Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J_Yp-smf61KNY5UiuWlZlcB-E1I.roa
File: J_Yp-smf61KNY5UiuWlZlcB-E1I.roa (raw, json)
Hash identifier: STA+8v6VZ7FarqR0RkDWSbmknBoqRGVFWIQzfjbF2IQ=
Subject key identifier: 27:F6:29:FA:C9:9F:EB:52:8D:63:95:22:B9:69:59:95:C0:7E:13:52
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C2F16BA43B33D81EA9AFD404F42A1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J_Yp-smf61KNY5UiuWlZlcB-E1I.roa
Signing time: Mon 02 Jan 2023 05:55:01 +0000
ROA not before: Mon 02 Jan 2023 05:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 185.106.92.0/24 maxlen: 24
194.36.177.0/24 maxlen: 24
82.115.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Jan 2023 09:57:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:2f:16:ba:43:b3:3d:81:ea:9a:fd:40:4f:42:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27f629fac99feb528d639522b9695995c07e1352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7e:4c:4f:49:1f:2b:9a:2e:e6:c2:1a:41:24:
f0:3a:80:c1:51:82:e2:08:32:c7:38:11:de:67:29:
2f:7a:a8:19:1a:b0:54:54:5d:6f:9c:96:38:60:c0:
30:12:3a:62:c4:e6:d2:b8:8d:58:f7:54:85:b0:8b:
81:42:48:03:77:37:1c:2a:7f:73:61:13:96:94:58:
72:4e:da:7c:f8:fa:84:89:79:d2:e3:38:eb:35:71:
a5:ef:6b:62:08:78:a5:a5:99:1b:34:70:b0:f1:75:
93:3f:65:74:2a:67:86:93:dd:49:45:cd:68:ca:9a:
c3:60:ef:78:20:15:3f:2c:2a:5c:a9:18:8d:76:e3:
74:9f:94:d2:92:34:fa:de:f7:84:e0:82:cf:a5:32:
5e:41:13:99:16:62:12:6c:e8:65:9d:1e:bc:f4:56:
22:dc:3c:7e:3d:b1:83:0e:9f:09:53:db:95:45:85:
7a:c5:69:f4:39:e0:11:b6:ba:38:0e:23:6d:63:3d:
b4:de:3a:56:b9:03:73:d3:be:43:6e:a9:68:b4:12:
a8:5d:3c:4f:5d:66:28:af:22:40:21:fa:59:00:18:
03:ee:81:ee:80:26:07:b7:6b:49:f8:c0:f0:0c:c5:
f4:4e:05:8b:35:fb:aa:1b:1f:dc:2b:0d:7f:0c:3a:
67:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F6:29:FA:C9:9F:EB:52:8D:63:95:22:B9:69:59:95:C0:7E:13:52
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J_Yp-smf61KNY5UiuWlZlcB-E1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.223.0/24
185.106.92.0/24
194.36.177.0/24
Signature Algorithm: sha256WithRSAEncryption
77:72:c8:c2:c5:0e:aa:26:82:15:3c:6d:3f:d9:22:b6:af:92:
aa:aa:e9:3e:bf:c4:60:2d:d0:65:de:06:c0:28:db:bc:9e:47:
43:f2:b8:dc:da:16:7a:9f:08:2d:3c:22:7e:e8:e0:de:ce:03:
33:f3:3f:6a:92:7d:94:6c:a9:d7:41:b2:c5:d0:4d:c5:49:b7:
b6:15:a5:3d:43:20:4d:87:73:d5:c8:14:5b:73:6f:66:e0:b9:
d2:94:68:ea:89:2c:c3:75:1c:6a:57:0c:d7:a0:c3:48:4d:5b:
37:2f:2f:6e:29:d5:a6:bf:de:0e:15:cd:45:f1:d0:e4:da:9e:
9c:92:a5:cd:ff:0c:3b:f7:85:06:f0:cd:b8:92:6b:7b:c8:34:
b8:c5:e4:c3:73:83:1f:6d:af:3b:82:88:d0:fc:f3:b9:54:8c:
01:b9:66:66:f7:0e:1f:c6:3a:fa:cc:ee:b8:83:78:f0:e0:24:
34:a6:13:b3:43:99:b0:e0:83:18:66:bf:94:e7:82:84:b1:5a:
b8:63:60:19:be:04:af:7b:03:1c:8d:40:9a:eb:77:de:59:84:
74:93:d9:52:06:24:39:15:71:f5:26:12:4a:72:aa:3a:80:6b:
a8:c0:40:0a:36:2c:d8:ce:30:68:b1:4d:ed:23:7f:23:16:7e:
1d:ab:66:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org