Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JGgtkx710iZJ4jg-sLGHFUZtzA0.roa
File: JGgtkx710iZJ4jg-sLGHFUZtzA0.roa (raw, json)
Hash identifier: a0ikyIyko7lZL6LsjojuGNshzfNXTUoR6d6Vb1AFM7g=
Subject key identifier: 24:68:2D:93:1E:F5:D2:26:49:E2:38:3E:B0:B1:87:15:46:6D:CC:0D
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571031CA51B87F4FE0BBB3C903548C6B7
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JGgtkx710iZJ4jg-sLGHFUZtzA0.roa
Signing time: Mon 02 Jan 2023 05:45:07 +0000
ROA not before: Mon 02 Jan 2023 05:45:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210740
IP address blocks: 194.32.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:1c:a5:1b:87:f4:fe:0b:bb:3c:90:35:48:c6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24682d931ef5d22649e2383eb0b18715466dcc0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:27:50:09:b9:c5:6a:81:87:09:da:4d:7a:1a:
bf:3b:16:4f:7b:fc:46:1b:8a:79:fa:79:43:2e:ba:
79:5d:17:bb:78:6e:a4:25:c0:85:62:02:1f:da:74:
97:83:09:40:1b:3d:e6:58:87:ce:fe:3e:12:6c:3d:
58:5f:0b:04:ff:2b:12:a1:62:eb:9b:d1:34:08:d2:
dd:5f:aa:32:8c:ec:7b:b3:31:ba:a8:91:b5:49:59:
3a:7d:89:50:7f:be:f3:1f:7f:22:0f:94:71:5f:14:
e3:ed:79:b5:f4:88:be:bb:5c:1b:91:72:d8:30:06:
ec:0e:16:d5:ce:c8:26:f0:8d:3e:9c:df:45:54:c0:
88:f1:00:54:0f:1e:f4:7c:41:2d:2f:dc:95:43:24:
a5:a2:87:11:ac:99:16:c9:79:b2:f7:b1:ca:6d:61:
50:8e:54:8b:e6:54:23:ed:9b:61:96:fa:d6:a4:11:
86:5b:7a:a7:c6:1c:24:ca:40:65:7d:57:e5:20:92:
f0:07:a2:33:00:0d:bf:71:13:4f:05:ed:f7:6e:4f:
da:25:7d:50:10:e8:da:66:9d:fc:a4:80:f6:83:50:
16:bb:88:11:8a:a2:28:c3:81:d2:b5:55:f2:ff:ce:
41:dc:c7:1f:d5:32:2c:af:17:c0:83:08:40:10:42:
12:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:68:2D:93:1E:F5:D2:26:49:E2:38:3E:B0:B1:87:15:46:6D:CC:0D
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JGgtkx710iZJ4jg-sLGHFUZtzA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.121.0/24
Signature Algorithm: sha256WithRSAEncryption
00:39:fe:4b:94:a7:e1:ed:9c:3e:c9:e3:28:22:78:4a:35:a3:
d7:7f:99:78:2b:1c:9e:31:60:3e:0b:14:df:74:fc:aa:e4:6d:
02:0d:f1:b3:d7:21:60:66:b2:e4:1d:c7:50:dd:0d:aa:cd:78:
1f:8d:30:33:db:b6:98:04:29:01:02:28:15:08:07:06:29:ed:
6d:34:c6:d8:6d:e2:5b:87:f7:69:b1:fa:fb:ff:32:2c:60:58:
66:f9:f8:3a:9d:46:93:14:7b:7f:8e:19:b0:a5:97:04:df:a8:
38:61:4a:99:60:b7:41:e5:74:15:6a:3d:1b:19:54:83:da:34:
f7:a2:43:18:0e:a1:d2:fa:09:3a:d0:d8:51:f8:66:c8:b3:8e:
84:bb:05:93:8b:73:f9:2c:e8:9a:99:32:8b:d4:1e:9c:84:c0:
40:a6:df:01:4d:1f:3c:d0:40:e0:1f:0e:94:cb:f9:8c:32:ec:
f0:b3:08:ff:d7:6d:9d:2f:8a:9d:a1:1b:16:f1:1c:43:68:f9:
ba:41:9d:74:4d:c4:d1:20:69:1d:e4:a9:02:76:5c:25:bc:e8:
d4:aa:61:8f:a2:87:cd:05:b2:a2:59:a1:e0:a7:04:da:e6:97:
d6:87:4b:eb:ab:a1:06:51:b3:0c:9c:11:ec:23:f4:58:a7:55:
49:f1:fa:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:17 2024 by rpki-client on console-ams.rpki-client.org