Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/JwGXSyCsyGuhm8JGQ8wIm0l8jzo.roa
File: JwGXSyCsyGuhm8JGQ8wIm0l8jzo.roa (raw, json)
Hash identifier: 9YsrkU7gVM9rMxaxITXiwnxu3/dcLdkjLX0eGSujlls=
Subject key identifier: 27:01:97:4B:20:AC:C8:6B:A1:9B:C2:46:43:CC:08:9B:49:7C:8F:3A
Certificate issuer: /CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Certificate serial: 018C81A8665DC8BA23CC6BA139724CE348DC
Authority key identifier: 4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/JwGXSyCsyGuhm8JGQ8wIm0l8jzo.roa
Signing time: Tue 19 Dec 2023 10:39:06 +0000
ROA not before: Tue 19 Dec 2023 10:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15435
IP address blocks: 2001:67c:2e64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:a8:66:5d:c8:ba:23:cc:6b:a1:39:72:4c:e3:48:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Validity
Not Before: Dec 19 10:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2701974b20acc86ba19bc24643cc089b497c8f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:a1:aa:9e:b0:aa:2a:ae:7d:24:f7:93:d8:
28:54:2e:3b:43:42:f8:15:1f:eb:1e:8b:b5:cc:87:
2e:35:d6:36:48:89:a8:16:31:79:37:bb:78:d9:88:
4e:67:c9:3d:05:e6:62:4b:b3:24:4c:42:26:19:06:
20:29:21:06:e5:ca:04:16:51:16:6e:e8:58:fc:18:
96:10:a1:f9:1e:9f:f6:96:59:89:bb:ec:a3:b4:2f:
3d:34:39:f0:d9:97:5b:10:78:ce:87:b0:48:06:15:
a3:be:f3:d8:f2:72:34:54:e8:cf:46:c1:91:42:6e:
75:62:85:0d:e9:bb:ec:dc:3d:2e:fb:a0:2d:25:fc:
1d:a6:14:c6:a8:4e:9a:0b:45:97:5b:6f:d1:1f:78:
63:f3:10:5e:b5:40:fa:e7:ab:71:88:65:4c:f4:85:
67:64:e0:27:bf:00:fe:30:a4:a2:aa:6a:89:1a:19:
98:0a:69:b3:8c:68:b1:06:7a:cf:e7:f8:5f:6a:8d:
3f:d0:8a:79:53:5d:73:fc:95:87:b8:67:f1:0f:2d:
b7:cb:d4:fa:42:3e:ec:2f:b8:bd:8b:86:fd:eb:20:
ee:aa:dc:7b:c8:ff:4d:9b:e2:76:52:6f:3a:89:9d:
00:74:e1:7c:d4:11:76:69:84:5d:d2:89:ea:5c:1e:
dd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:01:97:4B:20:AC:C8:6B:A1:9B:C2:46:43:CC:08:9B:49:7C:8F:3A
X509v3 Authority Key Identifier:
keyid:4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/JwGXSyCsyGuhm8JGQ8wIm0l8jzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/TeLcLByThHv5efmwEO3EzahJ9Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:9a:9d:b5:28:8b:10:8b:d6:3d:db:ec:ee:26:61:54:36:dd:
63:db:14:73:d1:0a:5c:35:f1:59:b6:8c:71:b2:33:39:66:a1:
f8:90:ac:63:7c:7e:0f:4b:e1:1f:d7:d3:ec:de:e4:21:f2:c8:
a2:2b:e8:0b:3c:55:e7:6b:87:81:dd:d4:03:d4:af:5c:32:89:
c6:c3:11:0b:22:8d:09:9d:86:0d:b9:ec:c3:be:7e:5b:59:0a:
48:0c:b8:40:1d:25:1b:fa:9f:40:30:7b:f4:49:88:6b:a0:cd:
cd:67:b5:68:73:6e:7b:76:f6:54:5c:e5:e5:e9:a5:fb:38:8a:
4a:53:d4:8b:18:ee:3d:d1:27:a3:32:93:cd:de:9d:c2:2f:4d:
0e:4d:93:d9:63:fe:52:a8:4f:bb:05:ad:18:d3:51:95:85:39:
82:8a:0d:05:90:b2:d7:f2:49:80:81:7c:2c:39:26:5d:00:6d:
e0:04:89:f6:8d:d5:ac:1f:db:b7:92:cc:5c:67:25:cf:c2:0f:
93:1a:9b:84:f6:1a:5d:91:8a:8c:ea:8a:f2:77:08:56:4e:30:
3a:ad:1b:57:27:75:62:1f:f9:3e:5f:40:e3:dc:31:83:24:f3:
a8:e1:a4:c6:1b:d2:b2:9f:e3:bd:52:cc:0f:bf:6e:bd:67:a7:
94:05:ed:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:38 2024 by rpki-client on console-fra.rpki-client.org