Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/be2903-3538-46ff-aae4-bd1d48d512ce/1/jf9h63jkI4s3WrUTSOpYveIFEv8.roa
File: jf9h63jkI4s3WrUTSOpYveIFEv8.roa (raw, json)
Hash identifier: HhQs602CAeOLZv2RMIHduDf9uTP8vP2hiO8idm4kq3U=
Subject key identifier: 8D:FF:61:EB:78:E4:23:8B:37:5A:B5:13:48:EA:58:BD:E2:05:12:FF
Certificate issuer: /CN=4127b0c0fe7c08935e258713fcf90fe958ee03ee
Certificate serial: 01856DE67A1FD64EAA5DCD8139D13201171E
Authority key identifier: 41:27:B0:C0:FE:7C:08:93:5E:25:87:13:FC:F9:0F:E9:58:EE:03:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSewwP58CJNeJYcT_PkP6VjuA-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/be2903-3538-46ff-aae4-bd1d48d512ce/1/jf9h63jkI4s3WrUTSOpYveIFEv8.roa
Signing time: Sun 01 Jan 2023 15:14:59 +0000
ROA not before: Sun 01 Jan 2023 15:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212850
IP address blocks: 185.120.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:7a:1f:d6:4e:aa:5d:cd:81:39:d1:32:01:17:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4127b0c0fe7c08935e258713fcf90fe958ee03ee
Validity
Not Before: Jan 1 15:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dff61eb78e4238b375ab51348ea58bde20512ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:ae:da:3c:ce:20:d1:f1:a9:ca:ca:42:53:
c4:3d:41:ee:95:5b:17:61:70:d6:b7:b9:a9:b2:c4:
69:59:4a:3a:47:16:e4:3d:67:cb:b1:14:6b:e4:aa:
db:3b:4b:98:e5:87:f8:db:fa:75:ff:b6:8d:f5:93:
98:03:63:d1:b3:e2:79:2f:c3:3c:0b:cd:6a:f3:84:
18:1c:01:35:47:f8:de:cd:98:4a:e1:ad:23:5c:64:
30:39:09:73:57:25:9b:d1:52:61:f4:a0:54:45:d0:
bd:76:91:01:e9:de:d1:e6:f7:ab:07:40:83:83:17:
bd:72:0b:81:1b:b0:3a:32:50:0d:d8:06:14:94:75:
1a:00:52:95:50:73:1a:5d:4b:fe:25:9b:e0:84:c7:
97:be:ef:8d:b2:39:c3:bb:e1:36:a6:4c:6f:a7:c3:
03:95:dd:a9:73:2d:ed:57:0f:4c:ec:c4:60:28:e8:
ee:85:a8:59:92:d1:81:e5:fc:fb:3c:e8:42:d2:06:
dc:ce:09:db:cb:e3:14:c3:13:87:b6:9c:b7:07:f6:
5f:bb:c8:0a:c2:88:30:a5:f4:13:e1:92:8f:10:bb:
8c:ea:4a:c6:43:38:27:28:1a:bf:25:bc:6f:0a:1d:
75:a5:12:ac:ab:fa:90:b8:e1:3e:07:00:c7:b3:8f:
f3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FF:61:EB:78:E4:23:8B:37:5A:B5:13:48:EA:58:BD:E2:05:12:FF
X509v3 Authority Key Identifier:
keyid:41:27:B0:C0:FE:7C:08:93:5E:25:87:13:FC:F9:0F:E9:58:EE:03:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSewwP58CJNeJYcT_PkP6VjuA-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/be2903-3538-46ff-aae4-bd1d48d512ce/1/jf9h63jkI4s3WrUTSOpYveIFEv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/be2903-3538-46ff-aae4-bd1d48d512ce/1/QSewwP58CJNeJYcT_PkP6VjuA-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.140.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:96:6d:2f:a6:8b:52:f1:a7:01:f8:73:b7:ff:81:51:08:6f:
df:1e:79:2a:e2:8b:c7:d5:5f:4f:df:dc:bd:5f:c3:68:ca:c1:
11:77:26:dd:60:17:53:72:3a:b7:91:48:47:ab:8c:56:d0:bf:
25:f3:3e:2d:79:7d:fa:9f:aa:bd:21:55:4d:2c:57:0c:6a:15:
3d:b3:ae:99:94:0e:6b:dd:36:e4:3c:e6:3b:87:54:8b:cc:80:
98:2f:fa:58:16:d5:38:fa:48:08:67:08:a8:be:e7:ec:13:4e:
31:f7:ab:7c:13:96:2c:0d:b3:fd:cc:aa:19:49:31:6c:72:5b:
6a:52:6a:0b:75:e8:aa:ae:d8:52:a8:b1:1b:4e:d8:59:35:ca:
d1:df:d6:89:a2:13:84:a8:d1:5a:4d:23:0f:37:7b:10:32:c6:
29:38:9d:17:e4:ed:bb:b0:45:ac:7c:af:a4:12:05:4a:b0:1d:
f8:6d:2f:42:f5:e4:2f:0c:3a:88:a3:5d:50:2e:e5:59:65:23:
af:6f:51:e8:02:66:26:3e:b8:d1:6a:f3:2b:b3:12:2d:59:25:
39:20:ce:36:82:12:79:af:96:6f:ac:8c:89:c9:ac:7a:85:9c:
61:d1:5b:5b:5d:7f:ce:7f:d8:02:da:6d:72:88:bf:26:bf:1d:
d0:aa:13:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:48 2024 by rpki-client on console-ams.rpki-client.org