Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/JELiXgCiDJRWPSNQcuCvobICtyk.roa
File: JELiXgCiDJRWPSNQcuCvobICtyk.roa (raw, json)
Hash identifier: +vIYC2TIYReyGQOev0xvy11r5nLDd2/eG0f8e/99IOs=
Subject key identifier: 24:42:E2:5E:00:A2:0C:94:56:3D:23:50:72:E0:AF:A1:B2:02:B7:29
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 019165E3A28DDCEC297760294DF8B6C06D6E
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/JELiXgCiDJRWPSNQcuCvobICtyk.roa
Signing time: Sun 18 Aug 2024 14:28:22 +0000
ROA not before: Sun 18 Aug 2024 14:28:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.96.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 09:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:65:e3:a2:8d:dc:ec:29:77:60:29:4d:f8:b6:c0:6d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Aug 18 14:28:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2442e25e00a20c94563d235072e0afa1b202b729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:75:99:49:5f:47:53:fa:72:07:c5:5c:44:40:
3c:80:77:a1:57:56:20:6d:f9:e3:8f:a7:43:b1:63:
05:ed:1a:78:3a:4b:ca:87:7a:ff:d6:98:96:08:20:
23:6c:40:79:6a:16:02:54:ef:56:59:fa:62:84:03:
a7:ed:85:f8:28:20:76:83:69:6c:79:f9:4a:17:8c:
8c:50:f6:b5:88:7b:a3:78:72:91:15:35:ec:e4:18:
32:1d:56:82:67:fa:b0:0b:be:4d:02:a2:e4:dd:56:
b5:e1:aa:e5:26:26:01:dd:3d:2b:ec:05:bd:07:3e:
a3:39:6c:f1:66:f5:bd:38:3c:03:53:b4:a0:be:f6:
aa:b6:2c:8c:44:58:be:4e:64:22:db:59:a1:e8:bc:
81:ec:13:dd:36:86:55:12:7f:b4:d2:cf:e6:f7:63:
7f:33:29:17:7c:0a:fa:a6:db:3e:ab:46:f1:71:ae:
14:2b:26:bb:b6:d7:f1:cf:86:2c:06:b5:19:a7:ed:
e8:6d:4c:de:76:38:61:27:d2:d7:65:7a:e6:21:1d:
64:26:f3:65:32:ee:14:0d:51:32:aa:bd:85:eb:26:
89:d0:54:60:60:c1:50:df:61:d1:9a:e4:58:29:53:
56:b1:32:ec:f5:47:27:ab:63:b6:1c:fb:05:fd:cb:
69:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:42:E2:5E:00:A2:0C:94:56:3D:23:50:72:E0:AF:A1:B2:02:B7:29
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/JELiXgCiDJRWPSNQcuCvobICtyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.132.0/24
Signature Algorithm: sha256WithRSAEncryption
43:dd:e5:ca:5a:a1:bb:f8:e1:1a:dc:07:fc:e6:f8:a7:27:36:
b7:51:5d:78:e0:1a:85:3f:7e:e0:c0:74:1f:fb:2a:70:44:35:
79:e2:ed:e4:cf:2a:33:e7:3e:41:3e:d2:59:a1:8a:6f:4c:23:
13:e1:2b:e6:aa:0f:f5:ff:3d:94:b6:8e:a7:ef:97:28:35:da:
83:f2:ea:ef:5a:54:9d:b2:36:21:2b:3e:39:2a:4e:9d:08:4e:
02:f7:36:74:ad:bb:c7:7b:90:38:27:bd:ee:33:12:09:27:14:
62:d5:dc:79:03:6d:19:63:3a:f8:d1:93:2a:db:8c:48:ba:ed:
21:32:cc:07:f4:74:b1:7d:d4:c5:1f:b2:7a:dd:18:78:5a:fa:
a9:e3:c4:6d:f3:96:5f:b9:b4:42:bd:ee:1a:df:0e:f8:99:b8:
24:1b:c8:a2:f1:73:0e:34:ac:d2:ec:82:9d:d5:e8:fd:09:fa:
83:ea:68:38:f6:b9:60:e6:e0:9f:e5:4f:68:49:4b:ba:c6:7f:
f2:c7:cf:69:28:52:ad:e9:bc:d6:a8:24:c0:0a:f8:e8:a1:8f:
23:7b:bc:b6:92:60:b5:65:54:78:51:ab:43:be:61:9c:9a:e1:
4a:6b:bf:74:9c:c2:64:0f:63:f0:e4:54:3a:08:1f:20:aa:09:
ce:94:28:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 13:32:11 2024 by rpki-client on console-ams.rpki-client.org