Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JrkW7qLOjP9GbWMooUNp_LMai4k.roa
File: JrkW7qLOjP9GbWMooUNp_LMai4k.roa (raw, json)
Hash identifier: jqKnJhQ28/o5Ved5VVYaHrvi4D7mly3hn5oIOdG1UI8=
Subject key identifier: 26:B9:16:EE:A2:CE:8C:FF:46:6D:63:28:A1:43:69:FC:B3:1A:8B:89
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018635925822A4EE8D0E288780CF9CBDD39C
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JrkW7qLOjP9GbWMooUNp_LMai4k.roa
Signing time: Thu 09 Feb 2023 09:47:08 +0000
ROA not before: Thu 09 Feb 2023 09:47:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212369
IP address blocks: 185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
193.164.5.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 Feb 2023 10:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:92:58:22:a4:ee:8d:0e:28:87:80:cf:9c:bd:d3:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Feb 9 09:47:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26b916eea2ce8cff466d6328a14369fcb31a8b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d7:fd:9a:7d:00:0f:f2:26:92:54:22:07:4b:
fc:e7:34:55:e7:6b:e7:57:de:fb:46:9f:f5:ff:4a:
f2:f4:9e:59:11:a3:87:70:e7:60:18:7c:ee:84:35:
fa:17:89:18:e4:a2:9d:9a:58:7e:cc:78:a4:11:7e:
ea:2a:ce:e5:3c:49:80:db:a5:3f:88:73:a7:ff:45:
a6:5c:40:72:bd:e4:a0:25:43:40:6e:c9:c2:36:0f:
4c:03:e2:cc:3d:3f:e0:91:01:69:17:e4:a7:b7:ff:
fe:41:50:d8:92:7c:1f:c2:75:8c:21:ea:be:ef:3c:
69:37:9f:fc:18:5e:a2:c2:17:2e:19:8f:37:5c:21:
98:7a:31:24:a3:86:43:22:8c:47:dc:3e:80:54:b3:
e9:4b:6e:43:93:04:01:ff:db:a2:a1:b7:d6:94:dd:
cb:32:c4:72:83:5b:52:85:17:c2:9f:4c:a9:46:92:
a9:94:99:e7:50:84:00:38:22:d7:ef:e8:c1:28:48:
95:13:d2:9e:67:3b:57:fc:ed:d8:86:c1:9a:71:b4:
62:1e:55:71:66:2d:6c:51:2c:99:dc:42:85:1d:1e:
fe:9d:81:e2:bd:86:f1:54:62:23:56:2e:b5:6a:b5:
ff:50:df:23:67:03:3c:0e:ed:26:8f:54:fd:2d:b3:
0a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B9:16:EE:A2:CE:8C:FF:46:6D:63:28:A1:43:69:FC:B3:1A:8B:89
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JrkW7qLOjP9GbWMooUNp_LMai4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0-185.93.70.255
185.132.126.0/24
185.255.93.0-185.255.95.255
193.164.5.0-193.164.6.255
Signature Algorithm: sha256WithRSAEncryption
69:6c:d0:74:71:8b:c1:f7:58:6e:36:d9:74:e3:55:7a:89:b0:
7c:6c:da:be:3e:80:a8:72:ef:a6:b0:0c:93:00:75:79:c7:fb:
f4:7f:54:4e:98:ef:a7:60:f0:4e:b8:21:8b:4b:89:72:c1:3c:
eb:c7:ed:37:93:3a:a6:54:ba:74:db:cd:54:7e:d4:82:2e:8e:
0a:89:40:da:d3:c3:89:aa:89:1b:d2:53:70:5c:e9:56:fa:e5:
38:0d:25:82:5a:f2:08:03:be:66:f7:6e:07:b5:d3:4e:36:4a:
a7:30:24:51:3b:66:b5:26:92:fd:89:a6:52:6c:b9:6b:f3:6e:
11:9e:a8:b4:1d:8b:eb:5a:3c:55:04:a7:7d:d3:65:64:24:be:
46:1e:ff:2d:d4:67:8e:f4:2b:0b:30:82:9c:d2:33:9d:c0:b9:
28:00:15:11:ae:3c:1b:3d:10:ac:cb:05:48:9d:70:53:fd:34:
0b:9c:27:18:29:b7:b7:2e:12:bd:48:db:aa:55:7d:2c:a3:52:
c5:01:33:24:0a:56:b6:4d:13:dd:53:56:25:88:6d:0a:52:85:
c6:4b:f2:a8:12:7c:2b:60:ba:8e:85:09:98:da:bb:4c:69:07:
2b:91:6f:37:0b:b8:df:1f:82:c3:e7:d8:44:28:a6:97:46:a0:
72:ea:25:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org