Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/JCSrGESl0dXUs44mM46AJGZrjCs.roa
File: JCSrGESl0dXUs44mM46AJGZrjCs.roa (raw, json)
Hash identifier: cJixmHu0ZV+2+Ex55af9jyAxYwiV1l3dO/7wKHXN70I=
Subject key identifier: 24:24:AB:18:44:A5:D1:D5:D4:B3:8E:26:33:8E:80:24:66:6B:8C:2B
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018A08DB9CB04C751A31FA2CEE9138B3815A
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/JCSrGESl0dXUs44mM46AJGZrjCs.roa
Signing time: Fri 18 Aug 2023 13:35:24 +0000
ROA not before: Fri 18 Aug 2023 13:35:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34829
IP address blocks: 85.91.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:08:db:9c:b0:4c:75:1a:31:fa:2c:ee:91:38:b3:81:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Aug 18 13:35:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2424ab1844a5d1d5d4b38e26338e8024666b8c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f7:ce:21:f8:f2:13:90:f5:77:4e:e6:92:38:
73:bd:a1:d0:da:ca:0b:2c:c6:b4:8b:11:fd:d5:10:
c1:5e:87:c9:27:c5:5c:01:b5:8a:99:e7:f7:c8:63:
87:95:98:54:3b:7a:b4:3d:95:82:0c:9a:cf:a7:f5:
83:51:7d:72:35:58:e3:cf:3d:ce:97:0d:8a:ba:5b:
4c:89:76:e9:31:66:e6:87:d2:19:da:b3:13:4c:28:
2b:24:41:6b:74:4e:84:c1:7e:3e:27:7d:8a:a7:0d:
b8:6b:f5:c6:f5:13:6a:eb:84:7d:46:ac:d8:85:9b:
1f:21:37:c4:15:b9:04:8f:1f:57:88:01:64:cd:9d:
7b:12:9a:93:fc:42:f2:37:cb:ba:f3:4f:94:63:fd:
26:1d:d0:88:5b:4c:b8:53:3b:08:b2:2a:da:cc:7b:
f6:51:44:9c:eb:c7:fa:cc:e9:df:6e:4b:af:e9:a3:
02:9a:a5:2b:da:91:d8:f8:98:09:16:48:b2:11:01:
26:22:de:46:87:2c:58:81:99:ee:20:97:21:f5:75:
b9:6b:5f:b1:a1:91:98:65:2f:94:49:38:84:50:0b:
1a:e2:e1:60:89:17:06:d1:75:3a:c4:53:ec:85:cc:
54:e0:10:f0:3e:d6:5d:36:d6:74:c6:8f:ee:da:a5:
1b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:24:AB:18:44:A5:D1:D5:D4:B3:8E:26:33:8E:80:24:66:6B:8C:2B
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/JCSrGESl0dXUs44mM46AJGZrjCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.104.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c5:e2:d6:2b:46:2b:eb:33:13:e0:34:b9:b8:7c:f2:df:66:
9b:4c:ef:1a:55:fc:54:95:8d:88:62:72:05:7e:ca:87:06:2e:
8c:f4:5a:08:df:47:48:d5:39:2b:12:77:d5:f7:bb:67:ee:47:
cb:c1:c0:f4:51:4c:54:e2:47:c0:46:0a:9e:78:9c:ef:d1:a5:
82:35:ab:5d:6b:b6:ce:d4:14:0d:2a:c7:d4:bf:b8:77:bb:de:
0f:07:69:7b:0f:5f:29:d3:e1:93:90:e8:bc:53:12:38:1a:5b:
97:9f:e9:ed:cf:b4:4f:0a:d0:1b:93:ab:51:ea:a0:f9:d8:a9:
5c:1f:e2:65:a5:76:19:eb:21:e1:43:87:41:5c:12:fe:57:9e:
94:e2:76:46:2c:2b:9d:3d:10:45:dc:5f:47:3c:0e:91:89:1f:
b5:18:88:b7:e6:17:04:2c:e2:71:3b:26:38:c1:31:c3:d9:b3:
85:8b:16:46:0c:38:d8:d5:ca:c7:7f:d8:f6:08:ad:d0:5f:a6:
8c:8d:ea:f5:44:4c:85:28:c1:2e:08:e2:35:31:e3:6e:29:e9:
16:77:e7:fe:c9:d3:e9:4a:46:58:91:71:cf:36:f7:b6:59:28:
16:c7:2a:e6:2b:1f:25:ae:bf:cb:39:d4:13:61:62:04:ed:96:
49:33:53:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:31 2024 by rpki-client on console-fra.rpki-client.org