Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JFIQMM8XX53Maq3QuaZ67eJbJi4.roa
File: JFIQMM8XX53Maq3QuaZ67eJbJi4.roa (raw, json)
Hash identifier: eOIHUAo8Id9EReKwRIUDlvDK9YzyxBABC+oaVwsZkGY=
Subject key identifier: 24:52:10:30:CF:17:5F:9D:CC:6A:AD:D0:B9:A6:7A:ED:E2:5B:26:2E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BD5BEFB69D075289C84092E6CE32BB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JFIQMM8XX53Maq3QuaZ67eJbJi4.roa
Signing time: Tue 02 Jan 2024 10:34:39 +0000
ROA not before: Tue 02 Jan 2024 10:34:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398355
IP address blocks: 2a0e:b107:14ff::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 02:17:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bd:5b:ef:b6:9d:07:52:89:c8:40:92:e6:ce:32:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24521030cf175f9dcc6aadd0b9a67aede25b262e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b0:74:6b:55:0c:57:26:a2:8b:2f:2c:3e:98:
0f:32:34:5a:e4:5b:a7:12:eb:09:75:dd:7d:9f:4c:
53:ea:8e:57:66:5e:54:22:0f:40:7f:32:45:08:0b:
10:9b:87:9e:69:ef:d8:e2:e6:f0:ad:d5:ee:53:ea:
92:7e:2e:74:7d:ed:ff:5a:d5:d7:bc:72:ad:5e:8d:
af:f6:d0:83:98:75:59:2d:b6:e8:b3:7f:07:36:2c:
e5:d1:53:ef:2d:43:7f:49:20:6f:43:87:c2:8f:54:
b3:ff:14:b9:6a:97:9a:41:b1:f9:aa:18:91:06:fa:
4b:18:6d:bf:bd:36:99:51:4d:21:b9:b7:f3:2c:17:
f4:eb:e3:9b:0a:83:76:ac:23:d0:65:ac:59:8f:45:
ba:2b:e3:a7:70:4d:6b:2c:93:e4:6d:7c:ea:88:a1:
22:9d:18:fc:f0:45:28:66:86:96:ff:0f:0d:2c:22:
22:ba:6c:27:dd:d6:6e:48:05:40:3b:6e:0d:59:f8:
e4:b0:17:da:29:27:01:64:e7:fb:98:48:0d:eb:1f:
2a:bc:c5:cd:f4:1a:4b:80:d5:2e:99:81:b7:52:d9:
82:08:e2:ff:9d:2d:78:1e:16:ba:cc:f5:26:82:1f:
c7:8b:f3:62:a6:61:ca:bc:34:e3:08:96:96:67:5c:
96:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:52:10:30:CF:17:5F:9D:CC:6A:AD:D0:B9:A6:7A:ED:E2:5B:26:2E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JFIQMM8XX53Maq3QuaZ67eJbJi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:14ff::/48
Signature Algorithm: sha256WithRSAEncryption
89:f4:57:b4:05:24:1b:37:ca:f6:1c:fa:57:8f:bd:a8:09:6b:
d7:a8:65:52:e3:7a:76:8e:6c:ba:dd:d0:05:00:a2:7a:47:69:
42:83:95:51:7b:11:f6:43:bf:0e:35:d3:80:ee:a6:bf:9f:3c:
8f:bd:ea:e4:30:0b:19:a6:24:a7:ce:99:0d:1c:0b:b4:81:33:
91:36:d4:53:b8:88:71:a1:96:33:26:94:2e:25:59:f5:93:1b:
88:c8:a1:a6:a4:b1:01:d7:24:4c:8f:8c:d0:5a:2b:6d:9c:b2:
57:e6:ea:cc:83:6d:d8:c3:50:bd:f1:f2:ea:bf:03:2e:a4:21:
8b:28:8f:0e:c1:b5:a4:b7:2d:a0:e9:75:79:37:ec:10:a9:8a:
79:60:af:d1:7b:8b:4c:df:43:30:81:58:0f:f5:61:86:49:bf:
f9:9e:42:27:28:f9:1f:64:7f:2e:7c:0b:7a:1e:df:cb:e1:4f:
84:f5:d1:6d:a3:91:84:45:5c:b7:27:53:1f:92:7a:f7:4b:4b:
22:41:75:8e:f9:2f:60:49:38:7d:9b:c0:ca:cf:0d:1c:b2:a9:
b5:90:ad:6d:e1:b5:54:c4:d4:58:20:1c:df:91:6e:da:6b:c4:
2c:05:40:15:c4:d6:65:1e:6b:3a:b7:40:17:ec:a6:8d:37:aa:
8c:5f:74:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 03:07:54 2024 by rpki-client on console-ams.rpki-client.org