Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/J2xEJ7qF7ecd4i_oLOTWflpYy9Q.roa
File: J2xEJ7qF7ecd4i_oLOTWflpYy9Q.roa (raw, json)
Hash identifier: gEeqANulikg0FGbpZXhoIu31DTVJpXOntGE24fFdvi8=
Subject key identifier: 27:6C:44:27:BA:85:ED:E7:1D:E2:2F:E8:2C:E4:D6:7E:5A:58:CB:D4
Certificate issuer: /CN=03f3f8259b30ec03722f942035a94e209f882861
Certificate serial: 01856E6F9EB638DB3EEBE7307A77AC18ED07
Authority key identifier: 03:F3:F8:25:9B:30:EC:03:72:2F:94:20:35:A9:4E:20:9F:88:28:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P4JZsw7ANyL5QgNalOIJ-IKGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/J2xEJ7qF7ecd4i_oLOTWflpYy9Q.roa
Signing time: Sun 01 Jan 2023 17:44:46 +0000
ROA not before: Sun 01 Jan 2023 17:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43341
IP address blocks: 193.46.36.0/22 maxlen: 22
2a0c:d240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:9e:b6:38:db:3e:eb:e7:30:7a:77:ac:18:ed:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3f8259b30ec03722f942035a94e209f882861
Validity
Not Before: Jan 1 17:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=276c4427ba85ede71de22fe82ce4d67e5a58cbd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:f3:e0:59:28:df:e7:7c:94:00:f2:1d:5f:
ad:ab:02:c8:e6:b8:7f:f1:a2:54:b9:34:b7:f9:1a:
3d:21:6d:88:cb:34:d4:e7:8a:ef:e3:cb:a3:c3:ec:
19:e3:9a:44:ea:dd:70:fb:64:9c:07:35:cd:05:76:
24:ab:dd:48:76:46:64:0b:16:45:6f:c0:d2:69:6b:
3b:ef:3b:aa:7e:05:5c:16:d7:88:d0:75:da:40:f0:
29:ed:f0:b3:54:74:ae:37:01:0c:fb:76:b7:04:a1:
85:62:26:6b:f1:f2:69:94:74:ae:e9:e8:66:60:73:
98:af:2c:c2:be:8e:1d:d6:90:f5:ad:cb:50:47:f3:
03:dc:f7:25:91:a3:88:59:c6:f2:f0:4a:50:43:9b:
13:4f:11:0b:81:61:e6:07:cf:56:dd:1a:8f:e6:bb:
9e:bc:34:04:b8:a6:94:a2:25:b9:ce:a5:a3:12:b6:
5f:bd:a9:7f:06:1a:10:9c:45:f4:a7:8a:84:fb:73:
24:2f:cd:e3:b2:76:04:bc:9f:4d:5a:fc:9d:32:c1:
82:d0:48:d5:67:7f:58:70:03:0b:ef:ab:8b:4f:9d:
76:5c:56:ab:13:3a:13:14:dd:68:18:e7:82:22:76:
ac:ce:33:c4:3a:9c:48:02:79:77:41:2d:78:5f:4b:
29:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6C:44:27:BA:85:ED:E7:1D:E2:2F:E8:2C:E4:D6:7E:5A:58:CB:D4
X509v3 Authority Key Identifier:
keyid:03:F3:F8:25:9B:30:EC:03:72:2F:94:20:35:A9:4E:20:9F:88:28:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P4JZsw7ANyL5QgNalOIJ-IKGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/J2xEJ7qF7ecd4i_oLOTWflpYy9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/A_P4JZsw7ANyL5QgNalOIJ-IKGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.36.0/22
IPv6:
2a0c:d240::/29
Signature Algorithm: sha256WithRSAEncryption
39:2f:0e:86:5a:fa:c9:dd:23:17:d9:59:4a:3e:8b:0e:a7:ac:
b2:89:01:63:fb:0e:a9:9e:20:a9:26:77:f8:88:f0:d6:0f:96:
1d:3d:6a:3d:dc:cd:7e:b3:b8:9f:a2:45:93:5d:e3:f2:7d:61:
33:33:1d:57:e3:be:42:9e:94:11:43:42:9b:5c:5f:2a:f2:c9:
65:64:a0:19:72:27:01:79:fe:cd:a0:f1:23:10:05:a6:00:5f:
cd:3c:ea:d4:da:0b:b1:e3:a1:26:4a:65:e0:88:fc:26:7c:46:
f5:53:26:8c:5c:54:04:c2:c2:be:77:02:22:d4:58:db:e2:a0:
e9:a9:33:fd:33:e9:0c:a4:c2:cd:f0:92:cf:08:9d:a2:6d:a2:
c0:86:3f:65:49:23:01:9f:c9:6f:47:7a:b8:80:6a:d4:01:53:
5f:21:a0:20:2c:a2:17:fe:24:d1:27:9a:db:85:bd:df:3c:9f:
a5:ac:a0:a4:75:17:3b:e9:de:fc:b0:ee:59:b9:b1:e0:e1:6d:
8f:9e:a4:80:7f:5d:d9:e5:ba:fd:be:97:0a:ee:97:0c:f6:41:
d5:16:b8:c5:af:f8:90:8a:bc:f5:42:9a:e0:ec:69:43:28:4d:
6b:12:bf:c9:c7:2c:25:a3:ca:c6:e7:77:76:38:4d:70:2d:1a:
53:9f:30:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:50 2024 by rpki-client on console-fra.rpki-client.org