Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/LJnxw49tJJIVGC8wmGrjXSczrGk.roa
File: LJnxw49tJJIVGC8wmGrjXSczrGk.roa (raw, json)
Hash identifier: hLZ5xac0p/IKHNZQa6ts76Htwv0Elp8bJgbopiJtCSs=
Subject key identifier: 2C:99:F1:C3:8F:6D:24:92:15:18:2F:30:98:6A:E3:5D:27:33:AC:69
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0186BD9A222350B6AF937B86747E96C52DF4
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/LJnxw49tJJIVGC8wmGrjXSczrGk.roa
Signing time: Tue 07 Mar 2023 19:44:00 +0000
ROA not before: Tue 07 Mar 2023 19:44:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201995
IP address blocks: 185.63.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 20:48:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bd:9a:22:23:50:b6:af:93:7b:86:74:7e:96:c5:2d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Mar 7 19:44:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c99f1c38f6d249215182f30986ae35d2733ac69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:48:4d:3e:08:71:2c:34:96:29:82:7a:c6:
a1:0f:26:03:6f:74:b3:e6:9b:9b:11:f9:5f:eb:05:
f5:87:b1:ce:c9:50:8d:7b:46:c1:c5:9c:e9:2d:d9:
be:22:16:78:a5:d1:83:19:38:5b:ab:59:bc:45:fa:
8d:d0:fe:7b:46:0d:aa:7e:85:5f:d7:a0:00:6e:c4:
28:d0:51:93:46:07:1d:f6:f3:97:2f:74:9e:fe:25:
36:07:fe:80:93:79:ce:17:cd:e4:d7:c7:6b:1c:0b:
ed:70:a6:3b:f3:a8:c8:e9:e4:69:c8:4c:ac:6a:be:
a6:f1:9b:17:2b:f3:2a:cb:fa:36:30:be:4a:c1:f3:
b5:17:58:96:90:5e:65:08:51:dd:45:fe:b1:70:b3:
40:a1:04:7b:0b:07:44:af:39:62:cc:3f:88:eb:dc:
2f:0f:42:c2:d6:57:a9:4d:13:1b:41:2f:36:bd:e1:
ab:6c:28:21:40:11:34:bf:91:cf:e9:2d:9b:07:4a:
a4:93:21:65:e2:33:0b:f6:02:73:b3:b2:f5:bc:e9:
ee:50:be:35:2c:dc:71:8a:12:b3:00:38:06:d7:23:
61:85:b1:08:8a:59:31:c4:ab:eb:87:41:0f:72:fb:
b0:0f:04:bc:17:b5:ee:a8:b6:0e:11:b4:29:5a:0e:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:99:F1:C3:8F:6D:24:92:15:18:2F:30:98:6A:E3:5D:27:33:AC:69
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/LJnxw49tJJIVGC8wmGrjXSczrGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.84.0/24
Signature Algorithm: sha256WithRSAEncryption
03:23:12:53:19:30:70:d1:dd:65:c0:a3:74:1e:b3:e2:a4:a2:
9f:0a:e7:55:d2:6b:e6:f2:95:4e:5d:02:ee:f5:f7:f5:c9:87:
99:fc:f5:04:3d:b0:c1:0d:95:42:3f:2b:8d:47:a7:6a:24:d3:
4f:9d:cd:c6:0e:dd:f5:49:9d:b7:05:cd:6d:58:88:4c:83:60:
4c:3d:84:f2:7a:2e:27:ab:e5:cc:64:00:e5:56:b7:44:ad:2c:
11:21:f0:c7:1f:7a:6a:95:80:8b:18:5d:fc:3d:0f:96:5d:26:
40:a8:87:f5:79:a1:c7:4c:89:64:65:e0:18:e6:30:27:c7:31:
c6:35:8d:5a:e6:61:59:fb:c7:f7:9e:ed:81:06:b4:4c:54:e5:
13:58:34:3d:28:6f:b1:52:6b:71:d6:14:4b:b7:d1:0d:38:d8:
b9:fd:48:6e:b0:f9:6a:4a:91:5b:97:3e:ad:03:98:83:6f:1c:
e7:c3:b2:56:2e:eb:a3:b6:e9:08:b4:77:2f:ef:44:81:70:5d:
6e:66:99:76:1a:03:99:12:86:28:f0:fc:2a:a6:16:d1:3b:46:
63:e6:bd:b0:02:5c:3d:b2:47:4c:10:4b:a4:f8:3e:03:d7:9b:
bd:01:48:47:89:85:2a:b8:5b:ee:c4:3d:ea:74:56:d9:f6:2c:
bc:4d:6b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:33 2024 by rpki-client on console-fra.rpki-client.org