Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/JD-HSvkbKPf6vWc7jSaQ5oPC6b0.roa
File: JD-HSvkbKPf6vWc7jSaQ5oPC6b0.roa (raw, json)
Hash identifier: 8DNdhyNKNA/27mGAaDbkw/SKQG1cDOZo6eXhHh6FjDo=
Subject key identifier: 24:3F:87:4A:F9:1B:28:F7:FA:BD:67:3B:8D:26:90:E6:83:C2:E9:BD
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 0186D68877531455DABCD0150CAE535ED036
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/JD-HSvkbKPf6vWc7jSaQ5oPC6b0.roa
Signing time: Sun 12 Mar 2023 15:55:13 +0000
ROA not before: Sun 12 Mar 2023 15:55:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35562
IP address blocks: 193.110.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 26 May 2023 14:58:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d6:88:77:53:14:55:da:bc:d0:15:0c:ae:53:5e:d0:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Mar 12 15:55:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=243f874af91b28f7fabd673b8d2690e683c2e9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:40:fa:14:d9:fa:f6:16:31:1a:ee:3c:66:6d:
13:78:91:25:0f:46:92:16:d8:1e:02:4a:fe:3e:e8:
32:f2:9b:af:80:14:2d:b0:7e:3b:28:82:aa:2f:90:
e9:cf:de:58:ff:b1:73:f5:2b:5a:83:dc:3e:64:f5:
26:7e:61:63:7e:20:df:bb:c2:06:3a:64:ea:2e:6a:
9f:63:97:37:91:bf:d9:b9:b5:7e:d7:04:0a:97:08:
fa:0c:ea:a6:4c:af:cc:36:38:83:66:cd:8c:2a:e6:
fe:90:06:f8:c7:4c:7b:1c:7f:31:18:d4:7c:e3:1f:
c5:f4:ce:68:4a:69:a6:26:fc:8c:12:c2:c3:53:0a:
77:1c:e9:69:ef:7b:1a:a1:21:18:e0:67:47:68:01:
6a:d8:4d:6b:81:8e:cc:c5:e9:ae:a7:cf:4f:78:39:
8e:b1:ab:66:7f:ff:33:1d:42:81:db:4e:60:c5:54:
76:aa:d1:71:f4:2b:1b:52:ac:d4:d6:58:00:ac:56:
5d:ec:1a:fc:b7:6f:9f:15:19:90:8d:d6:11:2d:39:
8a:e8:01:6f:e0:8a:b4:9a:19:eb:e5:a3:06:9b:b4:
13:29:7e:0b:45:ca:54:44:2d:c8:1a:d2:53:03:49:
2d:b6:6b:95:e1:00:d7:20:08:cb:2a:6c:bd:8d:fb:
61:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3F:87:4A:F9:1B:28:F7:FA:BD:67:3B:8D:26:90:E6:83:C2:E9:BD
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/JD-HSvkbKPf6vWc7jSaQ5oPC6b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.20.0/22
Signature Algorithm: sha256WithRSAEncryption
02:4e:e8:e3:78:ed:35:51:d8:61:96:04:af:28:6b:14:78:75:
77:03:f6:2c:ab:1c:b3:c4:ff:7a:eb:4e:02:57:67:6d:56:78:
28:8e:80:24:69:75:03:cc:82:af:93:ef:31:e1:10:91:2a:b9:
c6:ba:b7:46:c9:88:e2:a3:56:a5:ea:2a:b8:9f:8b:6d:29:e3:
43:94:98:f6:06:54:fa:b8:03:f1:8f:64:6b:ce:98:03:a4:22:
6c:dd:f0:78:8b:6b:6a:99:0c:ad:df:0b:8c:af:38:29:3f:ad:
ef:a0:d4:6b:f1:ca:09:cb:f3:62:77:0a:08:e1:d4:13:2b:29:
4e:11:d7:c3:0e:de:5d:e1:33:7b:af:63:7d:61:bf:b0:29:c2:
ad:79:b5:dc:71:af:77:73:93:84:6e:8c:0b:3c:84:9d:d5:48:
ab:f2:aa:aa:a2:03:a5:d8:2f:6f:49:91:e0:80:28:87:51:ec:
3b:e7:71:d3:4f:80:7c:c0:54:4d:1e:91:33:89:c3:95:94:b4:
7b:3c:4e:45:78:89:67:2e:ee:ee:0e:12:4f:9e:b1:7b:d8:67:
06:29:f6:93:89:3a:96:94:36:80:9a:27:6d:46:97:f9:6f:90:
87:12:35:08:52:36:d7:d8:83:76:cd:68:2a:df:48:d4:87:85:
2d:98:cc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:49 2024 by rpki-client on console-ams.rpki-client.org