Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jgmHyTpzHRYwZDcD1yLiiioqV7U.roa
File: jgmHyTpzHRYwZDcD1yLiiioqV7U.roa (raw, json)
Hash identifier: tm+rHuMQ1Suw40RK0m0egKgDlXUUNeb7jA5g5lYS6qY=
Subject key identifier: 8E:09:87:C9:3A:73:1D:16:30:64:37:03:D7:22:E2:8A:2A:2A:57:B5
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018BF5B46281CB0D7ED929C9377826E134C5
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jgmHyTpzHRYwZDcD1yLiiioqV7U.roa
Signing time: Wed 22 Nov 2023 06:25:21 +0000
ROA not before: Wed 22 Nov 2023 06:25:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147186
IP address blocks: 80.71.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f5:b4:62:81:cb:0d:7e:d9:29:c9:37:78:26:e1:34:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Nov 22 06:25:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e0987c93a731d1630643703d722e28a2a2a57b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:1b:0e:7e:6f:67:11:34:8c:44:39:21:a6:
f8:63:5a:95:a3:22:c1:2c:5c:27:93:40:43:0b:92:
e8:80:46:dd:16:64:f2:04:82:30:ad:65:5e:ca:a3:
2d:0b:59:b9:c5:1c:5f:17:b2:d2:17:6a:17:db:fb:
50:4f:64:70:d7:35:4f:09:58:af:3e:a1:81:e9:7d:
f8:42:00:2c:63:9c:c5:2a:05:1f:83:6e:81:99:c6:
90:04:09:25:a3:ad:11:b7:8c:42:49:e6:0a:5a:2f:
e3:a8:b9:45:bf:ab:1d:45:8a:16:7c:28:e9:9e:d2:
f3:c4:3b:37:bd:23:f7:ff:66:23:c1:6c:41:2c:91:
ff:39:24:1c:0e:52:a9:bf:41:ec:ad:4a:ff:b1:9b:
9f:ae:90:ce:f6:83:c9:85:8d:7d:fb:62:af:53:09:
41:01:fd:38:4b:7c:e3:52:91:27:13:17:bf:e2:d6:
ca:0b:c4:b1:23:f6:59:67:26:3d:36:3f:40:e9:4f:
d7:6b:44:64:1e:dd:69:41:ae:a0:81:ad:63:4f:81:
5e:ae:85:f8:aa:08:a2:1d:6f:65:95:a8:6a:a4:82:
ae:a1:25:95:8c:38:2a:58:81:80:98:bf:3f:cb:ec:
ae:6a:c5:20:55:81:2a:b8:7e:be:ec:3f:cd:ee:36:
48:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:09:87:C9:3A:73:1D:16:30:64:37:03:D7:22:E2:8A:2A:2A:57:B5
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jgmHyTpzHRYwZDcD1yLiiioqV7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.232.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:76:a6:d8:f3:6c:fd:b8:b1:e1:8f:5a:b1:12:09:93:c7:f7:
57:d3:bf:7f:86:6d:1f:b0:b1:b7:c3:3a:0f:09:de:66:1f:38:
ef:88:8a:c1:6d:82:0b:15:76:be:58:88:dc:87:d6:76:6a:cd:
d8:51:3e:b5:a0:d6:7f:e5:f7:9c:ab:cb:33:88:86:2e:ce:5e:
cb:64:76:b4:2d:c6:09:2f:e0:8b:2d:cb:d7:05:c7:b9:f8:84:
a5:bd:2f:0b:6e:69:ae:2b:22:d8:b9:e5:c9:46:8f:4b:b8:ad:
36:9d:48:2a:8e:ae:ea:6a:f9:22:89:14:10:89:2c:79:5c:f1:
97:6b:7c:3c:07:02:75:d7:d0:64:aa:9a:7a:5b:40:d8:e4:32:
b2:48:69:7b:71:cb:6a:82:ac:72:ad:5e:64:a1:56:87:67:e1:
4d:33:9a:28:93:54:c8:7b:f9:26:3e:30:eb:93:24:a4:4d:84:
19:61:61:f0:b9:e5:07:91:37:90:a3:74:f0:21:ae:39:a5:e6:
ea:a2:5d:c4:0d:0b:79:ef:44:ff:30:6d:f0:3d:01:b3:cb:06:
95:6d:38:52:8c:f9:71:91:a8:da:63:7e:bc:20:34:a2:cd:a8:
9c:bb:f3:d1:95:84:29:e9:7e:8d:bf:8f:48:bc:0c:e9:bc:3d:
5b:c5:7a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 22 07:14:47 2023 by rpki-client on console-fra.rpki-client.org