Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/jqbfb61VTqgC9OgUhIUEmGxTSU0.roa
File: jqbfb61VTqgC9OgUhIUEmGxTSU0.roa (raw, json)
Hash identifier: N12BcuDMuXB2NLfW+LiT3VgdIm4+91DywcKTJCTU8lw=
Subject key identifier: 8E:A6:DF:6F:AD:55:4E:A8:02:F4:E8:14:84:85:04:98:6C:53:49:4D
Certificate issuer: /CN=5a8a52dc998f1148c078290bdbb4d3cdc3f03cbc
Certificate serial: 018B472802E8FBF8D59CA322F45E86FC3890
Authority key identifier: 5A:8A:52:DC:99:8F:11:48:C0:78:29:0B:DB:B4:D3:CD:C3:F0:3C:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WopS3JmPEUjAeCkL27TTzcPwPLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/jqbfb61VTqgC9OgUhIUEmGxTSU0.roa
Signing time: Thu 19 Oct 2023 08:58:06 +0000
ROA not before: Thu 19 Oct 2023 08:58:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 194.33.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:28:02:e8:fb:f8:d5:9c:a3:22:f4:5e:86:fc:38:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a8a52dc998f1148c078290bdbb4d3cdc3f03cbc
Validity
Not Before: Oct 19 08:58:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ea6df6fad554ea802f4e814848504986c53494d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a0:95:cd:38:e9:f6:3f:cc:16:e8:29:b6:df:
66:7d:1d:cf:c2:69:de:7c:c1:15:c1:de:7d:80:02:
67:a5:5e:60:e6:7b:13:d6:33:3c:44:02:3b:71:b3:
42:df:5c:33:67:55:01:9e:f1:16:0d:50:b3:94:a5:
a8:7f:0b:e1:72:ae:68:f6:92:50:e6:64:47:24:ed:
9d:ea:75:45:1a:39:fe:cb:f8:22:7c:67:64:70:6c:
9e:2f:f0:f2:ee:ef:17:d4:25:80:1a:ed:ac:5f:ee:
ac:ad:db:d7:9e:b9:04:b4:a0:c2:36:9a:2c:15:37:
b2:51:90:d8:56:b7:02:58:11:0e:9b:0e:f9:d1:91:
b2:2d:13:4b:3d:27:29:1b:35:8e:23:8d:a0:ce:a4:
47:c0:fc:8d:6d:b6:f8:70:69:7e:e6:42:d9:85:2e:
6a:6a:07:df:05:ee:50:fa:c0:f1:24:4c:26:5f:9f:
32:d3:ce:ad:d3:8a:e6:2e:b4:88:1e:40:57:7e:13:
42:08:32:a0:f9:bb:47:fb:e2:5f:9b:07:60:54:54:
d3:9a:04:01:c5:bb:68:0c:63:e2:19:ef:8d:a7:88:
29:7f:a4:0d:4f:18:37:06:75:11:5e:85:c1:1a:28:
b9:4a:7a:f9:84:e9:9c:b0:2d:0e:7e:32:25:aa:12:
a2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A6:DF:6F:AD:55:4E:A8:02:F4:E8:14:84:85:04:98:6C:53:49:4D
X509v3 Authority Key Identifier:
keyid:5A:8A:52:DC:99:8F:11:48:C0:78:29:0B:DB:B4:D3:CD:C3:F0:3C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WopS3JmPEUjAeCkL27TTzcPwPLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/jqbfb61VTqgC9OgUhIUEmGxTSU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/WopS3JmPEUjAeCkL27TTzcPwPLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.186.0/24
Signature Algorithm: sha256WithRSAEncryption
72:b6:d3:7c:fc:4e:29:4c:36:ac:00:eb:ad:54:5e:55:78:f9:
fb:d7:1c:15:9f:3d:30:ad:1b:d3:0b:39:82:cf:3f:a0:fb:ee:
c3:a5:10:bc:94:98:dc:cf:c2:4f:cd:cd:95:34:ee:3d:e4:ab:
ce:a6:90:0e:b0:68:3f:13:d8:8a:e4:53:af:ab:ba:7b:06:d5:
a5:72:34:a8:52:15:2e:1c:48:18:58:f1:6d:9a:81:60:80:25:
83:bf:ff:24:ca:8b:d5:ee:58:a7:32:59:7f:32:77:8a:3d:10:
0a:a5:9d:4d:c9:39:05:2c:69:e9:87:0e:25:b1:62:c0:01:56:
fb:3d:53:c5:fd:c8:d8:ff:d4:00:47:69:a8:7e:8c:bb:e1:87:
2a:23:1e:76:f4:c4:dd:e8:75:5d:ee:d7:5f:f6:82:d1:ed:5a:
a8:a8:75:22:94:87:48:e0:cb:04:7f:93:dd:cb:83:30:e2:1d:
96:0c:7d:57:44:b2:6c:08:54:f6:3c:39:81:6e:4d:b2:78:9e:
c8:c8:4b:65:4c:a6:45:83:24:d8:b9:ec:e7:05:c1:82:42:3f:
cf:f3:e3:b7:55:a5:60:1e:8c:7d:a5:74:b0:88:05:dd:42:a2:
0b:ee:4f:bf:82:ea:fe:c8:16:4d:1f:53:2e:1d:f8:00:72:33:
25:fe:8d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:31 2024 by rpki-client on console-ams.rpki-client.org