Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2c3a30-5498-447d-8d39-25b6bd2e1e43/1/JlDhTWoDUe506CmOxyzs6CaRHCI.roa
File: JlDhTWoDUe506CmOxyzs6CaRHCI.roa (raw, json)
Hash identifier: N0sc7/uLPgMfK1yq/Qmw8TMd6d+iaeXHRDA0wyiMz2o=
Subject key identifier: 26:50:E1:4D:6A:03:51:EE:74:E8:29:8E:C7:2C:EC:E8:26:91:1C:22
Certificate issuer: /CN=802fa5b984226183201b701596b0368a27ca9196
Certificate serial: 0189AAF2BEC38AB1B0902D28F8FDF34B4DF6
Authority key identifier: 80:2F:A5:B9:84:22:61:83:20:1B:70:15:96:B0:36:8A:27:CA:91:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gC-luYQiYYMgG3AVlrA2iifKkZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2c3a30-5498-447d-8d39-25b6bd2e1e43/1/JlDhTWoDUe506CmOxyzs6CaRHCI.roa
Signing time: Mon 31 Jul 2023 07:56:22 +0000
ROA not before: Mon 31 Jul 2023 07:56:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209363
IP address blocks: 185.253.124.0/22 maxlen: 22
193.34.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:aa:f2:be:c3:8a:b1:b0:90:2d:28:f8:fd:f3:4b:4d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802fa5b984226183201b701596b0368a27ca9196
Validity
Not Before: Jul 31 07:56:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2650e14d6a0351ee74e8298ec72cece826911c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6e:b4:ba:64:b6:8f:f6:96:b4:f5:40:64:6b:
57:bf:b6:b6:e8:b8:02:10:67:74:d6:1b:a4:f5:a4:
f5:5c:33:23:d9:eb:36:fd:1f:f2:1d:10:5a:23:62:
65:b2:57:ab:16:b7:34:7f:c7:db:f5:92:f5:f6:a8:
cf:26:08:9c:75:60:af:ab:41:8e:40:99:fa:62:d8:
3d:06:b7:80:96:81:ee:77:51:75:d9:54:be:9a:72:
1b:aa:41:12:f7:8e:ba:10:92:b5:59:5c:af:ec:4d:
26:83:37:d9:ee:a1:2a:b8:ff:c3:6b:c0:6c:56:ee:
29:51:2b:38:62:6a:5a:45:c6:56:42:d5:77:d1:0f:
35:d6:5b:29:f0:0e:f9:1c:44:c5:10:6f:c9:08:06:
2c:e3:82:2b:97:d4:81:ce:b5:1e:92:3a:c0:ed:b8:
73:46:d4:d6:94:85:5d:75:cb:44:58:7c:a5:7b:03:
49:ec:3f:c8:fe:3a:db:45:64:50:09:e8:cd:96:b5:
54:bd:e0:a5:21:33:47:b3:5f:4a:07:af:a8:83:11:
0d:1f:5d:98:42:fd:d2:b0:3a:7b:e3:1b:66:fc:e3:
00:fd:43:25:66:26:1b:39:e0:c6:1e:bb:9b:07:ee:
fa:0a:20:42:0d:32:28:24:a0:8f:7f:0c:bf:53:3f:
50:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:50:E1:4D:6A:03:51:EE:74:E8:29:8E:C7:2C:EC:E8:26:91:1C:22
X509v3 Authority Key Identifier:
keyid:80:2F:A5:B9:84:22:61:83:20:1B:70:15:96:B0:36:8A:27:CA:91:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gC-luYQiYYMgG3AVlrA2iifKkZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2c3a30-5498-447d-8d39-25b6bd2e1e43/1/JlDhTWoDUe506CmOxyzs6CaRHCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2c3a30-5498-447d-8d39-25b6bd2e1e43/1/gC-luYQiYYMgG3AVlrA2iifKkZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.124.0/22
193.34.148.0/23
Signature Algorithm: sha256WithRSAEncryption
06:69:64:5f:7a:14:b3:56:ba:20:15:0f:02:a3:14:69:6b:5b:
dc:4d:45:c4:4d:46:0d:64:d3:b0:ca:8b:3e:2c:c3:8b:cf:05:
8d:ab:7e:0d:6e:1a:85:a4:dd:a0:08:5c:45:b8:0d:81:9a:5f:
bc:a2:38:f2:7a:74:b7:f2:93:8b:07:7c:f4:9a:da:0c:fa:8e:
e1:09:17:bd:01:1c:45:4c:e0:5a:1c:f4:56:a6:15:c0:7c:d3:
56:06:72:af:d9:b8:cd:e9:96:93:1c:f7:cc:6b:e7:d4:81:26:
9b:6c:af:4a:4f:44:5b:6d:79:86:d2:f4:a9:35:f8:3d:c3:e6:
37:e9:85:ca:81:2b:be:58:ae:10:09:cd:9f:e7:76:9a:ac:48:
21:23:da:9b:2a:d0:14:f0:87:d5:00:4b:41:36:8f:94:e2:e7:
15:7a:be:7a:43:bf:39:1d:f9:2f:85:af:59:df:78:7d:7f:90:
09:57:5d:c8:c5:61:6b:b0:e4:2e:a5:5f:00:cb:b5:32:70:f1:
d1:e0:82:08:68:26:8a:d0:33:d4:f1:46:8b:18:e7:91:01:7c:
e1:96:70:8b:c8:ac:59:06:7e:a7:f6:7e:bc:a8:3e:f3:9a:60:
00:cf:64:ed:5c:2d:82:c0:2e:35:c7:88:4b:74:4c:5a:a0:78:
b8:d8:68:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:36 2024 by rpki-client on console-ams.rpki-client.org