Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/JD5D5m4COhhAvUffaIvPhihLKfc.roa
File: JD5D5m4COhhAvUffaIvPhihLKfc.roa (raw, json)
Hash identifier: jEoAh9imlie1lm3fbH036+rPuou82hJ5teYx5ljcobA=
Subject key identifier: 24:3E:43:E6:6E:02:3A:18:40:BD:47:DF:68:8B:CF:86:28:4B:29:F7
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018AEF1622C1FBDB5FF1916BAF49D7926707
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/JD5D5m4COhhAvUffaIvPhihLKfc.roa
Signing time: Mon 02 Oct 2023 06:31:59 +0000
ROA not before: Mon 02 Oct 2023 06:31:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 178.212.224.0/24 maxlen: 24
91.198.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:16:22:c1:fb:db:5f:f1:91:6b:af:49:d7:92:67:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Oct 2 06:31:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=243e43e66e023a1840bd47df688bcf86284b29f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d8:15:76:7d:0b:d1:c0:f9:f0:70:a6:7c:d5:
dc:d9:ed:0c:52:9a:59:34:a4:26:ff:80:7c:2b:28:
35:a9:9e:c3:c8:81:ca:1b:38:68:c0:06:27:4d:09:
33:0d:64:b4:92:95:8a:11:1c:60:4f:6f:3f:43:2e:
5e:08:04:0a:95:6c:1d:c7:87:36:31:9e:3c:d0:b0:
5c:ed:35:d7:d4:ce:50:4e:99:ce:70:36:d7:2e:42:
1b:83:65:e7:69:f9:ac:cf:46:e4:06:55:7f:8b:52:
5d:29:18:1d:27:4c:bc:aa:9c:2e:a7:cc:cf:b4:0f:
41:18:ee:11:03:5c:43:21:c8:89:e0:fd:36:54:6e:
64:b4:7e:21:7d:79:77:f0:eb:e9:c7:d4:40:9b:6c:
cd:8c:92:88:22:a4:c5:2b:ea:7d:b2:64:99:24:2d:
f4:ed:dd:0f:9e:17:db:46:95:9d:4f:75:9a:8f:c8:
e3:6c:14:ab:2e:42:1f:7d:bc:f2:93:28:7e:b5:54:
0b:d3:47:f6:92:99:0d:69:84:4d:7f:6e:25:a3:25:
e3:78:b7:8f:08:c5:f2:ea:11:32:d3:db:fa:5b:1c:
94:1d:3c:d9:71:cd:8a:2d:45:af:d8:c5:28:67:36:
3b:71:ed:1a:dd:f2:ba:46:10:9b:f0:da:e3:a5:bb:
36:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3E:43:E6:6E:02:3A:18:40:BD:47:DF:68:8B:CF:86:28:4B:29:F7
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/JD5D5m4COhhAvUffaIvPhihLKfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.200.0/24
178.212.224.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1f:cf:59:81:e7:94:4d:64:fc:63:de:f1:d5:02:d3:bf:bb:
c0:a6:f7:e8:5d:bb:db:c9:ec:3d:69:39:41:ce:fc:7b:0b:50:
b8:e4:05:df:55:30:e4:00:c6:65:5f:44:9f:13:a3:dd:7e:13:
0d:65:00:72:38:00:47:63:81:93:1c:76:cc:9b:64:ef:79:63:
48:7c:7c:c1:a2:c0:a2:09:c7:f1:48:ae:80:00:64:90:51:9b:
a5:40:ff:e3:e4:a1:d3:5f:56:b0:40:bc:2f:04:74:07:e5:9a:
5b:19:7d:c1:6a:26:dc:89:e5:92:6c:26:e4:93:f5:d9:7d:be:
78:cf:4b:d3:bf:46:6b:96:55:fa:47:0c:50:9a:cf:56:18:3e:
5e:6e:71:25:d8:13:0e:bc:38:29:15:79:5b:3f:67:05:4f:c9:
1b:f3:82:a6:ea:53:4d:c0:89:ba:c7:d8:d3:02:48:08:3b:63:
50:9f:54:13:c8:2a:1b:a3:4e:dd:48:cd:ec:15:7c:83:73:aa:
9f:2a:80:a7:09:96:b3:2b:cb:2d:0e:3b:eb:15:2f:21:40:68:
d4:a0:01:93:0a:a2:0b:f2:50:27:5e:31:ff:4f:a0:39:35:88:
7e:00:35:88:5e:75:c1:0f:d8:f1:e1:f7:ca:a1:fe:77:4f:4c:
37:e4:72:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:06 2024 by rpki-client on console-ams.rpki-client.org