1:c9:cf:93:e6:2c:25:47:0f:62:9f:
0f:36:c7:60:79:20:19:3e:43:90:bc:cd:85:3e:40:
f9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:09:9D:98:0C:F6:7C:91:2F:13:E4:9D:16:23:7C:DC:EC:FB:33:98
X509v3 Authority Key Identifier:
keyid:9E:42:74:F1:39:BD:66:9A:AE:F7:74:D6:50:3B:28:D9:96:63:7B:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkJ08Tm9Zpqu93TWUDso2ZZje70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/32b61c-ce82-463c-8f64-2775de5202fb/1/JwmdmAz2fJEvE-SdFiN83Oz7M5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/32b61c-ce82-463c-8f64-2775de5202fb/1/nkJ08Tm9Zpqu93TWUDso2ZZje70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:f8:94:6d:25:8d:85:66:a1:2d:ac:71:58:71:dd:73:c8:59:
72:8a:5a:49:92:b8:0c:b7:4b:10:da:08:8b:9f:10:7b:1c:a9:
b9:8f:0c:5e:5f:fa:a6:29:8f:5e:e1:dd:85:6c:4f:8a:bc:13:
b7:f7:8d:4a:2e:0d:f1:fa:3e:d1:b8:a8:9e:cb:6e:ee:9d:da:
5e:ac:7b:46:61:cb:a7:ca:d5:03:c6:15:a1:e6:fb:0b:5a:9e:
92:b1:0b:1f:f8:35:2d:08:96:2a:03:60:3a:76:13:13:ab:45:
7a:87:4e:83:db:c7:b1:2b:71:6a:e5:a4:dc:fd:0b:c8:f5:69:
34:cb:4c:0c:b7:bf:74:93:04:bd:81:b7:57:54:3f:15:5a:84:
f4:e8:e4:ef:74:48:42:c3:87:d7:58:7d:ab:d7:44:1c:a6:4e:
a1:1d:09:81:31:e2:56:ae:4c:33:fc:f4:dc:9f:9b:25:a3:96:
7b:4a:31:5d:71:78:31:32:9f:a8:34:95:19:88:6b:1d:52:f9:
30:27:ee:89:c4:c9:a1:5e:8e:9a:3c:92:e1:28:f0:55:32:68:
9c:f6:41:23:7e:02:5f:79:e5:d0:45:7b:fe:24:8c:93:3c:58:
7d:dc:09:b8:2e:ef:66:ab:f3:1f:9f:aa:df:73:78:c8:1f:d6:
c1:2a:a9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:19 2024 by rpki-client on console-ams.rpki-client.org