Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/juSR_8i7Lxb5L3k-oLh3ZM19lAA.roa
File: juSR_8i7Lxb5L3k-oLh3ZM19lAA.roa (raw, json)
Hash identifier: vwhkxVlae5dtLHTF4qYVhQE6jnWbH+NaDVUd4VXsMp8=
Subject key identifier: 8E:E4:91:FF:C8:BB:2F:16:F9:2F:79:3E:A0:B8:77:64:CD:7D:94:00
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018D422C3C27C3912829DA49796EA627234F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/juSR_8i7Lxb5L3k-oLh3ZM19lAA.roa
Signing time: Thu 25 Jan 2024 19:50:11 +0000
ROA not before: Thu 25 Jan 2024 19:50:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
91.186.204.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.164.0/23 maxlen: 24
94.241.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 05:48:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:42:2c:3c:27:c3:91:28:29:da:49:79:6e:a6:27:23:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 25 19:50:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ee491ffc8bb2f16f92f793ea0b87764cd7d9400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:fb:b4:79:e0:ad:8c:3e:f4:08:da:61:fe:
4f:e4:b8:8e:ee:bf:3f:d3:a0:33:97:7e:b2:42:02:
5d:1f:9d:ac:20:64:12:d4:34:a6:71:c5:6d:86:86:
be:63:8e:6b:2a:1d:9a:c3:46:e5:e0:6b:29:90:0f:
eb:48:8d:77:ad:2b:b2:d1:84:6e:8b:e9:c9:3f:4e:
7e:46:3b:15:34:20:dd:20:71:dd:8d:29:20:8b:56:
13:f6:d7:99:6d:70:37:77:ff:4b:96:e0:55:48:3d:
02:ba:9f:a7:51:d8:06:13:13:d5:eb:15:82:27:44:
4c:47:a8:29:0c:59:54:02:46:a4:79:44:1c:ff:a3:
b6:41:13:22:1b:75:e7:dc:86:bf:14:58:32:53:c4:
84:dc:3d:ac:b1:37:0a:d7:cf:cd:ae:10:f8:a3:ba:
00:e6:24:00:60:94:3f:4e:02:7d:83:4c:16:78:d5:
35:72:13:41:3a:ed:67:b9:4b:e2:c5:4f:cb:2a:da:
19:51:a4:00:c4:91:85:43:d1:f5:b2:da:a7:43:da:
2f:1a:a0:31:db:44:d4:22:db:e8:ec:34:75:69:8d:
5f:82:20:18:1b:28:ed:52:2d:fb:06:3d:68:18:f5:
79:d3:f9:bf:bb:8e:66:42:95:89:65:de:d5:e0:c6:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E4:91:FF:C8:BB:2F:16:F9:2F:79:3E:A0:B8:77:64:CD:7D:94:00
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/juSR_8i7Lxb5L3k-oLh3ZM19lAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
83.147.252.0/22
91.186.204.0/22
91.186.216.0/22
94.241.164.0/23
94.241.168.0/21
Signature Algorithm: sha256WithRSAEncryption
82:bd:32:87:9a:99:78:a6:a8:3a:2e:3b:9e:f5:b2:d9:b0:c1:
ce:95:53:72:e7:7d:a2:1a:4d:cb:d5:67:86:81:22:2a:82:d6:
28:f6:63:c6:95:30:dc:b2:a5:0e:c0:2b:3b:57:5a:a5:8e:89:
4e:40:18:c3:9f:12:1d:9c:c5:4d:2c:6a:f6:3b:78:29:0e:69:
0e:ea:6f:ba:33:32:1a:5e:90:94:d6:8d:b8:80:15:57:77:a9:
e4:04:07:48:b0:11:18:fd:16:99:14:b1:09:95:0f:68:e6:20:
8f:53:75:2c:ba:fe:08:9a:c8:f4:5d:29:16:c3:fb:2b:90:29:
32:ee:97:df:c9:8c:4f:1e:99:79:94:e7:72:0f:18:06:4d:6e:
e6:82:90:86:35:47:4e:37:71:1a:6d:55:44:fa:16:e9:16:26:
1f:dc:9c:a4:9e:80:48:80:17:4e:96:df:c0:59:75:2a:44:8b:
0d:6c:63:f7:4e:7e:50:2f:95:6e:0d:fe:57:4f:51:9c:f8:9b:
fe:88:bc:c3:35:a9:a9:3b:03:42:c0:c6:97:b3:e7:50:27:d0:
5c:d9:64:2e:02:00:07:ea:06:0f:70:32:ca:ce:1c:b6:a3:30:
90:39:d8:7c:0d:76:e9:2c:68:83:aa:34:c0:56:63:81:a2:b1:
8d:6d:b2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org