Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/jCZAZrq49wF77plJGuHPfuCqp40.roa
File: jCZAZrq49wF77plJGuHPfuCqp40.roa (raw, json)
Hash identifier: Ztm62p0xxmZTH8Ww1C7V+5fk6SSKnIHopgB4FDTlnPQ=
Subject key identifier: 8C:26:40:66:BA:B8:F7:01:7B:EE:99:49:1A:E1:CF:7E:E0:AA:A7:8D
Certificate issuer: /CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Certificate serial: 018570705F25EFFAE25B0F6662DEE3A23833
Authority key identifier: C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/jCZAZrq49wF77plJGuHPfuCqp40.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203359
IP address blocks: 185.63.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5f:25:ef:fa:e2:5b:0f:66:62:de:e3:a2:38:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c264066bab8f7017bee99491ae1cf7ee0aaa78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:21:f0:5d:3e:eb:c5:30:ea:e4:73:44:9e:74:
61:4a:e5:5b:b1:f5:09:97:67:ec:7a:73:92:4f:8f:
b9:4b:65:c7:5e:05:da:c9:24:bc:34:0f:af:6e:60:
22:fd:72:6a:f6:13:f0:5f:87:04:9d:a8:b9:d8:8a:
c7:bd:4f:bc:73:c8:df:38:dc:ae:0e:07:d5:88:42:
b4:e9:66:00:62:fd:13:05:a2:21:04:a5:6d:a4:3a:
eb:35:66:6c:d5:b5:a0:04:64:71:3f:b4:88:32:67:
b9:dd:2b:f3:09:18:cc:64:f1:19:a7:4c:9b:8c:fe:
13:ce:be:ef:14:c7:09:13:06:00:ab:a6:95:e4:30:
96:65:a6:ba:f7:d3:98:79:a9:f9:e4:92:e3:a2:65:
e4:07:87:34:45:f3:9e:b3:59:f1:f5:ff:6f:b0:9e:
4a:d9:1d:ec:9b:22:82:a9:ca:c2:bb:b7:58:55:54:
43:91:00:f5:74:01:07:56:3a:ac:c7:40:11:64:95:
f9:b0:37:6a:e3:8c:10:3a:7f:0a:31:d9:9e:92:95:
5f:1d:1c:34:51:14:68:28:a6:aa:4b:41:09:bd:e7:
c2:7c:d3:a9:6d:11:81:2f:43:e5:8b:c4:84:83:cb:
0c:02:43:e6:23:94:cc:2c:e9:ba:b7:a9:d1:f1:4d:
62:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:26:40:66:BA:B8:F7:01:7B:EE:99:49:1A:E1:CF:7E:E0:AA:A7:8D
X509v3 Authority Key Identifier:
keyid:C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/jCZAZrq49wF77plJGuHPfuCqp40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/xr--8nm_ne1uNlHgYo05unkpT3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.95.0/24
Signature Algorithm: sha256WithRSAEncryption
61:a6:71:5d:94:6f:38:69:81:e6:4a:8d:df:cb:29:f0:cb:cc:
e5:92:1a:5d:2c:77:59:33:0c:be:b2:ea:c8:92:8e:53:82:73:
bc:49:37:41:94:f3:9e:6e:31:d2:cb:17:ff:e5:69:7e:46:4d:
0c:3a:ba:4e:75:61:f8:42:91:11:20:dc:f1:76:1a:69:91:78:
c9:fe:66:64:18:08:35:40:f1:7d:a9:8e:b8:d6:65:c6:9e:bf:
e0:a0:3a:01:12:a7:ae:64:7c:36:9b:61:f7:8b:f3:1f:86:3d:
13:1d:6a:cd:dc:f4:9f:6d:1c:07:d3:fa:2b:59:44:f8:d9:eb:
e9:b7:a5:2a:4c:bf:b2:bd:90:fb:e0:4a:6c:8f:44:c7:20:e9:
61:52:15:67:e7:db:71:24:3a:9e:01:c6:71:cf:78:52:0d:0d:
fa:d5:f3:ba:32:6c:ac:a2:fe:3a:7f:1b:ec:65:1c:b7:64:4b:
5f:48:39:37:91:73:23:79:01:4d:1c:03:32:df:7e:d5:bd:64:
3c:da:2a:20:bd:d1:f4:ea:92:12:96:a8:5e:01:9f:ff:88:46:
d4:44:9f:5e:e8:ec:d2:18:36:7b:07:7f:02:c9:86:d6:5c:b0:
8f:14:e6:3a:a1:6c:61:6d:ea:05:3c:d1:8d:4f:15:e5:73:23:
56:26:cf:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:02 2024 by rpki-client on console-fra.rpki-client.org