Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/JgVG6i3oXIIZGk77NmCvY5oiKeU.roa
File: JgVG6i3oXIIZGk77NmCvY5oiKeU.roa (raw, json)
Hash identifier: cs66fRVMvrBBRi+gDJVslyw2NCn4fTPGJfwbHtHNirM=
Subject key identifier: 26:05:46:EA:2D:E8:5C:82:19:1A:4E:FB:36:60:AF:63:9A:22:29:E5
Certificate issuer: /CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Certificate serial: 01856C4A7925450C95EDE2FF8465CAD761A3
Authority key identifier: B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/JgVG6i3oXIIZGk77NmCvY5oiKeU.roa
Signing time: Sun 01 Jan 2023 07:44:57 +0000
ROA not before: Sun 01 Jan 2023 07:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39771
IP address blocks: 153.112.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:79:25:45:0c:95:ed:e2:ff:84:65:ca:d7:61:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4852ffba7d57c5a8afbb6ea5beaf7dfec0c145a
Validity
Not Before: Jan 1 07:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=260546ea2de85c82191a4efb3660af639a2229e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b0:58:dc:f7:03:4e:a3:cf:48:a8:ed:f8:fa:
e7:26:4c:1c:67:5d:0f:cd:59:7a:ee:5b:8a:71:e9:
fd:5c:4d:69:7d:1c:3a:4d:82:39:b7:4c:a3:b6:66:
7e:73:ab:d7:61:3d:b0:6a:b1:87:59:a5:69:cf:3f:
87:65:14:32:03:2a:5a:d2:f3:13:ad:bf:d6:b7:75:
11:b6:31:5d:67:bc:5f:3e:fa:82:40:be:65:bc:1b:
b7:75:42:e9:3f:12:5a:e9:ce:b6:cd:06:5a:2a:1c:
85:f2:25:70:93:18:55:c3:4a:a2:d6:ce:84:52:14:
21:12:68:1a:8e:2f:bd:6e:b5:05:b1:6d:81:39:36:
23:82:92:67:78:50:03:e0:97:ad:be:67:f9:6d:4c:
d5:bf:b5:b7:e3:02:3f:db:14:9e:ce:7e:40:13:8d:
77:65:e5:28:a0:e1:2d:09:c8:a2:14:c2:b9:75:df:
68:c3:61:cf:8b:3f:b9:22:15:03:62:3e:d7:48:e6:
0e:17:ee:f8:13:07:5c:11:ff:48:9a:b3:fd:12:f0:
f2:f4:76:03:52:01:e5:5b:a4:55:14:4d:3b:66:01:
80:12:5a:51:29:24:86:74:63:e3:2a:35:ee:58:30:
07:1b:08:cb:c9:9b:d2:ef:d4:b6:0a:2d:80:a9:ef:
f0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:05:46:EA:2D:E8:5C:82:19:1A:4E:FB:36:60:AF:63:9A:22:29:E5
X509v3 Authority Key Identifier:
keyid:B4:85:2F:FB:A7:D5:7C:5A:8A:FB:B6:EA:5B:EA:F7:DF:EC:0C:14:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIUv-6fVfFqK-7bqW-r33-wMFFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/JgVG6i3oXIIZGk77NmCvY5oiKeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e45e30-e7d8-4fb8-90ad-f71038e967a4/1/tIUv-6fVfFqK-7bqW-r33-wMFFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.112.232.0/21
Signature Algorithm: sha256WithRSAEncryption
92:e6:54:a4:b9:0c:13:5f:a6:ce:c1:03:90:cc:d9:a8:da:1b:
dc:f7:3d:1f:f4:54:49:6d:f7:fe:07:c9:2c:08:bd:44:16:72:
81:ba:f5:2c:1e:fe:a5:85:d4:12:e5:95:f6:ab:51:09:a6:ab:
52:60:69:11:c1:18:97:68:e4:9d:d3:b4:73:ee:aa:ce:75:e4:
be:d5:dc:85:b6:72:49:34:b8:c5:44:16:90:2d:67:e6:b6:2e:
5f:fc:91:de:17:1a:94:01:af:2e:3e:13:17:6d:ff:58:6c:cf:
65:0b:71:5d:76:ad:06:00:1d:e4:a4:23:9d:79:3f:06:5f:a0:
56:ba:3d:8f:77:96:9a:e2:e7:dc:7d:ef:64:ca:91:93:7e:e8:
31:26:6d:72:72:bc:ad:f7:fd:fb:21:eb:07:13:27:c9:9f:fa:
6b:ae:de:15:5d:c6:32:c4:3d:72:b6:9c:7b:3c:e0:a4:6d:5d:
e2:57:30:0c:05:ba:2d:e4:a8:aa:40:b6:86:b9:47:e3:6c:6e:
ed:27:39:11:0e:78:06:10:11:ef:db:81:ca:94:89:cd:6f:be:
2b:d4:4c:a5:a3:3f:c6:34:6d:72:9a:a6:8c:1a:e3:1d:67:14:
3e:82:1e:85:81:4c:46:1f:67:bb:9f:31:84:88:82:6f:b8:a8:
20:a1:46:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:31 2024 by rpki-client on console-fra.rpki-client.org