Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JfQT4oLM3ftZEWf67rQWgIBA2To.roa
File: JfQT4oLM3ftZEWf67rQWgIBA2To.roa (raw, json)
Hash identifier: 6B3h/Q/46DGTZaFe8dUa+xe5aKezVJWRubeU0i042Is=
Subject key identifier: 25:F4:13:E2:82:CC:DD:FB:59:11:67:FA:EE:B4:16:80:80:40:D9:3A
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018CC4922969FE5EF3FD1ED032B781931981
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JfQT4oLM3ftZEWf67rQWgIBA2To.roa
Signing time: Mon 01 Jan 2024 10:29:22 +0000
ROA not before: Mon 01 Jan 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 141193
IP address blocks: 2a0d:82c7:3000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 18 Apr 2024 10:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:29:69:fe:5e:f3:fd:1e:d0:32:b7:81:93:19:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25f413e282ccddfb591167faeeb416808040d93a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:18:5b:c6:d2:39:65:3c:0c:e8:b0:8a:07:d7:
a9:5f:10:97:37:ea:a0:b5:77:1d:89:8d:9b:58:d2:
a0:50:ce:0c:ab:b7:43:86:d1:87:28:87:30:e5:ca:
37:9a:bf:e2:89:81:51:55:03:21:5d:4d:34:a5:04:
e2:cd:7e:b2:bb:b9:e8:9c:ba:46:37:96:9f:13:0c:
c3:0a:46:ae:0f:5d:6e:8c:3c:01:3c:5e:53:a9:37:
76:2a:53:22:d3:89:ec:51:99:97:0d:a1:9b:71:99:
5a:99:d2:20:ec:20:94:6e:94:1c:1f:ac:b4:96:74:
0e:4a:d9:6d:0f:ab:08:ff:b9:0b:95:36:61:e6:47:
2f:63:d9:74:6d:3c:1a:11:20:0a:e6:6e:db:76:bf:
7d:13:a2:c9:19:4f:c8:2c:b3:71:9c:c2:1c:a5:77:
cb:b4:b7:0c:28:6b:1e:35:a3:c0:b4:8a:65:3c:5f:
ed:5f:b2:bf:c0:41:48:3e:f2:e0:ec:06:c9:9d:69:
94:02:a8:3c:7a:99:a1:52:3d:34:f0:11:4f:2b:41:
f4:22:11:d1:de:99:c4:94:de:8f:67:bf:91:90:be:
bf:45:09:95:e6:de:ce:24:50:80:af:ec:d9:f6:d0:
8e:bc:78:de:d0:59:73:2b:ec:2f:a3:98:c2:8a:4e:
f0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F4:13:E2:82:CC:DD:FB:59:11:67:FA:EE:B4:16:80:80:40:D9:3A
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JfQT4oLM3ftZEWf67rQWgIBA2To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:82c7:3000::/36
Signature Algorithm: sha256WithRSAEncryption
74:89:62:93:c1:78:66:5d:4d:53:85:64:b8:6f:29:84:f4:47:
f7:39:00:b7:fc:66:92:b2:1d:1d:da:65:7d:fd:e3:bc:ff:4d:
6d:11:c3:9e:85:34:77:e3:d0:6a:c0:96:07:82:04:bc:35:71:
cb:bd:ba:65:71:6c:64:0d:93:f1:3e:13:98:38:49:ff:39:b8:
70:93:dd:99:59:f3:4c:6b:65:13:39:82:88:25:79:75:a1:e6:
4c:38:58:ad:da:7e:ed:58:43:df:46:c8:b6:6a:45:b7:06:67:
e0:72:f3:b3:34:e5:96:0b:b7:c4:94:6d:37:ae:b6:ce:43:8e:
61:21:46:6a:33:0f:81:54:99:4b:9c:51:4e:f6:b7:49:c0:59:
27:0d:b5:e6:5c:1b:ac:bc:35:d1:2e:57:95:a9:89:ab:24:fe:
2b:77:ac:9a:b3:aa:94:c5:e9:f2:4f:d4:e9:d1:ab:e3:62:31:
51:6e:3f:c7:90:da:1a:99:7d:75:46:bf:ec:1b:b0:12:17:be:
ef:91:ed:97:55:6d:31:0e:d5:7b:6c:95:03:02:ea:93:fb:47:
fb:6d:0a:03:26:7f:fc:a2:88:48:ba:52:6c:ee:bc:03:b4:47:
d2:2b:ba:e4:05:c6:01:95:8d:d3:d5:b4:6e:52:d0:a8:6a:7f:
8c:14:7c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org