Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/JBW5oUiU3EhpI1OkfP__FA6rKHQ.roa
File: JBW5oUiU3EhpI1OkfP__FA6rKHQ.roa (raw, json)
Hash identifier: KZp1VUfUtC3ZV8iFm+oxnunM+7gr3QQnOk+C0ood2EU=
Subject key identifier: 24:15:B9:A1:48:94:DC:48:69:23:53:A4:7C:FF:FF:14:0E:AB:28:74
Certificate issuer: /CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Certificate serial: 018572B41FC6980B140C5ABB83205015D23C
Authority key identifier: 7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/JBW5oUiU3EhpI1OkfP__FA6rKHQ.roa
Signing time: Mon 02 Jan 2023 13:38:05 +0000
ROA not before: Mon 02 Jan 2023 13:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 193.35.228.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:1f:c6:98:0b:14:0c:5a:bb:83:20:50:15:d2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Validity
Not Before: Jan 2 13:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2415b9a14894dc48692353a47cffff140eab2874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ba:59:e5:9a:3c:4d:ea:88:75:ef:9b:b4:0a:
31:dd:cd:31:55:f6:b6:57:32:41:82:a9:61:46:a6:
79:a0:53:19:03:98:73:12:07:4b:76:74:2a:9d:3b:
9e:a7:25:39:ac:0a:b5:aa:d2:5d:f2:50:8e:8a:fd:
34:82:43:88:8a:5f:d6:61:ae:89:45:c0:a7:ce:50:
47:bc:f9:58:c5:fa:66:c1:33:5e:02:73:a8:0c:bb:
62:e5:69:a6:b8:cb:c9:d3:3a:54:6a:61:31:c1:8a:
82:35:1c:af:24:12:cb:a9:32:f6:d2:3c:97:15:a6:
c3:6d:ee:5a:6a:de:20:7d:dd:04:b7:e9:5c:28:a5:
61:41:f6:d5:f3:53:9f:6b:2b:96:7d:89:52:ba:5d:
c8:c8:bd:2d:62:7f:86:41:ef:33:fa:9c:b5:ca:c6:
c9:ce:40:2c:f1:29:49:ce:ef:be:75:7a:d2:63:fe:
12:c8:7d:21:0e:4d:2c:78:40:a0:c8:02:32:cc:02:
48:50:a1:27:d9:9e:83:57:2f:d3:82:fb:9d:45:c1:
c6:54:86:67:26:21:d1:1d:77:86:53:2c:44:a2:72:
ae:6b:23:fb:e3:0c:67:71:b9:dc:cc:58:69:ef:c1:
7f:e6:60:a9:94:3e:4f:4d:a9:e1:10:cf:27:04:a7:
61:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:15:B9:A1:48:94:DC:48:69:23:53:A4:7C:FF:FF:14:0E:AB:28:74
X509v3 Authority Key Identifier:
keyid:7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/JBW5oUiU3EhpI1OkfP__FA6rKHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.228.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:01:ef:8a:54:16:d8:ac:22:20:88:9d:b2:97:13:f7:18:91:
83:33:c0:2f:2f:04:33:1d:cc:9f:30:69:1a:90:5e:84:0d:9d:
db:97:48:57:23:0b:ff:3f:ae:f7:9a:b6:ad:3f:19:a1:a9:cc:
cd:50:60:57:a7:de:65:ae:29:52:02:75:5a:7d:2f:de:5a:9c:
10:3f:61:31:ab:02:93:71:0a:bf:9a:7a:0a:34:65:eb:1e:f5:
9e:2b:c5:21:bd:65:1b:19:8c:50:0d:27:9a:77:4d:23:62:f7:
5d:19:22:00:a2:53:f3:a0:40:df:68:03:67:71:3f:1d:0f:c7:
63:69:48:b6:80:9b:e7:ea:33:3d:f3:70:5f:4d:74:53:5d:fd:
59:24:87:7e:96:22:f1:18:ac:37:12:10:16:20:54:ab:55:b1:
97:83:d9:ae:11:c2:8a:78:0c:4e:b0:2c:6e:3e:94:97:61:10:
29:ca:af:a2:fe:da:ab:20:b9:18:14:d1:5b:07:80:0a:46:b5:
db:1d:a5:23:d8:1b:1d:83:ba:bf:a1:a5:53:ae:bc:8f:48:cb:
57:d4:e6:d5:79:31:25:d7:c2:5a:41:e7:b8:87:0e:d2:9a:df:
60:8f:24:86:4c:75:c5:d4:1e:86:c6:68:ad:ed:4c:41:45:8a:
dd:fb:3a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-ams.rpki-client.org