Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/jCBPPnzGCOPF_NY7uCzqpfiWrCY.roa
File: jCBPPnzGCOPF_NY7uCzqpfiWrCY.roa (raw, json)
Hash identifier: aCulCv37CUUau79AWD94Bp5HggPJ/pOKq1nv7EcoiLY=
Subject key identifier: 8C:20:4F:3E:7C:C6:08:E3:C5:FC:D6:3B:B8:2C:EA:A5:F8:96:AC:26
Certificate issuer: /CN=4840325995428043b5d905d8d2c17c302b8b3465
Certificate serial: 01856FE71E182196AF687131D1678E56492D
Authority key identifier: 48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/jCBPPnzGCOPF_NY7uCzqpfiWrCY.roa
Signing time: Mon 02 Jan 2023 00:34:55 +0000
ROA not before: Mon 02 Jan 2023 00:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49322
IP address blocks: 92.43.96.0/21 maxlen: 21
2a00:1638::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:1e:18:21:96:af:68:71:31:d1:67:8e:56:49:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4840325995428043b5d905d8d2c17c302b8b3465
Validity
Not Before: Jan 2 00:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c204f3e7cc608e3c5fcd63bb82ceaa5f896ac26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a7:f0:88:c0:9b:33:c4:cf:d1:79:ef:b1:f1:
01:02:0b:37:8e:f8:69:e0:8a:2a:4f:86:e3:86:dc:
72:0b:07:a0:6c:2b:ea:3d:08:0f:55:c5:22:23:d3:
88:32:21:e0:af:a8:46:89:b0:2d:92:39:30:7c:9e:
67:bc:7e:24:0f:d9:08:e5:79:fb:b8:e1:a7:a0:14:
80:26:2c:10:13:c8:a5:27:50:48:3f:bd:73:7e:50:
8a:1e:08:e0:6a:c0:e8:5a:35:07:2a:3e:b4:c6:ec:
f5:5f:7c:09:4d:ac:0e:2d:c7:fe:6f:cb:90:ee:65:
1a:59:8f:03:71:7d:26:b3:ed:ee:ed:2e:3b:4c:7b:
d7:af:ea:90:a3:d8:34:bd:81:18:34:dc:d6:90:c3:
8f:79:33:c7:99:98:08:d5:96:a8:7c:a6:a2:07:fa:
df:1e:df:1c:13:e7:5b:46:2b:fc:93:8f:87:d1:e3:
e1:19:90:42:91:bf:80:51:57:20:81:df:8c:28:72:
6b:d4:9d:f8:40:59:e9:d6:26:61:29:86:01:41:6e:
20:e7:a6:9e:f2:3c:0c:cd:80:50:fb:83:b0:fb:e8:
47:fc:6d:2b:80:f8:61:d1:5a:6f:e8:34:27:35:db:
fe:ec:62:e8:ad:dd:19:a7:18:cf:d4:73:0b:df:6b:
fe:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:20:4F:3E:7C:C6:08:E3:C5:FC:D6:3B:B8:2C:EA:A5:F8:96:AC:26
X509v3 Authority Key Identifier:
keyid:48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/jCBPPnzGCOPF_NY7uCzqpfiWrCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/SEAyWZVCgEO12QXY0sF8MCuLNGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.96.0/21
IPv6:
2a00:1638::/32
Signature Algorithm: sha256WithRSAEncryption
7f:96:c8:8d:25:64:9e:5d:a8:7c:2a:61:fc:ed:64:0b:7e:e7:
d2:50:de:e1:2b:6f:0a:6d:f9:8a:17:a5:d3:d0:30:81:76:06:
87:be:18:2b:d2:f6:1b:07:79:a5:d7:26:3e:9d:17:5a:c5:b1:
69:71:a7:d5:57:b7:7f:ba:e0:37:24:97:27:d1:3b:7d:af:82:
93:e2:d5:f5:27:20:cc:09:bc:20:a3:b6:0f:53:d1:08:34:2a:
5d:20:ef:67:52:d9:2d:48:ac:bb:60:57:8d:b4:ac:10:be:0f:
e4:83:3a:23:02:f8:b8:9a:c9:c4:24:48:65:5e:82:0a:7e:90:
1e:1a:a5:ac:3f:21:a8:28:ea:b4:1e:92:76:02:d6:88:eb:aa:
47:6a:0a:0a:85:90:30:8a:94:4c:81:26:3e:e7:a2:0f:34:fe:
f9:8e:68:0f:db:c9:bb:7f:f1:13:16:78:56:30:3b:64:ff:2e:
1b:3d:76:d9:15:17:8f:54:16:72:fa:50:89:e9:d7:a8:9b:54:
82:f8:1a:89:ed:fd:bb:01:65:42:4d:a9:12:bd:0e:74:8f:2e:
e2:71:15:ff:fb:d8:29:af:77:8a:36:8a:95:3e:99:a7:ee:bc:
a6:0a:31:e2:e7:0a:9d:f2:17:59:72:d5:ca:30:91:50:b5:da:
a9:52:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:12 2024 by rpki-client on console-fra.rpki-client.org