Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/JyLI_D41uZqxc2rf18tXNBp3Fy8.roa
File: JyLI_D41uZqxc2rf18tXNBp3Fy8.roa (raw, json)
Hash identifier: qs3YZ04Ats+G4DmYa9Y6IEa5PB6sS2yuxisU66Yt+OA=
Subject key identifier: 27:22:C8:FC:3E:35:B9:9A:B1:73:6A:DF:D7:CB:57:34:1A:77:17:2F
Certificate issuer: /CN=9a6cdbf475113f96ca78a07afbd4458c88880771
Certificate serial: 01942747B78ECD20F49DC64DAD98511AA366
Authority key identifier: 9A:6C:DB:F4:75:11:3F:96:CA:78:A0:7A:FB:D4:45:8C:88:88:07:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmzb9HURP5bKeKB6-9RFjIiIB3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/JyLI_D41uZqxc2rf18tXNBp3Fy8.roa
Signing time: Thu 02 Jan 2025 13:49:58 +0000
ROA not before: Thu 02 Jan 2025 13:49:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215792
IP address blocks: 185.92.204.0/22 maxlen: 22
2a13:a3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 18 Jan 2025 19:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:b7:8e:cd:20:f4:9d:c6:4d:ad:98:51:1a:a3:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a6cdbf475113f96ca78a07afbd4458c88880771
Validity
Not Before: Jan 2 13:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2722c8fc3e35b99ab1736adfd7cb57341a77172f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:a9:ad:5f:0a:4e:40:1f:14:15:f8:2c:03:
6c:d1:d3:ed:0b:b5:40:c7:dd:ba:85:96:d9:88:5b:
73:b7:01:ec:c7:d0:56:8b:67:ee:64:c4:c5:d5:1a:
c6:78:35:d8:ab:03:83:d3:46:10:d5:a7:46:d9:6b:
fc:65:fd:e4:4f:d9:93:4a:e7:34:ec:f9:e6:28:a4:
84:19:7b:0b:70:c1:a4:af:88:9d:73:d9:6b:50:5f:
9e:1a:e8:c1:fe:6c:a2:25:59:a4:1e:56:4b:b4:8c:
6d:64:fd:67:9e:39:64:61:a5:90:3b:a4:a6:00:e8:
f6:9c:53:68:ec:b2:41:42:85:42:0f:f9:a3:d4:29:
59:aa:9f:d4:05:76:dd:0f:da:ed:4e:c5:37:8a:95:
65:6d:22:d0:d2:da:32:5d:7d:36:3f:17:63:05:05:
63:a5:12:3c:cd:44:22:10:ce:37:8d:84:ac:51:9a:
5d:18:24:f4:5c:80:ba:97:79:68:6f:17:88:05:b9:
3d:93:6c:8d:f0:b9:63:6a:6a:19:e2:48:6b:74:25:
50:85:63:73:32:27:a9:ce:86:95:32:bb:47:f1:90:
72:ba:3e:8b:06:3e:a4:0d:a9:05:d2:12:1b:76:1d:
f5:e3:cc:bb:64:96:2d:7f:00:6a:7b:58:bb:0c:73:
a7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:22:C8:FC:3E:35:B9:9A:B1:73:6A:DF:D7:CB:57:34:1A:77:17:2F
X509v3 Authority Key Identifier:
keyid:9A:6C:DB:F4:75:11:3F:96:CA:78:A0:7A:FB:D4:45:8C:88:88:07:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmzb9HURP5bKeKB6-9RFjIiIB3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/JyLI_D41uZqxc2rf18tXNBp3Fy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/mmzb9HURP5bKeKB6-9RFjIiIB3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.204.0/22
IPv6:
2a13:a3c0::/29
Signature Algorithm: sha256WithRSAEncryption
81:72:6d:a4:0b:5c:ea:e3:c8:9d:2e:22:88:1e:56:d9:4b:4a:
3a:44:38:e6:01:e2:26:27:0d:35:90:63:5a:62:fa:0d:c9:5d:
a3:e4:bb:e8:7b:87:3f:04:02:f6:a1:39:97:9e:18:1a:46:39:
05:7e:4e:41:c1:4f:0a:88:2a:b3:6d:c4:bc:86:65:84:d0:68:
85:8e:bd:30:17:8a:20:f3:66:c4:8e:f7:7a:13:b0:4e:35:8e:
8f:5b:64:86:58:fe:4b:f2:bf:8b:7b:52:7e:9c:7d:c6:da:a5:
b1:6e:29:79:3b:95:5b:50:55:ea:a8:a9:57:94:0c:e5:9c:61:
c9:b9:23:2e:1f:1b:3e:26:37:44:d9:cc:53:16:ec:12:22:45:
5f:d1:4e:cb:4b:a9:22:ca:41:15:fe:78:b2:2a:f0:a9:ef:23:
2b:61:1e:25:57:a3:1f:25:b1:cb:2a:e6:f0:ee:b4:4b:d4:b1:
d2:5d:37:34:78:8b:db:6c:a0:2f:60:c0:36:ce:45:f4:04:4f:
c1:f3:17:76:1e:b7:eb:fe:c2:19:9c:07:cd:57:6f:e4:2d:73:
b8:f4:c9:a9:26:f4:ee:08:72:2d:15:0e:9c:9c:0e:fd:e5:f3:
16:20:94:a9:ec:1e:10:f7:df:4a:12:bd:59:8b:a7:2f:ad:47:
60:81:29:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:43:30 2025 by rpki-client