Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/Jf7YYh_UQfd2XbHP5cqdfhF1YTI.roa
File: Jf7YYh_UQfd2XbHP5cqdfhF1YTI.roa (raw, json)
Hash identifier: 7vltu1eNEJGMgF/GNux5I59Sf4sTmFNw57XWGDtZzcA=
Subject key identifier: 25:FE:D8:62:1F:D4:41:F7:76:5D:B1:CF:E5:CA:9D:7E:11:75:61:32
Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Certificate serial: 018570027C272100A782A53ECB8D358E2600
Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/Jf7YYh_UQfd2XbHP5cqdfhF1YTI.roa
Signing time: Mon 02 Jan 2023 01:04:48 +0000
ROA not before: Mon 02 Jan 2023 01:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6736
IP address blocks: 85.132.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:7c:27:21:00:a7:82:a5:3e:cb:8d:35:8e:26:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b
Validity
Not Before: Jan 2 01:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25fed8621fd441f7765db1cfe5ca9d7e11756132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:50:97:5e:27:2a:13:55:5b:0c:83:62:38:f5:
ea:9d:a7:19:35:0e:be:9a:14:c6:3a:db:3b:28:49:
45:08:75:c9:43:a9:b3:f1:6f:bd:85:4e:ac:4d:d6:
48:89:d9:2d:f3:b4:0d:dc:a6:fa:32:bc:c3:07:48:
e6:56:f8:86:2a:eb:63:bb:05:58:10:fb:0c:1f:aa:
ff:0d:69:69:19:00:4f:2a:d9:ca:63:7d:90:57:d7:
f3:e3:25:65:9b:d2:97:4b:eb:cc:b8:2a:b0:9a:01:
1b:da:4a:0d:3b:4c:fe:28:33:9c:70:ac:db:14:60:
fb:3a:fc:6e:83:01:22:b8:f2:db:a5:6f:f7:8b:0c:
19:d4:81:ec:53:2a:f6:ad:86:6e:64:44:fb:00:0d:
7d:d6:b1:b5:9d:41:dd:69:cb:3d:3e:a3:d1:4d:28:
75:cf:4f:c4:fa:f1:7f:89:01:6b:7f:a4:44:4e:c8:
12:4c:e9:29:05:ac:4a:e5:59:32:5c:59:40:87:ef:
49:1a:16:01:cf:48:b0:4d:a9:29:f1:d0:c5:e0:b6:
f5:db:50:62:69:73:5f:59:71:b5:30:3f:5d:1c:63:
3c:06:7f:bf:b4:c4:2c:b7:14:71:90:03:e5:9b:f3:
2c:1f:62:e6:b5:8f:fb:30:9f:83:cc:00:56:d7:2c:
20:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FE:D8:62:1F:D4:41:F7:76:5D:B1:CF:E5:CA:9D:7E:11:75:61:32
X509v3 Authority Key Identifier:
keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/Jf7YYh_UQfd2XbHP5cqdfhF1YTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.132.50.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:15:0f:ef:a5:ed:ef:d4:8b:38:a7:48:01:78:68:a6:96:57:
54:de:44:e4:71:f8:dc:76:a6:06:db:3e:80:4a:0d:2c:13:9c:
35:d5:8c:80:57:6a:a1:fb:36:c0:71:bd:a3:78:5f:7b:be:13:
f0:3e:ae:c8:bc:8e:8e:ca:e5:af:63:7c:22:a8:ec:47:76:99:
e7:75:fc:ec:12:6a:30:9f:f9:60:99:41:8a:fa:cc:e5:2f:2f:
11:85:e5:cb:5b:f8:d7:d0:c1:eb:04:45:c0:50:55:8c:b8:15:
f2:f4:34:b0:c6:3d:df:ee:28:98:ce:2f:19:c8:cb:b8:f3:97:
9e:cf:36:b2:fc:fb:8e:7f:ea:d8:7e:a9:4c:08:46:58:89:d2:
f1:20:11:ea:41:e6:49:cd:45:bf:01:c9:1e:82:1e:3b:cd:e4:
f2:34:5e:2e:c7:19:7e:da:f2:c5:ba:85:90:e1:db:a4:44:ed:
b7:a9:d3:3a:68:19:9d:f2:19:4f:4c:b3:b2:e4:0c:fd:ae:d1:
38:83:c5:a1:b9:cb:02:8a:05:c9:23:98:0d:cd:1f:09:ea:cd:
fe:77:af:b7:59:00:28:e6:df:1f:0d:88:a0:b5:11:ac:42:f7:
4b:cf:de:75:1e:c4:f3:f8:b5:77:15:23:86:41:71:1e:63:5a:
79:90:2b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:46 2024 by rpki-client on console-fra.rpki-client.org