Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/jomyjNni8bux8tPDqnhqRCcVyzM.roa
File: jomyjNni8bux8tPDqnhqRCcVyzM.roa (raw, json)
Hash identifier: rKVEirsSyWsL3RdwF5/fzBvU6lThGjl4tYX7gvNP1N4=
Subject key identifier: 8E:89:B2:8C:D9:E2:F1:BB:B1:F2:D3:C3:AA:78:6A:44:27:15:CB:33
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 01856F14D15AE6FD1A1FD2C8A80333580BB3
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/jomyjNni8bux8tPDqnhqRCcVyzM.roa
Signing time: Sun 01 Jan 2023 20:45:13 +0000
ROA not before: Sun 01 Jan 2023 20:45:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60392
IP address blocks: 139.45.212.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d1:5a:e6:fd:1a:1f:d2:c8:a8:03:33:58:0b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Jan 1 20:45:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e89b28cd9e2f1bbb1f2d3c3aa786a442715cb33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:a8:e1:e8:51:f4:3a:1a:58:b7:c3:7a:a1:
ba:8c:63:a0:a2:67:17:16:fd:c9:e0:c3:1f:e6:03:
f5:5f:84:18:d8:8b:a0:5e:19:67:61:23:77:61:de:
08:ec:04:28:43:5d:1d:49:5e:1a:f6:a9:01:57:7d:
01:77:6e:a0:97:ee:bf:e7:28:d8:a1:49:35:3c:a3:
62:68:c9:1e:f6:db:29:d3:a6:ee:81:a0:19:13:a8:
91:7b:d8:09:ec:d2:89:45:76:51:dd:46:4f:17:54:
74:ec:24:b1:25:0e:f6:82:81:b1:10:53:9f:04:80:
c0:4d:27:8e:19:2f:1a:06:d3:51:5a:b7:2d:d8:ee:
b4:0f:23:7c:af:82:1b:9d:9f:f6:dc:bf:9a:bd:c7:
20:42:ae:ac:c7:11:29:73:f6:33:3e:6f:b5:68:59:
a5:30:ce:48:1c:80:45:d4:34:fd:6d:5f:f4:9c:6e:
42:fb:e1:d6:70:cf:d6:01:a9:7d:d5:30:a3:10:87:
c0:63:f5:b0:de:b8:31:b2:f5:51:60:53:47:10:7a:
ce:0b:a6:5a:77:73:fb:ba:b4:28:2d:d9:e3:bf:60:
f8:ce:1b:2f:b5:8a:f9:fb:db:37:f5:14:48:48:20:
3f:7d:aa:62:0b:f7:ef:fc:dc:21:41:67:f7:a9:19:
b4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:89:B2:8C:D9:E2:F1:BB:B1:F2:D3:C3:AA:78:6A:44:27:15:CB:33
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/jomyjNni8bux8tPDqnhqRCcVyzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.212.0/23
Signature Algorithm: sha256WithRSAEncryption
41:64:96:10:24:13:a9:20:73:12:a7:ef:ca:ac:b2:1b:ef:46:
9d:18:c8:33:b6:9e:7f:f3:10:bc:c7:ed:f4:de:3d:b2:59:59:
9e:ce:8b:59:41:b1:40:c7:46:6c:ab:2f:6d:e7:53:7c:19:c8:
31:68:29:a9:ce:8d:e5:e7:33:5c:03:41:f1:3b:c3:70:ef:6b:
f6:69:07:84:da:bb:57:c2:b7:a1:91:83:3e:66:e0:97:e8:55:
26:50:a8:0c:74:34:e5:81:97:82:1e:ef:d0:8e:49:8e:4a:53:
47:35:b8:e8:72:c6:73:da:16:95:68:00:96:bd:a0:75:34:5d:
d4:6b:dc:ad:7f:bd:ad:47:41:02:2b:f4:2e:cd:a9:d5:f6:71:
98:3e:54:ac:20:65:84:de:c1:bd:32:13:bd:c8:eb:67:9e:99:
9e:3a:7a:14:f4:cd:82:ed:3d:eb:bd:f7:78:37:0a:be:97:ff:
11:18:09:a0:d3:d7:ef:ac:f6:9b:8f:b5:d6:cf:72:d5:4c:32:
f3:16:96:24:c9:0c:4d:93:00:06:ec:11:16:0e:97:46:5a:4d:
fb:97:bb:91:82:26:8a:a3:36:dd:43:f8:20:83:7f:32:99:9c:
f7:17:97:50:e0:ad:0c:78:ef:92:06:dd:34:07:b7:fd:7c:5b:
d5:5c:82:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org