Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/JQ1zigdzJ1_Sx63C6uA6QM25ocg.roa
File: JQ1zigdzJ1_Sx63C6uA6QM25ocg.roa (raw, json)
Hash identifier: BYtdPkd79wsXNTwjo++kISO6FiFwTmA6F4difSCtSTU=
Subject key identifier: 25:0D:73:8A:07:73:27:5F:D2:C7:AD:C2:EA:E0:3A:40:CD:B9:A1:C8
Certificate issuer: /CN=df27b939934a2cc206ffba6bce9c90fdcba39c71
Certificate serial: 019097D061EED081F193F14D565F0F924091
Authority key identifier: DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/JQ1zigdzJ1_Sx63C6uA6QM25ocg.roa
Signing time: Tue 09 Jul 2024 14:05:34 +0000
ROA not before: Tue 09 Jul 2024 14:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 185.75.204.0/24 maxlen: 24
185.75.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 19:22:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:d0:61:ee:d0:81:f1:93:f1:4d:56:5f:0f:92:40:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df27b939934a2cc206ffba6bce9c90fdcba39c71
Validity
Not Before: Jul 9 14:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=250d738a0773275fd2c7adc2eae03a40cdb9a1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:34:65:22:b9:e3:c1:89:aa:33:b7:08:b6:76:
ce:b9:6b:10:a0:d1:8f:0a:13:49:49:75:1a:84:aa:
21:98:82:37:50:00:9f:8e:d4:cf:f2:2c:91:fe:0c:
07:3b:dd:5c:80:cc:c5:96:45:66:f3:2f:a4:14:55:
93:9c:c0:56:ed:3a:36:0d:eb:4b:99:21:82:05:a8:
b8:d6:a9:a4:90:06:aa:c6:49:1d:f2:e2:e4:58:05:
61:b3:0c:79:b7:04:80:0a:3d:2b:0c:7b:71:e0:fc:
d1:1a:b2:b7:83:00:13:5b:e2:6f:ff:8a:7f:78:ab:
3c:1d:3f:bc:c7:8e:14:43:4d:8a:cb:46:89:05:d4:
20:f6:32:e4:f9:3e:36:94:2c:20:79:8a:cf:0e:97:
ee:e3:5b:c7:dd:09:62:58:85:33:ef:66:c2:13:a8:
58:c5:2a:1e:a1:08:96:52:f5:8a:12:09:c5:1b:bf:
7d:c0:ac:3d:04:0a:66:82:f5:24:38:12:8d:e1:46:
65:31:af:8f:79:d1:cf:7c:35:c9:7f:74:c2:95:03:
3c:24:bc:3f:c5:58:e4:0f:dd:92:12:21:bc:e6:80:
b6:64:e5:12:1f:da:8b:18:03:14:ea:16:0f:b0:e6:
d2:38:3c:3b:da:f9:49:e6:7e:36:3f:94:c9:2d:cb:
8e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0D:73:8A:07:73:27:5F:D2:C7:AD:C2:EA:E0:3A:40:CD:B9:A1:C8
X509v3 Authority Key Identifier:
keyid:DF:27:B9:39:93:4A:2C:C2:06:FF:BA:6B:CE:9C:90:FD:CB:A3:9C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ye5OZNKLMIG_7przpyQ_cujnHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/JQ1zigdzJ1_Sx63C6uA6QM25ocg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/966261-83b5-4ead-a468-6ed54d3fe4f4/1/3ye5OZNKLMIG_7przpyQ_cujnHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.204.0/23
Signature Algorithm: sha256WithRSAEncryption
72:81:fc:71:d2:0c:19:73:0d:51:8c:d1:dd:53:f6:72:4a:cd:
ab:c9:26:b4:67:4e:f0:a3:2b:aa:4c:2a:9b:f7:77:19:49:49:
a8:74:4f:18:2b:fc:c1:66:87:b5:69:be:90:32:60:fe:48:2d:
cc:a6:8d:e4:b6:46:a9:d3:72:76:aa:3b:57:3a:60:54:bf:7d:
fd:5d:25:48:5c:69:75:75:ac:86:3c:a3:15:0b:a9:ef:c6:0b:
69:99:0c:35:92:5a:32:09:f9:59:6c:93:76:ca:6b:57:30:c5:
19:e8:83:75:99:16:02:fa:84:eb:e5:14:1d:72:b2:a0:6d:01:
99:0e:04:c4:b0:12:1b:a8:e1:71:94:01:01:3a:ff:63:b6:05:
ed:b2:8d:f8:8b:9e:09:49:eb:cb:8e:cc:68:98:86:3d:07:be:
a7:89:69:3c:92:3a:96:ca:c5:d6:09:26:d0:d2:db:93:fa:6c:
1f:ff:69:ec:bd:8d:f8:2c:c5:3b:80:c2:66:0d:5e:95:8d:7d:
9a:20:a4:f5:cf:e0:01:50:01:f5:36:b4:00:10:65:01:0a:0c:
30:df:2c:70:9b:19:1a:e3:40:de:1c:26:9b:94:fb:0e:22:a3:
4a:89:c6:3d:cb:e8:7e:33:74:a8:03:21:1e:ac:03:ff:7f:bf:
d8:80:46:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 21:28:39 2024 by rpki-client on console-fra.rpki-client.org