Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/jjL606J5Hx3d13hdxNWOq-wxvx0.roa
File: jjL606J5Hx3d13hdxNWOq-wxvx0.roa (raw, json)
Hash identifier: 3mXy/mjxU93D939XPvG2t1WdVEGGG+dNOZTQm1gzVDY=
Subject key identifier: 8E:32:FA:D3:A2:79:1F:1D:DD:D7:78:5D:C4:D5:8E:AB:EC:31:BF:1D
Certificate issuer: /CN=4bf3d18336642b6a9ac8aedffbf7aee6e5e629f4
Certificate serial: 0193775D8D74C4F8320A7F05ADE78BF86731
Authority key identifier: 4B:F3:D1:83:36:64:2B:6A:9A:C8:AE:DF:FB:F7:AE:E6:E5:E6:29:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_PRgzZkK2qayK7f-_eu5uXmKfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/jjL606J5Hx3d13hdxNWOq-wxvx0.roa
Signing time: Fri 29 Nov 2024 10:00:39 +0000
ROA not before: Fri 29 Nov 2024 10:00:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43989
IP address blocks: 79.98.40.0/21 maxlen: 21
93.188.96.0/21 maxlen: 21
109.234.56.0/21 maxlen: 21
185.181.136.0/22 maxlen: 22
195.206.246.0/23 maxlen: 23
195.216.202.0/23 maxlen: 23
213.217.7.0/24 maxlen: 24
2a01:b600::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:77:5d:8d:74:c4:f8:32:0a:7f:05:ad:e7:8b:f8:67:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf3d18336642b6a9ac8aedffbf7aee6e5e629f4
Validity
Not Before: Nov 29 10:00:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e32fad3a2791f1dddd7785dc4d58eabec31bf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:4f:d3:fe:08:6d:09:6b:38:0a:65:56:c5:96:
8f:32:af:1d:2b:34:4d:2d:63:c5:fc:ed:dc:88:82:
7a:6e:5c:66:2b:25:30:38:c6:b7:ba:e3:ca:00:b8:
d5:5d:8d:8f:e7:cc:8a:5b:e8:10:a6:1a:fb:28:9e:
85:c4:5a:a0:ca:44:ca:d3:f1:38:1e:5b:e7:90:18:
ee:18:e2:f1:86:26:f8:4c:99:97:6a:cc:c9:af:8d:
1f:58:f6:5e:db:cf:25:65:68:b6:a4:f6:3c:f5:3d:
1b:0d:70:8a:a1:f5:c9:76:85:21:9b:f2:92:cd:38:
70:7c:1a:56:8d:68:b0:93:bd:d2:e0:2c:0e:ae:c5:
1b:90:e2:28:08:49:4b:80:bf:70:c7:4a:0d:d5:53:
07:12:fb:ee:66:3e:c1:47:c5:ed:1d:50:4f:47:38:
66:23:56:06:48:86:e5:dc:bd:b9:8f:ce:69:af:c1:
6d:a6:43:75:9f:b4:9f:1d:9a:13:aa:05:25:cf:c2:
f7:a6:f7:d7:48:35:ef:6e:88:97:94:b1:17:6b:ed:
4b:f4:82:66:f5:6a:1d:6e:7a:fc:28:52:1a:f0:ca:
57:b8:a4:8e:1d:2e:b8:21:1d:43:d9:0b:26:41:18:
75:43:07:7f:94:59:24:cc:f1:9a:86:f2:68:90:5b:
48:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:32:FA:D3:A2:79:1F:1D:DD:D7:78:5D:C4:D5:8E:AB:EC:31:BF:1D
X509v3 Authority Key Identifier:
keyid:4B:F3:D1:83:36:64:2B:6A:9A:C8:AE:DF:FB:F7:AE:E6:E5:E6:29:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_PRgzZkK2qayK7f-_eu5uXmKfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/jjL606J5Hx3d13hdxNWOq-wxvx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/S_PRgzZkK2qayK7f-_eu5uXmKfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.40.0/21
93.188.96.0/21
109.234.56.0/21
185.181.136.0/22
195.206.246.0/23
195.216.202.0/23
213.217.7.0/24
IPv6:
2a01:b600::/32
Signature Algorithm: sha256WithRSAEncryption
33:df:f6:ce:3d:c0:02:4b:2e:05:77:44:d8:af:76:cc:f6:1f:
d1:a1:63:26:e6:16:32:f8:f2:ab:ba:59:5d:8b:0d:b0:bf:73:
ed:65:35:5f:e3:c2:ad:11:a0:30:ef:21:f1:87:aa:da:69:93:
b0:1d:ec:a1:fb:f1:3d:27:38:a6:bf:b6:a9:71:b0:bf:e0:83:
76:9d:b0:9f:fb:49:ce:f1:f3:bf:23:65:c2:77:97:3c:5c:54:
04:cd:1d:4a:f5:44:3b:a1:62:71:49:5f:25:fc:65:21:ba:79:
29:78:9d:b5:15:99:d1:25:1e:57:7a:75:60:25:fc:91:72:9b:
78:e5:28:45:b2:47:31:c3:2b:e4:6b:9d:22:c0:93:8d:27:f8:
e8:88:25:d5:cc:b8:ad:1f:65:84:d9:aa:f2:b3:69:83:35:79:
99:79:bd:e7:0c:c8:95:85:47:38:12:02:1d:6f:83:b0:51:2c:
17:51:56:5d:d3:07:9d:10:33:3a:da:0d:91:b0:5e:d6:58:c9:
a3:75:90:be:c4:94:26:e6:39:ff:92:87:ae:46:4d:93:c5:00:
28:1d:59:f1:7a:8f:e6:ab:1c:25:2a:e6:72:83:aa:e7:92:d7:
70:b0:9a:d6:6d:82:2b:64:ba:48:77:72:3b:b3:3a:e6:52:e3:
65:56:b8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:26:15 2025 by rpki-client