Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/JBocQR7u68T1Y3hfJHQ68uT2A88.roa
File: JBocQR7u68T1Y3hfJHQ68uT2A88.roa (raw, json)
Hash identifier: xIXN2uv6LGBhvzI8uRGGIKa9seMFfjMgQz2Bv0eGg+o=
Subject key identifier: 24:1A:1C:41:1E:EE:EB:C4:F5:63:78:5F:24:74:3A:F2:E4:F6:03:CF
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 01857079A76258BDBD4E7FFCBFFB2548FA91
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/JBocQR7u68T1Y3hfJHQ68uT2A88.roa
Signing time: Mon 02 Jan 2023 03:14:58 +0000
ROA not before: Mon 02 Jan 2023 03:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 150.217.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:a7:62:58:bd:bd:4e:7f:fc:bf:fb:25:48:fa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Jan 2 03:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=241a1c411eeeebc4f563785f24743af2e4f603cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:70:c6:5a:ad:b0:5e:dc:36:67:00:98:ff:bc:
6e:9f:ca:d9:70:7e:18:c8:25:40:64:53:42:b7:a8:
a8:6c:71:70:8a:70:b6:72:d9:ca:f8:77:84:df:08:
29:e0:ce:62:57:b3:fc:33:a2:c9:7b:8c:e7:da:22:
49:d2:4a:de:cb:27:e5:f4:2c:6e:c6:f4:ae:a4:b3:
3f:4c:a2:a7:ee:5e:5e:fb:5a:55:5c:a2:a0:b6:d0:
a6:c6:5a:3a:11:4f:ab:fa:f7:d5:0b:d7:2b:ff:59:
ab:1b:aa:0e:14:85:83:19:7d:77:0f:ed:7d:9d:35:
55:73:29:e7:ff:b1:a2:dd:98:02:f3:e7:45:a5:9c:
0a:a8:89:78:6a:b3:8c:58:05:5d:d1:89:b1:ef:81:
33:bd:4b:f4:95:d4:07:8a:c7:cd:97:c5:d3:4e:fb:
be:c4:27:77:e5:38:61:91:e5:c8:2c:c6:14:07:f9:
85:5a:2b:1b:66:9f:0c:9a:c0:31:8f:2e:4d:d2:4d:
d1:59:0d:fe:91:36:cc:ce:75:12:d2:b1:3a:5b:5a:
a9:db:b8:1c:f1:4c:8f:08:1f:ed:96:ce:9f:e1:7c:
3e:68:f6:99:63:21:2a:50:ae:03:b7:2a:22:4d:0b:
a6:df:21:94:33:51:a8:12:5d:71:84:d0:2c:9e:7d:
84:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:1A:1C:41:1E:EE:EB:C4:F5:63:78:5F:24:74:3A:F2:E4:F6:03:CF
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/JBocQR7u68T1Y3hfJHQ68uT2A88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:40:e9:81:7c:3f:b0:56:ac:5e:68:2b:f9:83:be:ee:79:22:
94:a9:f8:9d:93:26:95:08:24:8f:b8:fe:2f:63:01:d2:b2:ef:
13:7b:51:a9:31:fd:d7:62:9d:62:f8:43:d8:7f:c5:e3:8c:4b:
11:18:b6:88:c6:a1:09:b9:5c:57:32:18:d7:e4:56:d6:37:f5:
6a:8d:9b:9d:fe:e4:4f:ab:7a:3a:db:8f:dc:8c:ef:3b:69:b7:
73:dd:0a:ac:97:25:e6:6f:05:81:07:ee:8d:e5:a9:e5:a9:24:
c2:8b:3f:30:84:e7:77:96:26:82:47:0a:ba:7b:88:51:26:16:
66:67:c6:5c:e6:25:af:39:0d:e1:de:79:81:1a:06:62:e8:d7:
c1:69:82:4d:75:0c:2d:73:42:5d:03:f2:15:5e:43:1e:66:49:
10:cf:c7:06:bd:64:a6:98:19:d7:e1:5b:cb:49:25:41:5c:9b:
ca:b9:d9:75:0c:6c:d5:eb:54:b8:e9:09:dc:0e:d6:21:6e:7f:
44:20:38:f3:68:45:b1:f0:1d:cf:d7:d4:fb:e6:59:19:17:5d:
6e:fa:df:a6:72:ff:29:67:84:6f:71:e5:89:8b:c4:ba:76:12:
3f:e0:84:2f:5c:88:56:e3:ee:2f:92:73:6d:7b:ac:be:26:ad:
93:08:23:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:47 2024 by rpki-client on console-ams.rpki-client.org