Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/JugGpKb8zAChoAkz7vMtn1I9rFo.roa
File: JugGpKb8zAChoAkz7vMtn1I9rFo.roa (raw, json)
Hash identifier: c3z1JZhZ37fWGKPkRDKfTOK6Mes6Va7KtyKpp526qu4=
Subject key identifier: 26:E8:06:A4:A6:FC:CC:00:A1:A0:09:33:EE:F3:2D:9F:52:3D:AC:5A
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 018C0AAA4AAC37B25DBD4B06D56EF2600E05
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/JugGpKb8zAChoAkz7vMtn1I9rFo.roa
Signing time: Sun 26 Nov 2023 08:06:21 +0000
ROA not before: Sun 26 Nov 2023 08:06:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210197
IP address blocks: 85.204.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0a:aa:4a:ac:37:b2:5d:bd:4b:06:d5:6e:f2:60:0e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Nov 26 08:06:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26e806a4a6fccc00a1a00933eef32d9f523dac5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:22:f1:92:46:40:8e:30:41:71:cc:11:a0:ec:
38:0b:10:a8:3f:e2:81:43:af:68:12:98:f5:3b:23:
23:a8:56:a4:91:14:17:30:f6:70:69:56:f2:22:aa:
0b:d4:2a:c2:6d:3b:3a:88:c0:5f:d6:48:92:80:0a:
31:09:e2:05:26:99:9b:30:eb:d8:e9:4b:ee:00:c3:
c1:dd:7b:e2:c3:55:3c:69:22:53:f3:b0:a6:1e:ea:
15:53:f8:f1:b5:e6:60:e5:3c:67:50:d4:12:9b:ad:
43:ef:85:f0:8b:d3:6c:89:d0:3d:b5:41:b5:21:ab:
ee:41:6b:fe:a9:81:0c:ee:7e:de:46:43:0d:3a:79:
8c:a6:43:cf:1b:3e:23:18:34:15:33:64:86:49:af:
dc:d6:bc:e0:e7:c5:12:7f:90:27:d7:b8:c3:48:94:
fb:60:ff:8a:09:3f:3a:59:83:96:f0:aa:c3:87:26:
89:c8:b3:b9:3f:00:f3:d5:7b:65:f0:22:ce:1d:2b:
df:80:78:70:d3:a6:7d:29:6e:53:1e:c6:f7:34:64:
c5:d9:9e:03:d9:62:09:8a:02:b6:4a:84:3b:4f:35:
42:b1:99:d3:b0:14:95:b0:29:5d:8a:4a:e9:78:87:
91:cf:ab:5e:42:15:8a:e9:d9:02:9d:18:05:94:20:
76:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E8:06:A4:A6:FC:CC:00:A1:A0:09:33:EE:F3:2D:9F:52:3D:AC:5A
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/JugGpKb8zAChoAkz7vMtn1I9rFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.38.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ac:e5:58:ad:8d:13:bb:75:19:3f:7d:2b:5f:77:e8:f6:7a:
54:4f:6d:73:6a:15:7d:1a:9a:12:8e:3d:5a:0c:b7:cb:97:0b:
0b:aa:4f:d1:1b:45:ee:62:53:ec:0a:5f:3a:c6:e9:7a:18:fa:
d7:b9:80:eb:4a:95:e5:08:11:9a:ef:de:c8:19:72:5b:17:e3:
08:08:c0:46:6f:e3:5d:7e:1f:26:99:d5:6c:a2:d3:90:94:f5:
ed:ef:ae:dc:ad:a0:a6:1e:90:a7:a1:23:72:24:77:0e:6a:9f:
8a:98:bc:5e:77:c7:c7:29:47:ad:2a:3f:23:66:a8:df:e2:d1:
8c:d0:d8:f0:6e:08:b3:bc:1a:76:29:51:c1:92:29:52:ee:71:
0a:6f:20:d1:fc:f3:f4:ed:ad:45:62:fc:ef:58:c4:f7:e0:ca:
54:cd:07:8b:ee:d6:66:f5:25:00:d0:7e:fa:26:4d:44:e6:76:
d3:da:33:4d:4f:a8:e1:97:71:de:e8:0c:02:65:2e:a9:eb:12:
0f:03:7a:7e:aa:8e:71:70:8e:49:a1:45:e2:53:46:ea:a6:3f:
47:65:75:bc:e3:dd:5d:87:59:f6:0d:cf:58:99:bb:6f:10:76:
fd:d3:c9:e8:f1:5e:f0:ac:c6:b2:d5:cb:a5:6d:85:2f:01:5a:
e8:15:24:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:10 2024 by rpki-client on console-fra.rpki-client.org