Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/JzBRqTTMzmnSwnZrDdDk1HCk51w.roa
File: JzBRqTTMzmnSwnZrDdDk1HCk51w.roa (raw, json)
Hash identifier: cT+/8BCA7aNkAuZj9b5L0qe2CVFpgHYiv0TfPaFSMaQ=
Subject key identifier: 27:30:51:A9:34:CC:CE:69:D2:C2:76:6B:0D:D0:E4:D4:70:A4:E7:5C
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 018991856B8FBC3E50AB8451DAEF69C340A2
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/JzBRqTTMzmnSwnZrDdDk1HCk51w.roa
Signing time: Wed 26 Jul 2023 09:26:27 +0000
ROA not before: Wed 26 Jul 2023 09:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208124
IP address blocks: 45.142.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:85:6b:8f:bc:3e:50:ab:84:51:da:ef:69:c3:40:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Jul 26 09:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=273051a934ccce69d2c2766b0dd0e4d470a4e75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1b:c8:f3:63:e3:d9:db:37:5b:d2:78:16:de:
96:1e:09:80:4f:00:29:4c:c6:eb:bc:d7:39:51:b3:
8f:fa:7f:ad:0d:44:de:a0:4c:ed:1e:b5:5c:0d:a9:
d2:f8:40:db:1d:bd:f9:1c:81:df:ba:86:f3:a0:24:
3f:f2:15:e8:9f:58:3f:7c:8a:8d:81:da:a0:c4:38:
fe:c5:ad:f9:62:7d:d2:7f:0e:6a:d5:d4:cb:31:61:
c7:36:dd:ee:29:50:4d:69:d2:8b:53:b7:7b:9e:a1:
1b:09:4a:06:ba:d5:9c:a0:1c:fc:91:4a:c8:ea:94:
d7:dc:fd:fd:a8:3c:44:bc:bd:fa:41:af:e3:4f:19:
43:91:0f:38:16:1c:8d:cb:0d:25:a3:92:5b:4b:8c:
3b:68:d9:bb:7f:ef:19:c0:cb:22:69:c3:96:60:a9:
b2:98:da:96:c6:19:44:83:85:95:e0:1f:75:e9:2a:
ff:60:2c:9f:46:29:26:75:dd:98:63:e9:f8:a7:99:
e5:2b:fa:5a:b4:61:1b:af:9a:d7:6c:8a:85:24:dc:
e5:0e:38:fb:79:bc:0f:86:d1:27:1b:e7:d8:9f:8e:
e8:27:0f:ec:7b:ab:c4:33:54:d8:ea:76:80:ef:b5:
ea:7d:bf:f3:94:e8:46:d9:58:6b:29:41:db:fe:e2:
b6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:30:51:A9:34:CC:CE:69:D2:C2:76:6B:0D:D0:E4:D4:70:A4:E7:5C
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/JzBRqTTMzmnSwnZrDdDk1HCk51w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.191.0/24
Signature Algorithm: sha256WithRSAEncryption
af:87:34:24:15:dc:4b:6e:68:d7:02:0b:d6:59:a0:cf:dc:a2:
f9:7b:37:38:6d:fe:e8:b1:2f:52:cb:1d:3b:9e:b4:22:ae:92:
34:72:e7:48:6b:ff:24:55:18:3c:a1:83:9b:56:6a:ff:ae:0e:
9b:da:a7:8a:20:ce:0d:d8:55:4d:8c:84:30:d1:23:a1:62:1e:
d4:39:aa:4b:e7:ab:08:de:c6:eb:02:f2:aa:db:59:b5:71:0c:
f9:94:0f:d3:07:00:da:36:c5:e9:24:a3:53:c2:50:fc:17:22:
42:d3:f8:24:8d:0e:1e:e5:ba:a4:96:e9:e6:26:e4:23:8b:7a:
6b:56:2a:a5:1a:47:1a:20:b1:6d:06:8a:0d:04:eb:fb:55:4f:
67:db:41:9b:7d:bc:21:c7:47:22:eb:86:e3:3a:82:f3:2f:33:
e8:3c:a5:ff:a0:a7:b5:00:60:a5:86:b0:62:a2:e4:2f:49:9a:
2c:3f:b3:55:d1:1d:1a:48:43:4a:cb:fc:11:8e:52:0f:e2:d5:
a5:c7:0d:f1:8e:cc:5e:0b:68:3c:69:04:fb:86:ae:9b:f6:6f:
05:a9:30:91:f3:db:8b:ce:27:d2:71:a9:fa:1e:5d:1b:99:90:
2c:9e:01:c2:5d:9e:68:6f:ad:68:3a:ce:99:35:97:72:08:80:
13:e7:1e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:56 2024 by rpki-client on console-ams.rpki-client.org