Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/Jn-KKdZLLH-5nb_DCNWrURn_4oc.roa
File: Jn-KKdZLLH-5nb_DCNWrURn_4oc.roa (raw, json)
Hash identifier: qlbFBpWHoxqvI8UsJ/aIoZRcnnsUbHkHHCJ6DzqJU1Q=
Subject key identifier: 26:7F:8A:29:D6:4B:2C:7F:B9:9D:BF:C3:08:D5:AB:51:19:FF:E2:87
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 0190582D3FCE39C278AE0A1DB10A855A6EB1
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/Jn-KKdZLLH-5nb_DCNWrURn_4oc.roa
Signing time: Thu 27 Jun 2024 05:31:18 +0000
ROA not before: Thu 27 Jun 2024 05:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39865
IP address blocks: 195.170.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 11:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:2d:3f:ce:39:c2:78:ae:0a:1d:b1:0a:85:5a:6e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Jun 27 05:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=267f8a29d64b2c7fb99dbfc308d5ab5119ffe287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3c:97:35:f2:df:4b:a9:fa:0b:43:02:32:72:
c1:8f:43:26:14:ac:3b:ad:73:ba:bb:9a:9b:7b:0b:
fc:fe:db:cb:06:55:8e:b3:05:51:d6:d8:e1:04:6c:
70:76:dc:14:36:20:69:03:cc:bb:00:05:45:37:98:
90:93:d5:33:6e:e5:68:b0:53:f5:ca:24:d7:6a:89:
52:c2:13:26:0a:0c:27:26:14:f4:a0:f0:f3:f8:4c:
47:21:3f:03:f3:31:f5:b4:47:4c:0d:dc:63:c2:84:
3c:5d:1a:62:7e:fa:79:69:65:3a:15:89:1f:bf:6c:
f4:43:2a:11:54:5b:e1:dc:f8:60:38:eb:fd:ba:60:
c0:42:05:ea:24:6d:82:d0:3e:7a:30:79:ae:47:77:
fb:4e:e0:df:08:35:e0:51:ff:45:5e:dc:2e:7e:3e:
fa:a7:0e:95:9e:4e:8b:05:ff:d2:37:f6:a6:4a:11:
7f:3a:7e:c6:19:8a:79:68:ad:cd:8d:a2:bd:96:ee:
32:ef:f0:37:13:2b:71:af:0c:9a:0d:5b:b7:59:a1:
25:0f:09:ef:7b:eb:cb:1e:b3:d6:aa:9b:78:bc:42:
90:15:e0:8e:a6:e5:c2:3f:cc:e7:3a:3e:00:c6:af:
b5:c2:1d:75:f6:32:4e:13:8e:3d:9f:01:65:bd:a0:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7F:8A:29:D6:4B:2C:7F:B9:9D:BF:C3:08:D5:AB:51:19:FF:E2:87
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/Jn-KKdZLLH-5nb_DCNWrURn_4oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.175.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:64:46:03:1c:c7:2b:48:b1:29:05:17:18:37:4e:75:80:6d:
c1:86:d2:ef:c3:5c:85:19:04:8b:21:ca:d9:fb:a7:83:43:2c:
78:30:7f:53:0c:01:ce:b9:80:05:7a:7e:1b:dd:8c:23:44:24:
2f:a5:cd:63:e4:ac:8d:c7:30:92:08:1d:80:d1:cf:0e:f0:7e:
65:9b:27:46:3f:b3:ef:41:b4:67:f2:42:3b:4c:7e:fe:e7:07:
03:80:9a:76:73:5f:59:3d:7e:0d:d7:28:77:77:1c:47:e7:d8:
dc:65:89:d1:2d:81:c3:0b:ba:0d:54:7f:a8:d7:5c:7b:ef:cc:
d8:45:1e:bf:5e:37:39:38:07:d7:9c:dc:97:2d:66:24:ec:02:
aa:62:b2:11:e1:26:b1:50:a9:ea:a3:30:02:e2:a6:60:94:12:
ae:25:f8:46:15:03:70:56:01:45:1c:65:68:c9:51:29:9f:82:
db:83:fc:f6:b1:38:0c:1c:e0:d7:34:84:a0:92:48:42:12:f6:
55:9c:b6:94:f9:38:5c:10:a8:b9:0c:d1:c9:e6:dd:a1:b3:da:
44:9b:3f:10:f8:dd:5d:46:c0:7e:5c:30:0c:1b:2c:03:82:b0:
68:73:ca:c2:ac:37:ce:5c:9a:9e:bb:49:97:85:b1:ab:36:47:
ba:69:bf:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 17:22:28 2024 by rpki-client on console-fra.rpki-client.org