Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/JX1THrmSBw4LMQt5IXWZcIyIKiU.roa
File: JX1THrmSBw4LMQt5IXWZcIyIKiU.roa (raw, json)
Hash identifier: BYje9dHCr0vv2NqkbJ3jZwiTJ0xLzWsiyCQHFQMWJdc=
Subject key identifier: 25:7D:53:1E:B9:92:07:0E:0B:31:0B:79:21:75:99:70:8C:88:2A:25
Certificate issuer: /CN=3026806a6b8dac68c2a32b65849229524fc33da7
Certificate serial: 01862B276DD502C1433A7BBADE43EDC147C1
Authority key identifier: 30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/JX1THrmSBw4LMQt5IXWZcIyIKiU.roa
Signing time: Tue 07 Feb 2023 09:14:09 +0000
ROA not before: Tue 07 Feb 2023 09:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47536
IP address blocks: 193.105.29.0/24 maxlen: 24
2a12:79c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Mar 2023 11:13:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:27:6d:d5:02:c1:43:3a:7b:ba:de:43:ed:c1:47:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026806a6b8dac68c2a32b65849229524fc33da7
Validity
Not Before: Feb 7 09:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=257d531eb992070e0b310b79217599708c882a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:6c:be:bd:e1:72:cc:93:bb:c4:de:0c:59:
ed:eb:0c:99:82:96:7c:a1:7d:6b:50:0e:d6:b8:50:
26:91:fe:79:e5:57:ab:4e:4e:ab:ea:d6:21:df:76:
dc:24:9f:72:93:71:c5:0f:fa:67:ef:88:67:b4:a6:
43:40:08:2d:b9:24:b7:8e:05:99:75:aa:6d:d7:06:
fc:82:ea:bb:e7:be:9e:ae:07:a3:0c:aa:d9:11:a0:
a8:60:44:ca:ae:ab:83:f9:5d:ac:31:52:ac:70:a7:
86:55:ce:e6:32:ec:79:34:7d:23:05:59:53:40:d2:
2c:64:bb:b6:29:4d:04:c0:0b:f1:cc:56:f7:85:ac:
59:80:8f:8d:11:10:5e:ea:78:d5:58:24:40:46:95:
db:67:e4:66:fb:81:76:e4:a8:bd:58:0c:f3:0e:72:
85:e5:49:e2:eb:e5:8f:8d:bf:5e:3b:e4:5c:3e:6c:
d7:ca:6c:43:85:61:04:ba:b8:de:d1:0f:c4:3d:7b:
56:8e:08:b6:55:ec:12:79:dd:73:e5:79:8b:7a:70:
a5:de:e1:8e:36:49:82:a8:ab:9d:4b:35:2d:84:4a:
fe:1b:00:2e:99:a4:bb:4c:e0:92:dd:91:f6:ed:23:
eb:53:71:fd:03:21:36:06:52:4a:a8:8b:66:e3:fc:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7D:53:1E:B9:92:07:0E:0B:31:0B:79:21:75:99:70:8C:88:2A:25
X509v3 Authority Key Identifier:
keyid:30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/JX1THrmSBw4LMQt5IXWZcIyIKiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/MCaAamuNrGjCoytlhJIpUk_DPac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.29.0/24
IPv6:
2a12:79c2::/32
Signature Algorithm: sha256WithRSAEncryption
17:0d:86:4d:58:ce:2a:97:b1:fa:48:35:33:0c:41:e9:c0:f6:
04:47:8f:2f:bb:b6:3e:da:cb:fa:e9:07:86:7c:8c:2f:6e:da:
47:18:60:1b:56:05:94:32:c6:8e:ee:d9:6c:f6:6f:0d:0b:87:
ce:0c:61:af:2b:85:b2:a7:eb:4a:cb:c2:73:36:df:bc:94:84:
68:ba:2a:b7:35:d1:e6:c9:c4:19:b2:2c:91:c3:a3:b8:7f:b6:
7f:c7:74:a5:b5:ea:a3:da:a3:13:0c:c2:6e:9c:ec:05:33:f2:
bc:38:13:60:10:67:02:19:f6:60:7a:ed:fc:a3:f9:c3:25:c9:
8c:41:b9:2d:3e:9b:a7:82:75:fa:79:27:40:0c:78:51:00:ff:
81:e3:4d:9d:e2:c6:b1:93:f4:ca:72:95:25:ac:2d:13:9a:c7:
73:b6:e1:a1:d4:8f:2d:70:31:36:f8:c7:ad:b4:9b:1d:58:eb:
de:9c:48:30:19:73:72:57:e0:7f:68:02:05:c1:82:ce:9e:06:
d0:41:d2:33:4b:ea:97:d9:2e:eb:50:63:37:58:34:5c:c4:ca:
38:43:f6:7f:d7:c9:89:ac:de:bc:83:ac:08:2b:a7:09:bb:af:
ab:93:50:0a:52:cd:2c:1d:0d:e4:93:f6:5d:fd:e8:9e:c4:cd:
71:7b:12:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org