Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/25a59c-c2fc-4fd4-96f7-84adcbf5ac55/1/JR9HPm__h9YJjspGmUMxEk2qR9w.roa
File: JR9HPm__h9YJjspGmUMxEk2qR9w.roa (raw, json)
Hash identifier: KBDPz+Rju2PsLRFNmIhntG92cIjs2fvNE0noSmPUJmw=
Subject key identifier: 25:1F:47:3E:6F:FF:87:D6:09:8E:CA:46:99:43:31:12:4D:AA:47:DC
Certificate issuer: /CN=bfd81ca90cc5224586afebab1c78b1790268d5c1
Certificate serial: 0185E2E85CFEDAD334451A0A3657E924D7A8
Authority key identifier: BF:D8:1C:A9:0C:C5:22:45:86:AF:EB:AB:1C:78:B1:79:02:68:D5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9gcqQzFIkWGr-urHHixeQJo1cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/25a59c-c2fc-4fd4-96f7-84adcbf5ac55/1/JR9HPm__h9YJjspGmUMxEk2qR9w.roa
Signing time: Tue 24 Jan 2023 08:32:37 +0000
ROA not before: Tue 24 Jan 2023 08:32:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 45.149.218.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e2:e8:5c:fe:da:d3:34:45:1a:0a:36:57:e9:24:d7:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd81ca90cc5224586afebab1c78b1790268d5c1
Validity
Not Before: Jan 24 08:32:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=251f473e6fff87d6098eca46994331124daa47dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:aa:81:a6:cd:82:35:01:01:55:81:48:80:4f:
c5:8f:b6:a5:f3:48:dd:1d:9c:8b:a3:e5:1f:71:99:
67:8f:42:42:ba:a9:b8:8d:88:a0:f4:85:a8:ce:0a:
d5:23:98:b5:08:a3:fd:56:cc:f1:e4:06:5d:b3:6e:
f5:cb:e2:19:b4:41:24:42:73:e3:cc:27:45:d4:3e:
42:f8:ab:71:29:34:d4:79:73:3a:d0:02:22:80:ad:
b2:b0:3b:38:57:6e:ca:90:1f:c9:37:6f:96:2b:e8:
72:18:71:de:dd:25:6b:69:11:bc:f0:1a:6f:9a:a5:
f1:42:c5:35:11:7a:15:7c:db:ea:4b:0b:2d:68:e7:
71:22:41:ae:3a:13:48:03:28:9d:a8:43:08:24:66:
a0:07:72:59:a5:7c:ed:6e:c7:1f:fb:08:07:cc:26:
0f:01:ce:f7:b4:a6:02:1b:84:f3:de:85:47:61:49:
90:36:d3:43:92:2a:e2:af:0e:c4:2a:c8:83:78:2d:
ab:1f:c0:a0:bc:5c:79:65:15:a0:48:d4:2c:d8:a5:
cc:69:b3:08:97:13:c1:01:ec:b7:63:08:74:6c:be:
6a:13:16:30:40:ee:d5:02:3e:5e:93:42:e1:43:f1:
c8:ae:06:c2:6c:1a:e7:cf:e3:b7:69:73:46:3b:6c:
b8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1F:47:3E:6F:FF:87:D6:09:8E:CA:46:99:43:31:12:4D:AA:47:DC
X509v3 Authority Key Identifier:
keyid:BF:D8:1C:A9:0C:C5:22:45:86:AF:EB:AB:1C:78:B1:79:02:68:D5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9gcqQzFIkWGr-urHHixeQJo1cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/25a59c-c2fc-4fd4-96f7-84adcbf5ac55/1/JR9HPm__h9YJjspGmUMxEk2qR9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/25a59c-c2fc-4fd4-96f7-84adcbf5ac55/1/v9gcqQzFIkWGr-urHHixeQJo1cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.218.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:54:23:da:7b:ca:61:ae:74:96:8a:8e:95:ec:78:7f:95:fe:
3a:05:3c:06:d2:54:5a:52:55:37:bf:da:7f:44:27:22:56:0c:
23:9f:2b:eb:ba:6d:d6:ce:48:5a:ee:f3:48:eb:b0:1d:cd:b2:
af:90:76:42:7e:3f:70:56:5a:8b:a7:36:b1:75:fe:56:9f:23:
a8:42:ee:98:df:98:de:13:88:92:3d:09:47:6b:5b:72:4c:1b:
7b:61:b9:a1:66:8f:0d:3b:f2:6f:91:92:73:02:aa:1b:c2:5a:
11:0c:4c:cf:ba:67:c9:85:51:26:7c:3a:b2:62:d5:64:2f:7a:
29:02:b1:79:ed:d8:2a:56:b4:c6:6d:30:bc:0d:d0:78:6a:8f:
85:d5:6f:a4:5b:c8:c5:97:fc:ce:25:3a:1f:0f:1a:fe:e4:9d:
44:18:e5:2e:07:7a:7b:06:92:2b:1d:b2:75:fa:a9:e7:34:17:
6b:51:06:ff:a4:5c:80:b1:ac:2a:9e:93:89:14:b7:d9:88:87:
55:e2:f5:52:82:c1:a6:42:65:15:9e:d0:ef:71:4c:85:56:f5:
33:75:15:1c:d4:ad:d1:cd:fb:c0:48:6e:0b:98:a8:ff:53:64:
0e:46:ae:36:6e:1b:cf:25:a8:18:46:c7:09:23:1b:e1:b0:05:
cc:2e:75:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org