Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rjOOmjzlVhaOO6xpQQE96_VtZLg.roa
File: rjOOmjzlVhaOO6xpQQE96_VtZLg.roa (raw, json)
Hash identifier: 0TLupkUkR20pgc5pUpVeLBOTqj5tGJdk6BpUHEeK6G0=
Subject key identifier: AE:33:8E:9A:3C:E5:56:16:8E:3B:AC:69:41:01:3D:EB:F5:6D:64:B8
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018A879A4982C0235C485BD0CE4B2B04429A
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rjOOmjzlVhaOO6xpQQE96_VtZLg.roa
Signing time: Tue 12 Sep 2023 04:15:50 +0000
ROA not before: Tue 12 Sep 2023 04:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.255.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 13:25:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:87:9a:49:82:c0:23:5c:48:5b:d0:ce:4b:2b:04:42:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Sep 12 04:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae338e9a3ce556168e3bac6941013debf56d64b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e8:92:a1:ca:11:4b:88:a1:7a:41:2d:45:3b:
69:98:d9:b6:52:76:9a:35:c7:85:f6:07:74:ff:89:
7a:6b:32:1e:bd:93:b2:71:12:15:1f:78:cf:46:af:
b2:dd:ba:de:b6:ae:f3:38:fb:df:18:34:c1:61:9f:
73:63:78:c4:37:8c:5d:15:83:89:2a:83:db:a0:94:
16:6d:5c:e9:8c:33:11:91:1b:e7:c1:18:f2:bd:c2:
ed:fe:de:45:08:e7:3e:eb:03:1f:51:3f:c7:b2:8e:
28:72:8f:e0:d6:b0:e1:d2:8b:78:11:f6:c3:03:5a:
33:60:9a:c5:29:42:f3:26:a2:b3:7b:7b:eb:26:94:
a4:99:8b:2d:5c:20:df:9f:98:ec:bc:80:d1:bd:ee:
d6:4b:bb:fc:ff:94:54:de:14:16:ac:d1:4d:01:44:
51:cd:03:95:ae:38:9e:f4:b8:87:5c:50:5f:68:6f:
90:48:73:02:44:f2:f8:ee:5a:16:d1:65:d9:8d:04:
a6:15:bf:39:c0:8e:2a:03:92:d2:45:2c:e8:5a:ae:
91:9b:80:5a:42:e4:5b:23:af:a2:4a:a8:de:7a:68:
c3:8b:45:6e:4b:99:85:0b:c1:c1:e0:63:57:e5:2e:
66:6c:fb:68:fd:f3:3d:71:bd:81:61:a7:b3:64:59:
35:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:33:8E:9A:3C:E5:56:16:8E:3B:AC:69:41:01:3D:EB:F5:6D:64:B8
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rjOOmjzlVhaOO6xpQQE96_VtZLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6f:9a:12:49:3c:ae:88:30:4a:a7:68:05:52:66:d1:5d:73:
51:85:16:03:af:07:43:6a:61:9c:7a:13:f9:62:b5:dc:3f:89:
46:bb:f5:b8:a0:74:74:b4:f3:b8:88:40:3b:4a:84:5a:b8:03:
b8:16:18:0f:9d:31:61:36:4c:0d:4c:99:2a:a0:67:e3:83:5d:
ad:de:50:ed:f9:e2:6c:c5:1e:9a:14:a1:f6:89:7a:87:4c:13:
a5:d5:31:4a:27:9c:fb:f0:d3:52:46:50:67:27:74:d4:1c:1a:
fb:3a:a8:d5:7a:29:61:a5:0e:27:ca:83:a9:41:4d:07:75:2d:
7c:32:f6:42:a5:50:96:15:2a:26:ae:8b:68:c0:87:63:9b:1e:
e0:07:4b:8a:62:45:68:82:92:dc:51:12:96:ea:f2:8a:90:ab:
6c:dd:f5:9b:61:38:39:0e:f4:e6:4b:83:8b:6f:55:33:a5:fc:
8e:17:56:29:8d:8b:f6:60:2e:b5:ce:86:77:d2:ef:c2:e5:39:
31:59:b3:70:92:69:11:5b:a3:23:70:4a:fa:4b:0a:a0:99:d6:
49:14:fe:b4:ca:60:4b:43:80:5a:62:ad:b2:5f:ce:6e:6b:8f:
e3:b3:e0:99:9d:e6:80:9f:ed:86:89:11:5a:dc:49:a4:8f:31:
4f:64:db:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org