Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/JRnfw_572CGk_oM8L-aYXt4JOao.roa
File: JRnfw_572CGk_oM8L-aYXt4JOao.roa (raw, json)
Hash identifier: j7FdGZ126NBY+edudBWI7yJesUuZR8DbGP48uPYt7yE=
Subject key identifier: 25:19:DF:C3:FE:7B:D8:21:A4:FE:83:3C:2F:E6:98:5E:DE:09:39:AA
Certificate issuer: /CN=f0ff2c6229af763a99f5349a32510df4a4526143
Certificate serial: 018572A6F2CD39F3400CDB4E244EA2FA9C27
Authority key identifier: F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/JRnfw_572CGk_oM8L-aYXt4JOao.roa
Signing time: Mon 02 Jan 2023 13:23:41 +0000
ROA not before: Mon 02 Jan 2023 13:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1241
IP address blocks: 46.12.0.0/16 maxlen: 24
193.92.0.0/16 maxlen: 24
79.103.0.0/16 maxlen: 24
212.54.192.0/19 maxlen: 24
212.251.0.0/17 maxlen: 24
130.43.0.0/17 maxlen: 24
194.219.0.0/16 maxlen: 24
77.49.0.0/16 maxlen: 24
62.1.0.0/16 maxlen: 24
188.4.0.0/16 maxlen: 24
195.74.224.0/19 maxlen: 24
213.16.128.0/17 maxlen: 24
46.246.128.0/17 maxlen: 24
2a02:2148::/29 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a6:f2:cd:39:f3:40:0c:db:4e:24:4e:a2:fa:9c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ff2c6229af763a99f5349a32510df4a4526143
Validity
Not Before: Jan 2 13:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2519dfc3fe7bd821a4fe833c2fe6985ede0939aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:58:be:57:18:14:a0:c8:dc:44:7e:e7:8d:
79:e6:c0:17:70:8c:ec:bd:55:50:a9:7e:66:ee:98:
98:aa:82:74:cf:6f:81:94:64:a0:43:6c:a4:72:6f:
09:fd:6c:75:31:02:66:11:e3:39:29:1e:9d:d1:34:
ae:be:de:46:71:cc:ce:dc:0d:c6:98:b0:42:31:97:
5b:dc:f6:f1:41:6a:19:a7:c9:4f:34:97:29:42:34:
8f:3e:8d:8b:24:f4:dd:18:a4:72:d7:2b:b3:4b:3a:
8f:ac:81:f2:c9:87:f3:99:0c:ba:ee:14:62:8f:f2:
79:ba:59:2d:47:9c:cd:31:de:8c:ab:86:5d:24:91:
ed:3f:cf:f9:3c:7d:80:e8:a7:98:c9:8b:f7:bc:91:
6a:f8:eb:d2:ef:8d:ad:32:9b:d1:d0:1b:78:01:0b:
8e:f7:29:f0:df:dc:de:0c:31:1c:aa:06:b6:09:17:
63:3d:85:94:05:67:ce:4c:b1:5e:24:27:c3:ac:87:
87:38:09:d7:c6:e7:6b:87:e4:df:8f:5f:a7:d0:06:
67:c1:91:5d:80:c5:3f:de:c5:07:ff:43:f4:b7:30:
77:22:cc:d9:d5:eb:b0:bc:92:e7:15:67:14:76:1f:
c6:e3:c6:55:2b:99:13:9f:7a:3e:63:ae:3c:b4:a5:
ac:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:19:DF:C3:FE:7B:D8:21:A4:FE:83:3C:2F:E6:98:5E:DE:09:39:AA
X509v3 Authority Key Identifier:
keyid:F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/JRnfw_572CGk_oM8L-aYXt4JOao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.12.0.0/16
46.246.128.0/17
62.1.0.0/16
77.49.0.0/16
79.103.0.0/16
130.43.0.0/17
188.4.0.0/16
193.92.0.0/16
194.219.0.0/16
195.74.224.0/19
212.54.192.0/19
212.251.0.0/17
213.16.128.0/17
IPv6:
2a02:2148::/29
Signature Algorithm: sha256WithRSAEncryption
63:68:07:d3:ac:bf:7c:e0:e1:db:99:96:af:79:b0:d4:a1:fa:
72:c8:59:f3:b7:c8:2b:79:16:41:8c:18:ad:2a:cb:7f:7c:86:
5b:48:7c:9f:7f:77:2c:28:47:ad:69:a8:e2:4e:f4:24:49:73:
b6:43:39:4b:b8:52:17:0d:d0:eb:d1:41:79:81:ba:39:9b:65:
ea:60:23:8c:cd:b9:b4:b4:84:33:17:b3:1f:fd:32:e6:b7:e6:
c6:4e:a6:fe:37:fb:e3:50:67:32:16:69:48:ae:52:f5:43:f7:
10:36:9f:ec:67:62:af:da:95:2c:05:3c:f5:85:56:16:62:6f:
46:b0:3c:ef:b2:e4:ae:04:bb:b8:c0:b9:72:e8:0a:1d:6b:8c:
34:94:ae:00:f2:ca:7f:e3:ca:fc:c8:2a:f7:f7:ab:4a:c9:28:
ae:4f:e9:6d:a4:08:de:1a:0a:80:72:9e:1c:1f:32:58:70:7c:
12:ea:99:aa:ed:8e:80:f7:4f:be:19:91:3a:8b:39:7e:b9:a4:
89:10:8b:29:43:53:87:0f:ea:b5:34:8b:ea:d0:e6:e4:54:85:
51:5c:d4:55:43:ab:38:55:50:8a:ec:83:6f:73:ad:20:9d:4b:
bc:81:41:0e:9c:97:83:b5:69:75:ad:2a:e3:90:3d:23:9c:4d:
8c:2a:43:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:32 2024 by rpki-client on console-ams.rpki-client.org