Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/JR7CSw-wPHIAlmjcQgPzZi9OQrk.roa
File: JR7CSw-wPHIAlmjcQgPzZi9OQrk.roa (raw, json)
Hash identifier: wxUHV0HXw5lfoL6PQ0aeqD8TYwOJ12/CHqlyUScNMTY=
Subject key identifier: 25:1E:C2:4B:0F:B0:3C:72:00:96:68:DC:42:03:F3:66:2F:4E:42:B9
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0189970669FFEA315D13CE704A74D5C030B4
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/JR7CSw-wPHIAlmjcQgPzZi9OQrk.roa
Signing time: Thu 27 Jul 2023 11:05:27 +0000
ROA not before: Thu 27 Jul 2023 11:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199186
IP address blocks: 2a0a:280:2c00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:06:69:ff:ea:31:5d:13:ce:70:4a:74:d5:c0:30:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jul 27 11:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=251ec24b0fb03c72009668dc4203f3662f4e42b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f1:d3:1b:f3:36:22:80:36:4b:8a:30:72:5a:
df:ac:14:3e:cd:ef:2e:d8:31:c9:a6:ae:41:70:59:
d8:66:e8:a2:ea:c7:66:04:d8:f0:cb:6e:83:66:61:
7e:65:4d:90:15:6a:f6:fe:cf:91:22:c9:6b:65:39:
85:ce:13:29:66:dc:1e:77:52:22:8d:b6:ad:92:15:
d2:8f:90:b2:73:15:45:b3:53:f9:0f:44:d2:0e:51:
d1:1c:7d:75:f6:5f:5d:84:91:86:5a:5c:48:c7:11:
6d:59:96:ea:62:7a:ca:9b:4b:ca:2f:37:cb:cd:34:
9f:90:8a:ab:df:87:eb:0b:b2:41:50:e3:01:ff:51:
08:10:6c:db:95:c0:01:ff:88:61:4b:c6:18:0a:48:
fc:ba:0b:08:f0:9c:f3:3f:b3:3c:a5:6b:7e:9f:11:
a3:f0:aa:90:4a:bf:84:9c:d3:d5:7a:ec:37:b0:e0:
1e:18:2f:92:b1:3d:11:0c:59:2f:0d:0b:ee:fc:76:
68:d8:2f:d6:4c:55:aa:af:c4:6e:3e:b8:6e:8e:06:
26:e5:05:fa:60:06:96:fe:0e:85:e0:a1:dc:c0:f0:
15:97:51:99:f5:b5:b9:28:5a:1b:2b:9f:9f:62:19:
20:af:c6:f1:2f:ac:2c:12:f1:20:93:79:54:17:e5:
79:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1E:C2:4B:0F:B0:3C:72:00:96:68:DC:42:03:F3:66:2F:4E:42:B9
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/JR7CSw-wPHIAlmjcQgPzZi9OQrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:2c00::/40
Signature Algorithm: sha256WithRSAEncryption
01:55:ed:3d:16:93:db:94:b4:84:33:e5:e5:21:1a:04:17:c1:
81:ee:72:a2:7a:0e:8a:f8:d1:4f:05:2d:1d:e2:af:f7:7d:00:
d4:40:3f:97:b7:40:8e:71:30:b9:65:27:b8:e1:13:2c:a2:4d:
c3:04:87:f8:44:f4:1a:03:c7:2e:0b:a3:3b:5f:5c:c5:7b:2a:
64:de:c1:ba:f5:41:e1:74:c7:9b:0f:fc:59:0e:4d:ff:19:ef:
c1:80:61:93:a1:97:b7:aa:22:08:3f:62:2a:97:f0:d5:9a:92:
89:7b:7c:92:ce:b3:e8:11:2a:d0:17:2a:36:ce:5c:b9:30:8c:
75:2c:9c:e6:9e:c5:43:48:3b:50:3a:42:1a:67:6c:03:76:ab:
a8:55:5e:d5:18:7d:61:ec:9e:d5:6b:69:b1:b5:a8:76:51:a5:
c2:53:75:b2:c5:87:9e:b2:3d:72:b7:c0:ae:ba:bf:30:f6:5a:
fb:83:ed:24:3c:0d:e4:4d:b5:89:b9:fd:84:fc:d7:65:6b:b2:
f3:b6:93:63:63:50:a9:e0:ee:f5:83:84:86:22:03:69:86:26:
a0:f4:a8:b5:f7:2b:87:90:3e:04:1e:86:0e:fe:1e:7b:53:9c:
9e:8e:de:e6:98:68:67:51:79:37:18:ff:39:aa:33:d2:f9:e7:
f4:de:31:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org