Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/JVHrnEMV0JBdHS3IfibIkYIth2o.roa
File: JVHrnEMV0JBdHS3IfibIkYIth2o.roa (raw, json)
Hash identifier: nAL5EyqxRiuU4uTzgpjqBcSt8ie/xwRdBhoYvaCbTGs=
Subject key identifier: 25:51:EB:9C:43:15:D0:90:5D:1D:2D:C8:7E:26:C8:91:82:2D:87:6A
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 018572281979D36A43BE1021BF92F645A33D
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/JVHrnEMV0JBdHS3IfibIkYIth2o.roa
Signing time: Mon 02 Jan 2023 11:05:08 +0000
ROA not before: Mon 02 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42233
IP address blocks: 81.19.134.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:19:79:d3:6a:43:be:10:21:bf:92:f6:45:a3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 2 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2551eb9c4315d0905d1d2dc87e26c891822d876a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:07:2d:5e:d6:d7:67:fe:ac:e5:07:70:ec:b8:
43:ba:39:84:f1:e8:98:81:7d:9f:fb:53:34:09:3e:
94:45:27:e9:6b:20:d7:b3:84:d8:15:32:3d:a3:f4:
9c:eb:71:86:f5:0c:ec:8a:82:d2:94:d5:b4:34:ff:
ec:8b:29:22:ea:ea:d9:46:ac:e7:a3:0c:de:50:9e:
b8:0e:d1:db:a9:e7:cf:0d:05:27:8f:62:ed:f2:84:
ff:e7:1b:58:10:e2:14:c8:74:1b:59:0e:3f:7e:cc:
2b:80:33:1e:86:23:0e:17:cd:7c:34:84:a3:19:ac:
92:20:c4:02:10:b0:f7:0b:81:5a:e3:d5:cd:89:de:
b0:16:3d:61:8f:d1:cc:5e:b8:99:ff:a0:7e:00:29:
69:e5:ab:93:10:9f:b2:da:62:d3:0b:79:52:60:e1:
ca:96:ad:5e:88:46:de:e0:d1:24:2b:f2:2b:49:93:
1e:0c:e7:bb:16:6e:5c:7b:ae:ff:e3:7f:00:c8:6f:
ae:5a:f0:af:af:06:48:bb:a5:cd:f4:8c:ae:28:36:
9d:c4:95:1d:4d:fe:14:fa:26:c4:e6:e2:3c:dc:5a:
d9:a3:3e:8b:94:e9:6c:78:17:10:64:8c:bb:09:ab:
22:17:ba:58:2e:a4:4c:41:38:67:18:5e:35:7e:75:
3b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:51:EB:9C:43:15:D0:90:5D:1D:2D:C8:7E:26:C8:91:82:2D:87:6A
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/JVHrnEMV0JBdHS3IfibIkYIth2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
56:d8:bf:6f:4e:1a:a0:41:05:bc:32:4a:fa:d8:98:29:b5:dd:
5a:7a:86:01:8b:f6:93:a7:f3:5f:ef:3f:b5:ef:22:b2:5c:26:
f6:1d:e8:7b:2b:8d:fc:f4:c9:7f:97:4f:6f:35:71:3b:4e:47:
af:ea:34:bc:93:03:61:ad:8f:01:91:46:ef:44:6e:ce:0c:54:
e5:bc:f8:f5:11:d4:04:b6:48:26:cf:a4:60:f9:64:c6:96:80:
ec:5c:7a:b0:94:21:83:5c:69:23:f9:08:f1:b0:45:31:a6:d3:
83:07:aa:54:5a:10:78:3e:bd:26:14:cb:35:ba:8f:3a:66:5e:
0a:fe:9c:73:51:99:0d:77:18:bc:f9:fe:fa:9c:5d:45:26:68:
84:3c:31:12:ad:d8:ae:55:3e:f0:44:3c:11:41:2c:cf:3f:96:
86:55:f7:c5:80:b3:8c:77:16:01:53:a8:d4:72:22:71:e3:44:
ba:4f:a3:f9:2d:26:d6:04:e4:e9:88:5e:b0:60:0d:4f:e0:15:
0c:d5:1a:f2:c0:8e:56:5a:ad:07:28:d3:70:c7:00:51:e3:13:
3c:22:85:26:f1:3d:1a:78:42:d0:d2:33:8c:2f:4a:42:5a:cd:
5b:6d:f2:89:38:d5:ef:7d:fd:e5:5c:74:e8:14:0e:d3:e7:54:
91:d4:a4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org