Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/JCfs9BHnIE52qzSjL28sBxK04Ew.roa
File: JCfs9BHnIE52qzSjL28sBxK04Ew.roa (raw, json)
Hash identifier: gUAZGUeC9Vc3iLaCUfqNV6eO7NvgxX1N/kN/+8gZ2io=
Subject key identifier: 24:27:EC:F4:11:E7:20:4E:76:AB:34:A3:2F:6F:2C:07:12:B4:E0:4C
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A692949CC17FC29D5B41700EB23EEFF22
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/JCfs9BHnIE52qzSjL28sBxK04Ew.roa
Signing time: Wed 06 Sep 2023 06:23:48 +0000
ROA not before: Wed 06 Sep 2023 06:23:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198351
IP address blocks: 5.180.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:29:49:cc:17:fc:29:d5:b4:17:00:eb:23:ee:ff:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 6 06:23:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2427ecf411e7204e76ab34a32f6f2c0712b4e04c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0f:67:ea:8a:d2:f2:01:81:64:7d:1e:5a:c3:
e8:54:60:50:1a:ba:66:81:a3:df:49:9b:5c:ba:a2:
6b:da:d3:21:43:b8:6f:59:77:42:e1:15:41:86:55:
2f:b5:6f:e7:7e:c4:b9:fc:e5:7a:33:0d:6d:0f:af:
86:b7:2c:3a:0b:1f:da:83:bf:c8:52:a1:e9:1d:7c:
1f:a1:95:7b:d3:49:32:84:cb:03:aa:29:b9:16:af:
f9:5e:28:d6:8c:9c:66:91:25:0c:f2:1f:1a:13:ab:
f5:4a:f6:d9:22:5b:38:c1:78:75:fe:38:c2:04:8b:
9c:30:af:a0:84:8c:2b:1a:46:65:52:db:d3:20:b6:
40:c1:34:67:43:94:00:2a:51:12:0f:c5:48:51:d0:
b0:60:f1:94:e0:49:37:35:b9:bc:6c:66:16:46:8f:
e6:d8:6f:f3:d7:95:12:83:ae:6e:13:0a:86:ed:cd:
86:16:c1:8e:2f:ef:ea:01:fc:8f:7c:a8:cb:9d:43:
c3:c0:b8:8c:f3:b7:ea:84:f3:7c:70:6b:cb:58:42:
df:18:fa:e1:04:aa:91:e0:44:03:77:e1:c0:8d:6d:
18:04:c8:65:09:61:3f:1a:e1:82:44:0a:d3:fe:31:
6e:b7:0b:0d:0d:ff:8b:97:88:ef:e3:d1:3b:84:0f:
0b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:27:EC:F4:11:E7:20:4E:76:AB:34:A3:2F:6F:2C:07:12:B4:E0:4C
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/JCfs9BHnIE52qzSjL28sBxK04Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.232.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:a5:64:d0:5d:e5:f5:87:bf:1a:24:cd:c5:06:07:2e:d0:5d:
a7:9d:9b:a2:c9:ce:5e:92:dd:ee:9f:80:4b:ab:33:c9:35:b9:
03:a2:85:9f:8e:9c:de:5d:1e:a3:c1:c8:7e:9a:aa:ee:03:dc:
b4:df:0e:67:e4:d1:9c:bb:f1:ea:45:23:ca:88:34:57:9d:85:
21:88:2c:73:b4:ce:c1:72:fb:dc:b6:d4:ed:67:d9:83:0a:ed:
13:ef:30:25:c5:8d:10:a2:b9:d6:6f:95:cf:9e:e2:8d:bb:0a:
51:ce:98:66:39:32:b5:33:72:1f:fc:20:f2:91:16:af:ff:f9:
5c:bd:c1:aa:91:90:d6:a4:b7:1e:55:0d:df:76:fb:9c:3b:6a:
cb:16:b0:ad:14:2e:fc:a2:a3:a3:04:7d:39:4d:3c:39:68:91:
95:4d:a7:c4:90:24:af:8e:c3:94:07:c8:b1:c3:45:fb:9a:7e:
7c:57:e1:01:59:76:7a:7a:cc:d2:0a:97:bf:41:35:ed:40:b5:
ca:a7:6a:56:a2:47:0a:c0:74:5a:6f:37:b8:99:9c:a9:f4:c8:
0c:eb:e9:7c:ea:fe:31:63:df:9d:99:64:59:7f:f7:fd:51:a0:
bb:c2:e9:83:ac:65:08:a0:16:99:76:ad:54:f9:dd:7c:c2:5e:
c5:1b:41:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org