Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/JpNKOBx_p3lhExQwAR_p7h_Jwzc.roa
File: JpNKOBx_p3lhExQwAR_p7h_Jwzc.roa (raw, json)
Hash identifier: ypGG1uTqd71fF7fUobZHhnkmxS6cqeEMGqmxU+v1QG4=
Subject key identifier: 26:93:4A:38:1C:7F:A7:79:61:13:14:30:01:1F:E9:EE:1F:C9:C3:37
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 018CC4254F5FB8703B4FA5BDB762C6C6B6AB
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/JpNKOBx_p3lhExQwAR_p7h_Jwzc.roa
Signing time: Mon 01 Jan 2024 08:30:28 +0000
ROA not before: Mon 01 Jan 2024 08:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1921
IP address blocks: 193.46.135.0/24 maxlen: 24
193.46.133.0/24 maxlen: 24
193.46.134.0/24 maxlen: 24
194.0.24.0/24 maxlen: 24
194.0.25.0/24 maxlen: 24
194.0.26.0/24 maxlen: 24
185.102.12.0/24 maxlen: 24
193.46.132.0/24 maxlen: 24
193.46.128.0/24 maxlen: 24
193.46.129.0/24 maxlen: 24
193.46.130.0/24 maxlen: 24
193.46.131.0/24 maxlen: 24
2001:678:20::/48 maxlen: 48
2a02:850:ffe5::/48 maxlen: 48
2a02:850:ffe0::/48 maxlen: 48
2001:67c:1bc::/48 maxlen: 48
2001:678:24::/48 maxlen: 48
2a02:850:ffe4::/48 maxlen: 48
2a02:850:ffff::/48 maxlen: 48
2a02:850:ffe2::/48 maxlen: 48
2a02:850:ffe3::/48 maxlen: 48
2a02:850:ffe6::/48 maxlen: 48
2a02:850:ffe1::/48 maxlen: 48
2a02:850:ffe7::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:4f:5f:b8:70:3b:4f:a5:bd:b7:62:c6:c6:b6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Jan 1 08:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26934a381c7fa77961131430011fe9ee1fc9c337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:e2:6f:b0:fa:aa:81:97:7c:a3:20:82:64:
a7:26:2d:04:04:1f:31:f8:c2:00:7e:d3:c9:30:64:
aa:8d:ca:25:0e:0a:5a:d5:ca:45:3a:8c:2f:b8:34:
8e:cb:bc:5e:f6:7a:ab:35:92:35:b8:ab:30:d4:03:
28:95:70:1c:45:94:56:5f:a4:f2:b9:4d:42:73:9b:
18:07:4e:c5:46:79:10:9c:3d:3d:8a:5c:f7:b3:b2:
20:86:97:34:5d:c8:7b:1f:62:3d:35:0b:4e:a3:6d:
43:e9:61:a7:8e:10:83:f3:4d:2c:02:df:a7:df:57:
9f:68:20:56:6b:5b:f9:d1:6f:4b:b3:8a:c8:7f:f6:
f0:01:50:39:9c:53:43:07:c4:ee:28:17:86:86:72:
09:25:39:9b:0b:3a:22:7d:80:13:56:ee:64:d0:f2:
0b:d9:f8:8d:66:a1:37:b8:71:6d:67:47:32:82:e2:
2e:60:77:bd:ae:f9:61:92:e1:d4:9d:a8:0a:ad:28:
cb:fb:63:97:9f:a8:c3:04:bd:55:75:1d:37:30:68:
f2:8c:bb:64:f6:cc:e6:ee:57:34:29:3e:02:10:b7:
ca:ba:c6:d5:43:b8:e9:18:c0:6c:56:29:73:ed:56:
2a:c1:2b:c1:75:b5:c7:0b:14:04:08:de:ae:6b:3e:
0e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:93:4A:38:1C:7F:A7:79:61:13:14:30:01:1F:E9:EE:1F:C9:C3:37
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/JpNKOBx_p3lhExQwAR_p7h_Jwzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.12.0/24
193.46.128.0/21
194.0.24.0-194.0.26.255
IPv6:
2001:678:20::/48
2001:678:24::/48
2001:67c:1bc::/48
2a02:850:ffe0::/45
2a02:850:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
77:3b:3a:0c:41:a9:83:30:4b:fb:4e:5b:15:56:d5:a0:49:00:
95:90:50:13:aa:0a:c0:cf:64:5a:2a:75:b5:75:77:e5:06:5c:
51:e5:db:54:d8:42:be:da:2c:ce:9d:89:65:44:5b:ca:67:97:
e3:2a:d2:9d:82:75:24:15:b0:d7:4e:9f:80:82:12:cc:8c:01:
06:5e:58:d7:0f:ef:ff:26:f7:e0:99:a3:f7:7d:20:c2:12:11:
80:43:1c:0b:32:97:5c:ab:f6:0c:b8:d6:ef:14:e4:c1:d9:5f:
15:e3:cf:e9:53:15:3a:e1:de:b9:da:d0:84:8e:1b:b9:d3:aa:
76:b8:e7:55:d2:4b:c4:b1:84:42:5b:ce:62:e9:99:75:4f:ea:
9c:93:98:80:d0:f1:c4:ae:50:5b:68:99:9f:e6:7f:e0:99:24:
de:33:77:60:09:af:f9:0a:12:9e:16:2a:e1:7f:64:7a:17:56:
21:e7:0c:71:b0:9c:71:ac:d8:db:a5:52:00:b0:fe:7f:0c:29:
74:9c:9c:2e:9a:1c:41:1d:5f:05:f3:15:f2:c2:65:98:b6:de:
0b:89:4c:a3:78:ca:6c:17:2b:af:5d:79:93:8b:93:93:74:87:
25:0e:b7:5d:f9:bc:e4:90:27:fb:3d:13:9e:0b:55:87:47:e5:
3f:3f:bd:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:04:58 2025 by rpki-client