Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jdcuRHVfZmdJoH94OCabWSyxm3A.roa
File: jdcuRHVfZmdJoH94OCabWSyxm3A.roa (raw, json)
Hash identifier: PFr8PLKWgg9JHzd787Vf2ly7n38ooVHnTaOtPxZYKNE=
Subject key identifier: 8D:D7:2E:44:75:5F:66:67:49:A0:7F:78:38:26:9B:59:2C:B1:9B:70
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CCA28702054A0C62B168E57F88894900C
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jdcuRHVfZmdJoH94OCabWSyxm3A.roa
Signing time: Tue 02 Jan 2024 12:31:36 +0000
ROA not before: Tue 02 Jan 2024 12:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 178.239.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jan 2024 09:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:70:20:54:a0:c6:2b:16:8e:57:f8:88:94:90:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 12:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dd72e44755f666749a07f7838269b592cb19b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:83:76:44:32:c1:ee:00:4e:c6:b4:e9:c0:27:
ce:2f:0c:66:f5:7b:1a:ce:ed:75:bb:4c:ae:c2:01:
25:da:16:46:03:5e:91:02:ca:d6:80:aa:7a:16:28:
4f:8f:e5:df:a9:75:32:df:cd:22:2f:51:e5:19:35:
ab:b7:92:1e:b9:d4:68:25:5b:47:1b:eb:c1:10:5f:
9d:5e:08:43:d6:7d:73:90:20:26:cf:b1:e1:56:fb:
e1:6c:80:f7:cb:47:3d:8f:34:60:92:2e:e5:04:90:
0c:28:f3:1c:4e:29:f7:60:5f:f2:c1:6d:59:04:a2:
c9:a2:b5:79:bc:64:a4:ae:1f:ea:96:e9:8d:9b:8f:
1a:2c:5c:6c:5e:2d:c0:4e:74:91:35:30:2d:54:ff:
6b:8e:1f:0d:d1:aa:9d:11:96:78:1d:96:0d:7c:9d:
c5:b9:92:ac:c4:4b:c2:d9:20:4b:8b:d5:ba:15:1e:
fa:86:7a:f8:a1:97:ad:2f:50:8f:9f:a2:1a:bb:6d:
01:53:f0:fd:8e:77:68:66:c4:1b:f6:d5:b8:00:47:
0b:e8:ed:12:c8:eb:98:1e:02:8d:ba:7e:25:6f:d9:
98:9e:53:07:f3:4e:67:ba:82:0d:46:c4:c8:34:8a:
47:5b:87:03:b7:33:25:73:40:b0:83:07:29:e3:7f:
67:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D7:2E:44:75:5F:66:67:49:A0:7F:78:38:26:9B:59:2C:B1:9B:70
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/jdcuRHVfZmdJoH94OCabWSyxm3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4f:06:85:3b:f8:7e:46:c5:5e:b0:c2:38:b9:51:91:4b:fa:
af:78:93:79:d9:41:9d:14:03:a4:c0:d5:08:92:51:11:b4:62:
2b:60:ea:aa:bb:74:c0:ee:2e:ee:b6:57:e5:be:fc:58:2d:a8:
ad:f2:d4:dd:c8:0e:3d:d6:b2:8c:f4:6e:02:9f:b6:9f:61:6a:
5e:ec:63:c7:4a:fb:d5:8c:4a:98:ce:b3:ed:fb:a2:8c:67:7d:
51:42:41:06:cc:72:5e:db:c5:12:e5:bd:e9:ff:ca:ce:0f:13:
da:e3:55:f3:38:39:2b:26:dc:d0:c4:28:46:22:aa:88:4d:7c:
b2:5f:f7:7f:ab:7e:e0:46:e4:b3:f0:28:cc:5a:e3:a4:cb:06:
e6:48:c9:72:3f:6d:e5:84:5d:b9:6c:dc:c8:bb:02:71:f1:1f:
19:32:b7:48:d1:8a:ca:4c:0e:12:3d:6e:e5:3b:06:58:03:c6:
bc:b2:e0:9b:76:0f:0f:80:98:16:9d:2e:da:07:4b:72:a6:13:
be:da:ff:b3:fe:92:98:8c:e6:17:b1:ff:eb:eb:c1:64:4a:68:
c0:6c:bd:60:dc:12:5b:73:10:46:ea:1e:57:5a:3f:d7:68:ca:
02:67:ff:27:2d:ab:a5:61:66:f8:1b:e4:15:d8:a7:ff:3f:72:
19:c3:8e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:31 2025 by rpki-client