Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c3328e-1ce9-4e38-9eca-2324977c9393/1/JX8YCLas0cbjmm8kU3riTB3F8iE.roa
File: JX8YCLas0cbjmm8kU3riTB3F8iE.roa (raw, json)
Hash identifier: hBl/Bcb4CYmlWBUQrOfzlSVD9lzZTkUjkma1giwfB90=
Subject key identifier: 25:7F:18:08:B6:AC:D1:C6:E3:9A:6F:24:53:7A:E2:4C:1D:C5:F2:21
Certificate issuer: /CN=608e6a6a54017dd3b9b2cce35fd5a9a7f2a45498
Certificate serial: 01856C1C977BF3CBC1A50B3D60AD2EBE95B1
Authority key identifier: 60:8E:6A:6A:54:01:7D:D3:B9:B2:CC:E3:5F:D5:A9:A7:F2:A4:54:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YI5qalQBfdO5sszjX9Wpp_KkVJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c3328e-1ce9-4e38-9eca-2324977c9393/1/JX8YCLas0cbjmm8kU3riTB3F8iE.roa
Signing time: Sun 01 Jan 2023 06:54:51 +0000
ROA not before: Sun 01 Jan 2023 06:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42833
IP address blocks: 5.104.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:97:7b:f3:cb:c1:a5:0b:3d:60:ad:2e:be:95:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=608e6a6a54017dd3b9b2cce35fd5a9a7f2a45498
Validity
Not Before: Jan 1 06:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=257f1808b6acd1c6e39a6f24537ae24c1dc5f221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:ca:76:78:96:68:7c:24:45:be:9a:f3:01:
91:aa:07:01:97:c6:3a:66:a8:b7:f0:78:ca:95:d6:
e2:32:79:3b:6a:aa:e3:e6:87:07:06:2b:c9:de:cf:
44:74:e9:3f:85:ea:09:54:40:f6:f1:0d:ed:eb:db:
6e:b1:e5:b3:0a:f9:13:44:cf:55:91:e0:66:ae:10:
25:fb:83:d0:50:4c:8e:d1:a0:7c:2c:89:38:9e:d4:
35:f8:5d:76:78:df:4d:76:90:9e:7a:5f:c7:68:bc:
76:40:97:46:db:32:1d:6b:68:17:d1:99:79:75:5d:
b0:27:c2:8d:bd:a2:06:55:4d:17:26:dd:8c:12:0b:
b8:ab:c2:e2:28:8d:20:ef:4b:5e:da:ee:bf:35:23:
c3:fd:72:42:00:93:e4:45:3b:68:70:20:f3:f0:d6:
ce:2d:f8:61:05:91:c8:2d:eb:b5:e3:b9:a5:36:a1:
aa:05:9c:13:73:46:11:bf:e2:ed:fe:0e:21:93:04:
3c:36:1a:99:4e:ba:bb:92:45:fe:3d:11:e8:b4:55:
49:64:36:be:a4:a6:99:1e:83:c8:be:ae:55:e8:1f:
d0:42:a4:9b:d4:4c:4e:47:06:d8:46:c1:92:0f:92:
68:35:a5:f6:dd:a9:c5:c2:b3:82:7d:c7:d7:b6:06:
43:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7F:18:08:B6:AC:D1:C6:E3:9A:6F:24:53:7A:E2:4C:1D:C5:F2:21
X509v3 Authority Key Identifier:
keyid:60:8E:6A:6A:54:01:7D:D3:B9:B2:CC:E3:5F:D5:A9:A7:F2:A4:54:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YI5qalQBfdO5sszjX9Wpp_KkVJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c3328e-1ce9-4e38-9eca-2324977c9393/1/JX8YCLas0cbjmm8kU3riTB3F8iE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c3328e-1ce9-4e38-9eca-2324977c9393/1/YI5qalQBfdO5sszjX9Wpp_KkVJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.31.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c4:ab:ed:f9:00:66:d4:66:0d:f5:87:97:f2:e5:32:7c:34:
d2:12:7d:45:eb:58:05:65:fa:9c:27:d5:5a:39:58:1a:7e:3f:
99:cc:de:98:cc:74:dd:06:7b:d3:bd:b4:72:9a:61:7b:5a:ff:
9c:24:59:10:af:57:83:ed:d1:55:58:ba:b4:9e:89:f4:de:8c:
4f:90:ad:68:c8:d4:8a:e1:4a:f6:9e:32:77:95:f8:3f:7a:43:
a5:25:d3:92:16:a4:ca:5e:91:00:39:e4:84:1b:5c:27:ef:2a:
43:17:68:de:56:0c:b1:48:23:82:dd:b5:a5:73:db:71:ce:29:
03:ad:60:d8:1a:e7:30:2b:8a:86:23:e7:db:c3:97:2b:2a:8b:
33:70:13:29:00:ab:ac:97:16:7e:47:f0:42:a8:a8:da:c3:02:
b0:a5:df:bf:a1:6d:6d:20:92:0c:1e:98:8c:b7:cc:6c:17:a5:
a5:e6:a8:40:60:2e:7a:19:17:7b:f7:dd:53:d5:d0:c1:5a:4f:
39:58:c6:c2:e2:80:59:66:5b:1f:f1:4f:f8:12:d0:6a:34:28:
0c:c2:53:73:59:8c:c6:2a:b2:4d:02:ec:d5:fa:a7:dc:77:19:
28:48:c1:c4:f7:f7:f5:37:1e:1c:80:fb:df:49:4d:46:55:69:
47:81:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:25 2024 by rpki-client on console-ams.rpki-client.org