Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/jbgySsalYKzkLS5hszMrefWmLHM.roa
File: jbgySsalYKzkLS5hszMrefWmLHM.roa (raw, json)
Hash identifier: /1BGGRy1jnlryPH6fwxlAW2cHEMm1ausClGJcNvah28=
Subject key identifier: 8D:B8:32:4A:C6:A5:60:AC:E4:2D:2E:61:B3:33:2B:79:F5:A6:2C:73
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 01920580058A625CD9EB9056E66CC3C16B92
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/jbgySsalYKzkLS5hszMrefWmLHM.roa
Signing time: Wed 18 Sep 2024 14:18:48 +0000
ROA not before: Wed 18 Sep 2024 14:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39600
IP address blocks: 194.33.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Sep 2024 07:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:05:80:05:8a:62:5c:d9:eb:90:56:e6:6c:c3:c1:6b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Sep 18 14:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8db8324ac6a560ace42d2e61b3332b79f5a62c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:bc:d3:d0:2a:50:58:bb:38:9a:f8:87:06:
c2:04:c9:24:a7:92:e6:74:92:12:2d:81:ac:74:e8:
88:7b:91:75:e4:3e:64:a0:9f:4b:e4:ab:c5:6e:62:
ec:c1:4b:44:d3:ae:58:af:af:7e:26:4e:ad:57:e5:
d3:f3:e5:32:f6:7e:fe:ab:64:a5:9a:fb:d0:f6:d2:
dc:3b:24:47:96:94:8f:54:99:88:7e:22:bd:16:3a:
42:69:ec:18:d8:54:9f:3b:2a:4a:aa:fb:e3:15:d8:
ed:a9:cb:8e:68:a0:c0:51:f5:75:b4:f3:12:c8:a6:
ed:3f:12:9e:ec:f6:3c:bd:a5:2f:0d:95:7e:da:29:
3f:92:c9:86:20:d0:a3:f3:93:f6:67:98:a8:14:5e:
6a:4c:71:a6:ea:59:25:c9:96:a2:93:1c:7d:6c:96:
92:ee:19:bf:dc:dd:cf:67:13:37:3f:b3:66:55:0c:
4a:7f:91:2a:c0:ec:c4:b4:10:15:5d:d4:fc:3b:08:
07:f4:01:dd:0b:46:8e:12:19:98:b7:b3:66:dc:72:
4c:fe:19:d5:0f:e4:e4:51:3d:70:87:f2:12:8b:7f:
59:0b:bb:0b:3f:94:44:3d:47:4a:4a:a7:3e:a0:d7:
43:77:dd:74:fb:55:08:60:f1:72:f3:24:ec:7d:77:
1e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B8:32:4A:C6:A5:60:AC:E4:2D:2E:61:B3:33:2B:79:F5:A6:2C:73
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/jbgySsalYKzkLS5hszMrefWmLHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.150.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e1:52:8b:da:e2:f1:3c:e1:4e:6b:96:98:39:dc:7b:ae:b2:
1e:86:49:3f:59:65:ac:7e:f4:fa:5b:e7:57:c2:13:73:01:bf:
19:c5:53:a1:60:df:ac:81:35:e8:6e:46:5c:23:b9:85:de:53:
85:76:4b:38:bb:63:67:f8:a8:0d:ff:12:e3:34:7f:15:7e:94:
cf:d7:b8:b0:1f:c4:d6:a6:b7:b6:24:b2:10:87:fd:16:d1:99:
11:03:03:02:51:dc:da:37:31:dc:91:cb:23:64:a8:71:4b:a1:
bb:8e:79:ae:c1:a0:90:98:c1:a4:cc:fc:09:29:7a:18:4b:1d:
da:80:a6:f7:32:fc:70:83:17:11:a8:e4:91:6c:e4:34:7a:d8:
1d:a6:64:23:c5:98:8a:a6:7c:89:7a:45:c1:39:11:74:ca:c4:
04:13:10:de:64:ef:43:2b:cd:23:56:01:ff:05:08:a1:13:26:
b4:7b:96:4d:ad:bf:72:c1:c2:3a:98:9f:3d:9b:71:d6:ef:63:
b1:10:f7:d0:6e:1b:62:97:80:b6:b7:b6:cd:42:71:9b:bc:c2:
15:a6:66:68:03:8f:80:fb:49:86:e1:dd:ef:c4:4e:51:7d:d3:
4c:21:3d:7e:8e:a2:e3:c0:b7:ea:75:9d:c9:32:82:85:48:cc:
d8:a5:c2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 09:32:10 2024 by rpki-client on console-fra.rpki-client.org