Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/JO_ACeWx95Sinr8CFXs1Oq2tdm8.roa
File: JO_ACeWx95Sinr8CFXs1Oq2tdm8.roa (raw, json)
Hash identifier: BohtQHYQyhn/2Bq1dditzDmAM1ncxhBsoPxtPZlyhfs=
Subject key identifier: 24:EF:C0:09:E5:B1:F7:94:A2:9E:BF:02:15:7B:35:3A:AD:AD:76:6F
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018E55CF41744A0BFDB6805DEABD196D6205
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/JO_ACeWx95Sinr8CFXs1Oq2tdm8.roa
Signing time: Tue 19 Mar 2024 08:23:49 +0000
ROA not before: Tue 19 Mar 2024 08:23:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 159.148.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 19:14:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:cf:41:74:4a:0b:fd:b6:80:5d:ea:bd:19:6d:62:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 19 08:23:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24efc009e5b1f794a29ebf02157b353aadad766f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b2:73:5b:e8:d1:45:65:97:3f:e8:5a:fa:96:
0e:01:f3:ae:8c:d7:13:e7:b9:26:3f:53:02:b1:1c:
32:2f:fd:ff:bb:32:49:3d:47:ee:4f:f5:bf:8d:53:
37:9a:2a:5c:4f:9e:1b:bd:28:84:ff:8c:9a:7f:06:
5c:f4:d8:4c:9d:cc:d9:fa:7f:40:e6:f3:f1:b8:ba:
b4:02:2c:62:29:52:ba:89:56:ff:c9:23:02:2b:c2:
d9:6d:4e:d1:46:dd:78:cb:30:a6:24:e5:d8:fa:9b:
99:62:fe:27:f4:b4:0f:b3:aa:10:6f:ba:41:74:b9:
37:35:03:ac:32:8b:37:33:fe:67:14:05:bf:32:6d:
c9:1f:53:b9:22:95:72:bd:cd:cb:ad:9d:3a:bc:b2:
f1:97:50:52:ac:40:bd:a0:18:18:f7:2a:12:c6:0a:
e1:87:3e:20:e0:54:6e:e4:db:68:ef:d5:57:70:ba:
d7:48:12:cc:c3:e4:35:db:20:da:8b:1d:08:fd:38:
11:1c:e8:88:33:02:a6:09:9e:74:c2:1a:27:fd:c2:
2c:cb:1c:a8:b5:60:53:12:4c:30:f8:6f:f9:fb:08:
6d:2b:54:36:95:e3:b8:2c:79:8a:1c:b0:a7:19:c7:
65:52:4f:0f:af:29:21:6a:80:af:c6:12:e5:2f:0a:
5c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EF:C0:09:E5:B1:F7:94:A2:9E:BF:02:15:7B:35:3A:AD:AD:76:6F
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/JO_ACeWx95Sinr8CFXs1Oq2tdm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.148.0/24
Signature Algorithm: sha256WithRSAEncryption
64:20:47:03:db:31:e9:60:b5:b6:cb:a7:99:ba:77:db:ce:18:
6b:db:a1:63:81:bf:e5:42:a3:83:d0:88:78:05:e9:86:9b:e4:
21:d5:c8:05:f8:83:b4:5f:e9:1a:21:0d:71:53:3a:76:6d:1f:
8a:aa:d8:ca:30:d0:b2:6d:53:7e:81:7f:98:fa:a9:ef:0a:4e:
12:56:b1:a3:db:2d:91:11:8d:37:e9:c4:55:f4:29:21:9b:b5:
30:ae:bf:a8:85:84:78:b1:66:a9:21:8c:3f:67:5d:dd:c0:7e:
d1:a1:61:c1:56:58:6e:03:bc:0d:97:22:f5:40:a3:c3:35:76:
50:cf:32:cc:00:ee:ef:7f:83:6a:72:0c:ee:6b:59:62:fa:99:
e4:65:5e:ed:6b:cd:03:0c:b9:70:79:93:d1:c2:05:04:c7:b1:
8b:ce:f7:72:69:29:0a:b1:1c:a6:0c:97:fa:46:fd:9a:bb:70:
9c:9e:99:c0:a9:19:b4:49:9c:8b:04:5a:6d:6e:84:fe:0a:23:
39:94:68:bc:56:c2:94:44:77:ba:d7:de:41:e4:bd:2c:a8:ab:
af:b2:7c:19:a3:91:2a:f0:d9:32:58:d8:60:c0:83:9d:b8:18:
ff:07:8f:79:3e:2d:3a:c4:d7:82:bf:c2:01:09:8f:db:d0:99:
a7:d3:bf:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 21:05:25 2024 by rpki-client on console-fra.rpki-client.org