Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a1f212-ba35-466b-b52e-3853d340c9a6/1/JnO3goYlWM87_wWk4Bgvpf6UTa4.roa
File: JnO3goYlWM87_wWk4Bgvpf6UTa4.roa (raw, json)
Hash identifier: fC6F0Ea6pcb8xe3JG/nBvIj8YPYg6SOHIB5T+dXOKK4=
Subject key identifier: 26:73:B7:82:86:25:58:CF:3B:FF:05:A4:E0:18:2F:A5:FE:94:4D:AE
Certificate issuer: /CN=ab4f00f5c3ab3df4c674a410d8a0f0182fb5e918
Certificate serial: 0185723A389CCFB0DF90CAB2E716679EDD24
Authority key identifier: AB:4F:00:F5:C3:AB:3D:F4:C6:74:A4:10:D8:A0:F0:18:2F:B5:E9:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q08A9cOrPfTGdKQQ2KDwGC-16Rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1f212-ba35-466b-b52e-3853d340c9a6/1/JnO3goYlWM87_wWk4Bgvpf6UTa4.roa
Signing time: Mon 02 Jan 2023 11:24:56 +0000
ROA not before: Mon 02 Jan 2023 11:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 178.209.64.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 03 Feb 2023 09:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:38:9c:cf:b0:df:90:ca:b2:e7:16:67:9e:dd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab4f00f5c3ab3df4c674a410d8a0f0182fb5e918
Validity
Not Before: Jan 2 11:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2673b782862558cf3bff05a4e0182fa5fe944dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:4a:9e:51:09:9a:f5:f7:e6:1a:46:b7:cb:
fb:ca:b0:85:40:d9:47:33:ec:aa:d0:e3:c0:e8:82:
0a:4a:20:d3:81:ad:4c:4c:7a:cd:8a:3c:d6:91:09:
5e:f3:40:5f:e9:1a:34:1e:30:a6:e3:30:f7:86:5a:
95:79:e6:e8:50:69:4d:7e:b2:78:6c:ad:a1:cb:01:
38:50:39:a9:02:80:80:c2:1b:e8:38:51:17:b7:da:
1c:b5:35:37:30:7c:4c:6f:d5:29:ad:17:61:b3:47:
62:46:11:dc:18:d1:9b:72:fa:0e:47:63:ae:05:f9:
93:a5:72:b3:88:7b:d3:7b:3b:e1:e8:8a:a6:21:26:
8c:52:0b:e4:d8:5e:ca:d6:56:01:6d:f9:dd:5e:e9:
ca:4f:47:f5:0e:67:38:cd:89:44:66:4c:a5:29:ee:
e3:f1:e8:9b:54:71:ef:a8:b6:ee:89:68:92:cf:9b:
4c:a2:3e:43:41:56:96:d1:3f:4b:31:67:2d:0c:e0:
6e:dd:3a:64:2e:98:ac:5a:9a:28:f7:d4:68:2e:dd:
2d:c7:18:9b:a3:80:e9:72:a3:04:c4:cb:f0:c5:35:
6e:41:a6:dd:69:cc:ad:1c:ca:f8:13:dd:a4:01:12:
b4:43:82:d5:a6:7a:7a:6c:27:8c:ef:c7:53:5a:6e:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:73:B7:82:86:25:58:CF:3B:FF:05:A4:E0:18:2F:A5:FE:94:4D:AE
X509v3 Authority Key Identifier:
keyid:AB:4F:00:F5:C3:AB:3D:F4:C6:74:A4:10:D8:A0:F0:18:2F:B5:E9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q08A9cOrPfTGdKQQ2KDwGC-16Rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1f212-ba35-466b-b52e-3853d340c9a6/1/JnO3goYlWM87_wWk4Bgvpf6UTa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1f212-ba35-466b-b52e-3853d340c9a6/1/q08A9cOrPfTGdKQQ2KDwGC-16Rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.209.64.0/20
Signature Algorithm: sha256WithRSAEncryption
13:c7:af:8f:2f:0d:94:d6:be:5a:81:75:52:04:48:42:45:a9:
15:15:b2:61:a5:2b:c4:88:29:1a:9a:99:fd:db:f2:09:41:3e:
8e:f8:29:5d:87:16:95:d8:3d:df:c7:95:68:38:fb:c5:30:84:
69:80:b5:6f:45:5e:1b:1b:ce:ee:ee:db:b6:11:46:bb:b1:6d:
43:bd:bb:26:48:6b:15:79:2f:59:1a:8d:21:e7:0b:f6:76:26:
4d:26:70:3f:18:b2:ff:9e:39:30:a0:54:5b:02:0b:08:cd:2f:
44:9f:28:50:3d:ca:4d:84:55:b1:b9:d1:9d:98:99:ae:f2:53:
4b:68:ff:81:e9:4b:05:80:63:43:96:4b:44:89:4b:23:b6:99:
2f:d7:2d:d4:98:ba:ac:7e:4f:6d:d9:1d:06:69:a4:70:85:7d:
ea:22:a1:96:31:18:62:4e:cf:d6:d8:ff:06:f9:58:a4:12:d7:
93:f8:a6:7e:5a:c9:d9:86:76:3a:29:a6:7e:8d:c8:7f:e7:df:
30:ba:f8:50:89:31:56:3a:48:db:a6:eb:01:75:eb:bb:3f:97:
36:37:00:f6:aa:55:ef:4b:4d:7c:35:83:f1:67:4b:28:0d:48:
d8:77:6a:f5:ba:15:57:a4:9d:ff:83:5b:dd:fb:5f:8d:25:23:
61:8f:4b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:57 2024 by rpki-client on console-fra.rpki-client.org