Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JW_PxCFSyLuhCi2d_F21UCmYW6s.roa
File: JW_PxCFSyLuhCi2d_F21UCmYW6s.roa (raw, json)
Hash identifier: AUQ2+Zl6/+2cJS+E3g5k3femH4gGrkrUz0lWoOnJufA=
Subject key identifier: 25:6F:CF:C4:21:52:C8:BB:A1:0A:2D:9D:FC:5D:B5:50:29:98:5B:AB
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01874D1995CDDB82A5A04BD092AC1553829A
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JW_PxCFSyLuhCi2d_F21UCmYW6s.roa
Signing time: Tue 04 Apr 2023 16:28:55 +0000
ROA not before: Tue 04 Apr 2023 16:28:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39120
IP address blocks: 45.156.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4d:19:95:cd:db:82:a5:a0:4b:d0:92:ac:15:53:82:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 4 16:28:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256fcfc42152c8bba10a2d9dfc5db55029985bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:2b:a3:fd:f3:7c:24:57:c9:93:9a:ab:56:
70:e4:0d:32:65:5f:24:6c:3b:44:34:6c:72:b0:4c:
19:36:bb:5c:e9:e4:d3:da:89:e3:97:02:06:78:22:
3f:49:fd:4a:1a:88:05:1f:dd:2d:99:c5:41:d8:ba:
cb:4e:8c:55:f0:a7:ff:3c:11:a9:ad:f6:fb:9e:4e:
0a:be:57:c0:50:59:dd:57:f6:0b:38:28:01:f6:23:
38:e2:71:e9:aa:34:69:e8:61:21:ff:84:fb:21:a0:
97:61:0f:ec:b6:c2:98:97:d7:0c:63:1a:ed:16:78:
57:df:e4:b9:e8:df:68:d7:08:85:ae:42:5c:99:9a:
2e:84:d9:e4:d8:af:6b:47:63:70:06:78:63:0a:d4:
6c:48:bb:3e:1f:39:d7:e4:b8:ed:3e:70:84:af:36:
b2:c4:dc:1a:29:7b:d9:52:ec:9c:07:0b:23:3c:4c:
2c:a6:f9:ab:8b:12:c2:3a:f9:dc:89:2c:cd:50:47:
f0:1e:36:0e:10:bb:00:ec:13:43:f7:bf:0a:1d:47:
3c:77:2b:be:85:4f:ae:9b:09:10:f7:81:82:79:50:
41:39:5f:85:9a:cb:a0:84:4c:e8:9c:7d:a0:bc:9a:
5c:8f:94:f1:17:96:4b:0e:a3:b4:63:f0:e1:13:83:
c7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6F:CF:C4:21:52:C8:BB:A1:0A:2D:9D:FC:5D:B5:50:29:98:5B:AB
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/JW_PxCFSyLuhCi2d_F21UCmYW6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.157.0/24
Signature Algorithm: sha256WithRSAEncryption
66:dc:5b:87:dc:5a:97:b1:67:49:5b:4e:f7:97:4a:03:45:3c:
c1:23:77:26:eb:be:eb:5e:a2:24:00:7e:f9:15:e7:ca:9c:92:
ec:c3:22:e5:0e:f8:d5:5b:7e:53:9f:06:79:ff:b6:60:1d:c3:
1d:71:ad:ef:af:45:09:bc:5c:1f:9e:48:e6:73:26:18:da:0f:
c2:45:7d:85:ad:9f:a4:f5:63:49:a4:b1:e3:01:a6:7f:4f:2b:
33:5a:e9:08:2d:d9:8e:e0:bd:05:55:07:45:38:59:b3:2c:78:
e4:a7:64:5a:51:07:8a:45:e8:02:92:73:0b:e0:52:e6:d1:2b:
72:5e:96:c9:b8:50:e8:05:c2:50:26:d2:96:b1:38:ab:ab:24:
8b:6f:c9:79:83:f4:c1:e7:e0:87:7e:da:66:f0:00:f7:da:6a:
94:5c:b7:e5:32:fe:00:ed:56:f0:c1:c4:15:3f:e2:83:03:4e:
eb:36:7e:ec:43:97:60:11:7c:fd:bf:f6:a4:15:78:30:06:8c:
51:74:2a:b0:c9:bf:51:12:2c:26:e6:d7:d6:bd:eb:42:cc:a0:
b9:38:b1:e6:1a:5e:d7:ed:8e:19:75:8c:3a:55:b4:62:7a:4b:
c4:2d:f9:0d:f8:0b:75:9b:62:85:84:50:e5:70:78:df:76:e1:
32:56:4c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:54 2023 by rpki-client on console-ams.rpki-client.org