Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/0JhcoQ2dCti1auEJO4Oj1XT3Waw.roa
File: 0JhcoQ2dCti1auEJO4Oj1XT3Waw.roa (raw, json)
Hash identifier: EIFRedKwfpgijfeSu1wUGLK00JlIlwQxIhNtQleJAYs=
Subject key identifier: D0:98:5C:A1:0D:9D:0A:D8:B5:6A:E1:09:3B:83:A3:D5:74:F7:59:AC
Certificate issuer: /CN=fc195bd682a8e9a124d5853dc5e908aae7339bae
Certificate serial: 018D8CE222C23285C558DDBC82358A98E961
Authority key identifier: FC:19:5B:D6:82:A8:E9:A1:24:D5:85:3D:C5:E9:08:AA:E7:33:9B:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Blb1oKo6aEk1YU9xekIquczm64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/0JhcoQ2dCti1auEJO4Oj1XT3Waw.roa
Signing time: Fri 09 Feb 2024 08:00:46 +0000
ROA not before: Fri 09 Feb 2024 08:00:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 139.28.226.0/24 maxlen: 24
139.28.227.0/24 maxlen: 24
194.93.32.0/24 maxlen: 24
194.93.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 11:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8c:e2:22:c2:32:85:c5:58:dd:bc:82:35:8a:98:e9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc195bd682a8e9a124d5853dc5e908aae7339bae
Validity
Not Before: Feb 9 08:00:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0985ca10d9d0ad8b56ae1093b83a3d574f759ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2b:51:54:0c:e4:82:ad:25:7b:07:3f:5e:8a:
b9:fa:5b:11:f9:0d:14:07:b0:fc:34:e7:64:99:69:
54:27:15:3a:cd:20:05:f5:bc:05:1f:a8:3e:90:95:
15:16:47:d8:29:86:47:18:b7:b4:41:e7:d2:4d:c5:
e1:1c:02:4b:ba:4a:76:36:20:8f:f1:20:2b:a3:f5:
ec:73:ee:01:6c:dc:d0:da:f8:23:a5:ef:0b:b9:44:
0f:25:ee:72:54:22:c8:8b:f6:0a:6c:10:f2:95:9c:
0e:2e:74:8b:48:7d:17:98:18:84:d5:f8:8c:8c:57:
26:cb:94:ac:a3:49:0b:c4:f0:2f:ad:ed:ee:bc:3d:
55:b2:18:d9:d8:e7:fd:c3:64:3d:95:99:8a:60:39:
3a:99:da:a3:29:ab:6c:ad:ba:42:e1:6e:41:8c:8a:
a3:c1:47:22:7b:ae:8d:41:59:e5:24:a7:43:c6:30:
ed:88:11:2a:75:ab:4a:94:13:ba:d1:b1:de:52:9c:
7e:29:a1:cf:45:84:c8:60:62:0a:96:82:f8:2a:dd:
d1:f7:17:3d:8b:4e:a9:6f:4a:2c:d6:20:a5:75:dd:
0e:a1:2f:e4:89:82:f5:17:44:fa:c4:f0:61:7e:d0:
38:c8:16:e3:61:bc:6e:d2:64:d7:69:e9:3d:dd:98:
3a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:98:5C:A1:0D:9D:0A:D8:B5:6A:E1:09:3B:83:A3:D5:74:F7:59:AC
X509v3 Authority Key Identifier:
keyid:FC:19:5B:D6:82:A8:E9:A1:24:D5:85:3D:C5:E9:08:AA:E7:33:9B:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Blb1oKo6aEk1YU9xekIquczm64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/0JhcoQ2dCti1auEJO4Oj1XT3Waw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/_Blb1oKo6aEk1YU9xekIquczm64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.226.0/23
194.93.32.0/23
Signature Algorithm: sha256WithRSAEncryption
16:d7:43:ae:dc:1a:63:61:cc:be:fc:53:72:db:14:e0:0a:6e:
45:14:86:f0:9d:74:71:c8:ce:ab:09:ad:03:fe:a3:f8:78:f6:
bd:6a:f8:8d:2c:ad:a1:3c:86:88:0d:6a:42:ac:dc:c3:1e:57:
1d:f5:dc:49:78:23:8a:73:44:c0:e3:68:ed:c4:c5:00:03:82:
70:54:32:2a:25:72:5b:cc:8f:54:3f:51:98:b9:99:fb:90:a1:
12:e2:93:de:c1:b2:78:6f:2d:0e:f1:4b:12:4d:79:e3:48:48:
9d:25:53:e1:a1:32:4d:1c:13:88:73:cd:1a:65:7a:63:f2:63:
90:38:d9:9d:d6:01:d7:70:9c:6b:97:54:57:ae:d7:8c:19:be:
2b:23:08:d7:6d:09:59:43:41:39:e8:d0:c8:d3:ea:35:7e:89:
7c:ff:b7:f6:b3:ea:07:fc:d7:f3:68:9e:10:61:43:fb:56:be:
8c:5f:89:5e:a6:9f:a8:77:41:87:5e:07:02:f2:33:2d:83:08:
17:f7:de:0d:0c:5b:cd:ba:5f:5f:93:4f:1a:76:d9:5e:52:d4:
55:86:af:d8:1d:96:e7:bb:a5:c6:b9:87:37:e6:72:e0:34:1d:
19:1f:21:24:c2:5c:3e:34:a0:46:d1:9a:7b:80:64:89:5b:0b:
03:a8:63:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:39 2024 by rpki-client on console-ams.rpki-client.org