Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/JDKzYAzx9EhZ7zNlFpYvwDAqi6A.roa
File: JDKzYAzx9EhZ7zNlFpYvwDAqi6A.roa (raw, json)
Hash identifier: 4I4SZnfDLj9rmWCBzbvcHmpH2HBhbAvJN6o1IXaWSZ0=
Subject key identifier: 24:32:B3:60:0C:F1:F4:48:59:EF:33:65:16:96:2F:C0:30:2A:8B:A0
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 01857042AA228D4988E5F2705FC6828BECF8
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/JDKzYAzx9EhZ7zNlFpYvwDAqi6A.roa
Signing time: Mon 02 Jan 2023 02:14:55 +0000
ROA not before: Mon 02 Jan 2023 02:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 185.103.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:aa:22:8d:49:88:e5:f2:70:5f:c6:82:8b:ec:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Jan 2 02:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2432b3600cf1f44859ef336516962fc0302a8ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:37:f2:7d:c5:75:60:6a:e7:12:b4:1c:84:e0:
0c:5d:e1:f9:91:a7:6d:a9:79:7e:74:9c:7a:29:cf:
b0:e2:4f:b5:d3:8b:3b:49:77:d8:28:75:94:b9:ff:
0b:a3:a4:cc:c7:e2:b4:72:9c:cd:43:cd:da:96:65:
74:5e:48:5a:9d:e9:a0:37:99:7f:3b:83:84:b7:4a:
ee:f8:d2:97:3a:00:06:34:3e:da:4b:c5:f7:7b:f3:
ba:55:50:be:34:9f:c5:b9:7d:b0:db:ea:88:c0:b0:
ab:62:d1:0a:af:cf:9c:8e:b0:35:50:56:19:48:7c:
44:57:76:5f:35:33:a1:db:4e:67:f5:d7:36:f8:7d:
a8:bc:7a:1c:bc:80:c8:98:4d:ff:c3:99:59:80:55:
78:fb:06:00:28:7f:d9:23:f1:d8:95:56:51:3d:b5:
9e:32:48:3e:5b:86:ad:5d:3c:20:02:4c:91:2a:79:
19:5e:39:ea:3f:3a:4f:98:7b:10:f1:86:64:6d:98:
a7:6b:0b:b7:b5:7c:ee:23:6a:74:17:9f:99:cc:a2:
86:93:cc:82:bd:42:bd:24:c5:71:fb:ab:be:61:b5:
88:7d:28:a4:50:c0:47:75:bb:61:f8:07:8f:0e:6e:
eb:6f:e3:c1:ab:dc:8e:fe:19:69:25:ff:19:6e:ae:
00:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:B3:60:0C:F1:F4:48:59:EF:33:65:16:96:2F:C0:30:2A:8B:A0
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/JDKzYAzx9EhZ7zNlFpYvwDAqi6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
17:ec:58:d2:ea:91:6b:91:fc:ab:92:58:fa:5f:10:56:9d:c4:
1a:ec:f4:cc:81:ea:94:bc:2d:18:1d:0d:05:37:de:55:8d:e0:
22:76:0b:5d:85:13:99:3b:53:25:e0:99:14:bd:12:96:e2:f0:
71:70:eb:e0:80:61:4e:19:52:fc:4f:8f:d4:33:22:56:cb:7a:
92:33:f7:df:1e:f6:9f:50:2f:e9:8c:51:26:e8:9e:1b:b8:96:
59:71:eb:a7:aa:a3:02:bf:fc:79:bc:fe:98:a4:43:7a:76:67:
38:44:65:4a:b1:11:13:ae:15:3a:68:2d:ea:28:23:32:83:89:
ec:f2:0b:56:07:13:ba:2f:e3:06:86:a4:af:d6:c1:ea:35:24:
ae:27:fb:a2:12:6a:12:17:57:4c:39:e9:b8:27:b3:d9:47:3d:
40:91:8e:df:6c:c1:3a:f6:63:42:e9:22:fd:61:49:4f:00:1f:
f7:49:ec:04:69:6b:87:20:66:da:6b:11:04:f8:41:db:93:d7:
63:e2:9a:f5:f3:91:80:dd:fc:e6:14:d2:8a:d6:e3:d7:88:9e:
aa:f0:e9:2d:61:32:e2:43:ef:5d:d3:a1:21:5a:c1:01:f0:e2:
9f:31:20:b7:ae:0a:79:c9:a2:06:92:28:b8:7e:64:e4:a8:e7:
e1:2b:ea:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org