Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/JLo1nG8xGSwCptxWOAdRkJRyCns.roa
File: JLo1nG8xGSwCptxWOAdRkJRyCns.roa (raw, json)
Hash identifier: sDa7gMc+3xlwtb+LKeslyhbmzpbFFA9lR/dIawbzVH0=
Subject key identifier: 24:BA:35:9C:6F:31:19:2C:02:A6:DC:56:38:07:51:90:94:72:0A:7B
Certificate issuer: /CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Certificate serial: 0186382EB0EEA6E95337CB3548CCC2CE231F
Authority key identifier: B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/JLo1nG8xGSwCptxWOAdRkJRyCns.roa
Signing time: Thu 09 Feb 2023 21:57:09 +0000
ROA not before: Thu 09 Feb 2023 21:57:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40964
IP address blocks: 89.107.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:38:2e:b0:ee:a6:e9:53:37:cb:35:48:cc:c2:ce:23:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Validity
Not Before: Feb 9 21:57:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24ba359c6f31192c02a6dc563807519094720a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e4:e4:b0:11:48:5a:99:4b:88:16:2d:dd:12:
c6:0e:9f:93:2d:60:91:d8:2f:e7:f1:51:b1:7b:8e:
70:a9:8c:99:bf:ff:a9:78:cc:a8:cc:c5:68:44:6c:
f3:c1:57:3a:69:91:d4:50:3d:53:50:29:9f:37:79:
60:85:91:65:f6:a2:08:1b:57:56:37:46:1c:0b:c3:
d3:ad:ad:fa:7f:38:12:fd:46:ff:31:cc:7a:a0:73:
8e:e2:58:d6:71:55:4d:c8:8d:1d:7b:e7:2d:5c:1d:
ba:a3:a4:6c:6d:28:22:38:92:2c:2f:21:2e:f0:d2:
0f:b8:ca:0d:ca:13:6a:65:ca:d8:6a:b7:d7:3d:95:
76:49:47:3b:44:92:1c:46:ee:e8:3a:90:60:32:5a:
c3:3e:0c:c7:f6:f3:a3:ad:c8:3b:49:81:d6:0a:4e:
9c:ec:d6:8f:be:95:46:31:e5:f4:f1:0c:6e:e7:d7:
9f:b6:32:17:69:19:9a:04:a5:98:45:70:b1:ea:f4:
ed:ee:69:c2:f4:80:a0:1e:dc:a8:0f:e4:ab:a7:f6:
f9:93:4f:1a:5e:68:7f:51:7f:7e:82:71:cb:e5:84:
89:25:a8:f1:25:49:20:f1:66:1d:17:75:39:e1:46:
15:4a:80:f7:de:fb:97:a3:ca:c4:0e:70:ed:58:7e:
0a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BA:35:9C:6F:31:19:2C:02:A6:DC:56:38:07:51:90:94:72:0A:7B
X509v3 Authority Key Identifier:
keyid:B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/JLo1nG8xGSwCptxWOAdRkJRyCns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.134.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:e3:ac:72:2a:e9:ad:23:5d:d3:2f:02:22:02:4e:36:f5:94:
35:2a:82:d8:dc:1c:85:2d:09:c3:40:50:d0:6a:81:f8:22:4a:
51:3d:d0:8e:ec:c8:82:94:02:50:59:a1:b9:6a:41:17:d8:92:
72:71:54:81:f9:64:6b:1b:8a:bd:c6:aa:28:f2:1a:82:a9:f8:
31:3c:87:45:95:df:8b:d0:f8:90:95:7d:94:cb:60:7c:a3:f5:
9d:5a:8d:c3:9d:fc:c3:6d:e9:c4:a9:73:36:cd:9b:a9:bf:ea:
69:f8:06:ab:99:3a:09:d3:24:35:2e:89:f0:e3:b3:a9:b3:15:
25:c5:c4:55:46:1a:b2:d1:1f:9a:19:ee:8a:3e:66:74:22:fe:
02:23:a4:ec:44:86:65:01:41:57:d4:71:8d:c4:ac:3d:86:d3:
81:df:7a:c3:ec:91:ad:f2:4c:88:71:68:44:18:b9:5f:8f:aa:
c5:56:58:8c:06:b6:cc:be:bb:e4:c8:09:ab:8f:3e:9d:a0:77:
d1:b8:38:1f:b1:20:ac:24:1b:23:4f:26:87:f7:e2:89:09:4b:
76:a6:93:6d:7e:20:f3:9d:e3:a0:24:1d:a0:b4:d5:aa:1e:17:
2f:55:49:e5:ea:d2:36:19:3a:0a:7f:42:0f:2f:ca:35:ec:11:
22:6b:fa:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:45 2024 by rpki-client on console-fra.rpki-client.org