Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/jj_xs5lkOvg5IlDfWtsamZ_2N-Q.roa
File: jj_xs5lkOvg5IlDfWtsamZ_2N-Q.roa (raw, json)
Hash identifier: vlPn0fe4vj/ccJwHT5SrEUxn0lC63oOdc/F0NbEWceg=
Subject key identifier: 8E:3F:F1:B3:99:64:3A:F8:39:22:50:DF:5A:DB:1A:99:9F:F6:37:E4
Certificate issuer: /CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75
Certificate serial: 01856C9CBBC205C52E33E95E940CBDB30F16
Authority key identifier: BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/jj_xs5lkOvg5IlDfWtsamZ_2N-Q.roa
Signing time: Sun 01 Jan 2023 09:14:49 +0000
ROA not before: Sun 01 Jan 2023 09:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 185.194.234.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:bb:c2:05:c5:2e:33:e9:5e:94:0c:bd:b3:0f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be6c497ff4d4a8bb5a24bdd2051575b49a083c75
Validity
Not Before: Jan 1 09:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e3ff1b399643af8392250df5adb1a999ff637e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bf:47:a6:7e:07:f7:65:33:bb:e2:9e:3e:06:
ef:2e:8c:65:8d:43:67:9b:fd:52:28:4b:15:f7:d4:
16:74:b6:f4:c4:71:f3:36:64:af:0c:0a:10:76:e8:
f8:bc:a8:76:65:37:51:46:74:fa:79:8c:25:02:78:
12:9c:bb:e7:33:82:45:3a:d3:7d:bc:a3:6f:01:1a:
b9:23:d1:f7:a3:f0:79:65:d8:b2:fe:71:2b:35:a6:
c0:5b:4d:8d:5d:c7:c0:cc:90:49:d1:64:9c:d6:75:
7e:f2:17:9d:b8:01:f9:3a:3b:d8:ed:34:b1:0c:d9:
48:70:0e:64:55:2b:c9:29:5e:83:42:5b:06:46:f5:
05:41:32:a8:e4:b8:2c:fa:02:8c:55:7c:58:6c:af:
77:77:a1:c0:a2:20:32:26:dd:e2:60:15:03:89:21:
f1:d1:fb:dd:9e:f1:e4:c4:52:dc:58:6b:3a:85:d0:
31:19:0e:52:c4:79:75:dd:0e:c5:26:12:d6:44:6c:
74:80:99:03:97:6f:a1:e6:2d:4e:5d:ea:ec:0a:06:
ea:ff:c4:44:a2:48:59:10:98:70:4e:ba:db:15:00:
52:b6:ac:1f:8c:50:8a:38:36:cd:23:8f:d9:95:c6:
ca:01:0b:7e:59:ea:46:d9:fb:c8:7e:da:9c:03:87:
9c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3F:F1:B3:99:64:3A:F8:39:22:50:DF:5A:DB:1A:99:9F:F6:37:E4
X509v3 Authority Key Identifier:
keyid:BE:6C:49:7F:F4:D4:A8:BB:5A:24:BD:D2:05:15:75:B4:9A:08:3C:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmxJf_TUqLtaJL3SBRV1tJoIPHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/jj_xs5lkOvg5IlDfWtsamZ_2N-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/5db8eb-cccc-498a-81cb-65ae58a9bee8/1/vmxJf_TUqLtaJL3SBRV1tJoIPHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.234.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:ed:c2:d7:29:63:7d:fc:11:8f:3e:63:e8:39:b6:25:52:d3:
ac:e2:ef:20:fa:d4:93:71:05:26:df:2b:67:78:ab:59:17:b5:
25:fd:bf:07:eb:63:b4:32:50:44:70:94:86:80:aa:99:6a:6d:
4e:31:b6:e5:78:11:a6:f3:80:07:62:ba:36:0e:4b:7f:b2:14:
24:3c:71:0b:37:cf:a5:49:7f:31:34:12:ae:93:f6:8f:c2:dd:
6c:14:a1:d4:6a:0d:05:9e:1c:cd:b5:14:9c:97:b7:f3:ad:ee:
5c:b7:3e:cf:35:0e:02:81:6d:e5:c1:4a:d7:06:10:a6:1a:23:
45:66:fb:b4:3c:18:ce:84:ac:13:e9:4e:20:0f:e1:20:f5:3e:
d8:bc:f9:17:a3:3f:9d:d8:7c:b5:f6:0b:42:f9:ce:a6:c6:09:
f0:d8:f4:13:ff:29:5c:4f:fc:df:6e:6b:5a:4e:dd:a2:1c:ff:
f5:6c:31:a3:b7:ea:74:85:cc:5e:80:55:70:9b:d9:38:48:f3:
28:05:9a:96:d3:41:24:60:e4:ce:f7:2a:ce:c4:06:d6:c5:d5:
49:db:c5:1a:e5:08:da:d6:b1:0e:2a:06:06:3b:8d:0f:27:f7:
bc:a8:a7:6f:68:85:3d:32:12:bb:c2:2f:b5:d7:9f:3b:a1:1d:
7f:ef:2b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:17 2024 by rpki-client on console-fra.rpki-client.org