Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/JN_RWDSqd2Muyxh7e1tF_5jCohU.roa
File: JN_RWDSqd2Muyxh7e1tF_5jCohU.roa (raw, json)
Hash identifier: prA801Y8cIHsxG4mkfuSUHcFdEP/uZacKtlkwIWB7b0=
Subject key identifier: 24:DF:D1:58:34:AA:77:63:2E:CB:18:7B:7B:5B:45:FF:98:C2:A2:15
Certificate issuer: /CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Certificate serial: 018A270B5EE364E0BA33B6F33A7A13A081B6
Authority key identifier: EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/JN_RWDSqd2Muyxh7e1tF_5jCohU.roa
Signing time: Thu 24 Aug 2023 10:16:11 +0000
ROA not before: Thu 24 Aug 2023 10:16:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 2a09:cbc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:0b:5e:e3:64:e0:ba:33:b6:f3:3a:7a:13:a0:81:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Validity
Not Before: Aug 24 10:16:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24dfd15834aa77632ecb187b7b5b45ff98c2a215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a6:ee:d7:f3:2e:a8:32:6c:11:68:b5:59:78:
60:f0:50:2a:11:17:cb:54:e5:67:67:2f:85:20:8b:
62:f4:1e:57:26:91:23:60:53:ca:96:5b:f5:92:04:
23:61:d7:6d:24:2b:ea:f9:67:45:92:78:19:ec:d8:
99:30:0e:98:fd:e2:c8:5a:52:18:d0:ac:5b:de:84:
d3:dc:92:2b:0e:e3:d7:98:b7:2e:cd:5b:17:06:9e:
00:62:fa:49:17:2e:5a:6c:09:cf:f3:7a:64:51:42:
ac:d2:a1:ab:e5:6a:0c:47:1e:7f:e1:3d:db:a2:ee:
30:20:c3:92:63:87:f7:78:cc:b5:71:20:e7:44:82:
39:fa:55:4a:a3:31:7d:81:36:38:d3:54:a7:7a:96:
3c:da:20:d7:fe:d8:70:35:8a:ae:45:48:23:b8:fb:
84:55:32:14:01:a6:89:e4:85:f4:71:cf:8d:5b:4b:
7d:09:97:26:e8:4d:eb:84:e1:ca:7e:bb:c9:d1:62:
c6:b3:3d:ff:d2:0a:0e:3c:09:39:94:b5:14:4e:3b:
b6:73:eb:b9:e7:f5:d0:bf:cf:d2:f0:a2:a2:75:8f:
28:90:67:93:68:5d:bb:3a:2d:50:a3:7f:a8:e0:8f:
74:35:0a:14:09:60:ec:a6:ef:42:dd:ca:f0:ce:24:
0e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DF:D1:58:34:AA:77:63:2E:CB:18:7B:7B:5B:45:FF:98:C2:A2:15
X509v3 Authority Key Identifier:
keyid:EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/JN_RWDSqd2Muyxh7e1tF_5jCohU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/7HRpxUKO75q3aNntbCyJRDprtL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
33:bc:c6:94:ce:04:48:f0:ff:a8:77:09:72:92:9a:bd:41:d2:
f6:00:1c:55:bd:72:ca:84:e5:6c:72:e2:d8:0a:c7:19:fa:54:
50:64:d5:80:54:62:60:6b:71:43:8e:14:62:08:fd:18:21:37:
db:9f:96:1f:9c:02:da:c5:ac:49:7e:5a:f1:58:c0:c7:ab:7e:
9c:1a:23:bc:71:11:e9:fe:58:f8:98:2b:bd:64:92:15:07:8c:
fe:ab:aa:66:c3:33:07:60:c6:d0:e8:5d:07:85:dd:6f:55:f4:
41:6e:4d:31:17:21:eb:46:cb:1d:c7:f7:cb:a4:d8:23:0a:1c:
5d:1b:f9:13:0c:8a:9f:70:d9:72:ce:a3:73:82:3b:c3:cf:fd:
f4:95:f4:29:d4:6e:b7:16:8b:e5:85:a2:70:58:5e:ba:32:69:
64:9e:b4:13:79:cc:2b:9f:d7:ce:a6:48:ad:79:13:f9:80:c8:
5f:4b:a2:68:13:25:58:04:18:c5:2b:0c:8f:82:73:35:0d:17:
bd:75:36:0b:da:4e:e1:31:b4:ff:94:c6:0f:64:13:50:ec:de:
67:ae:ac:f8:11:13:62:d8:94:f0:4f:47:b4:b7:60:c7:5f:c1:
66:a4:72:a6:61:d8:c1:dc:52:ee:5e:b2:80:b9:c0:cc:c4:27:
8e:d1:53:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:46 2024 by rpki-client on console-fra.rpki-client.org