Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/JdZDWhBJ0xEAwaaqxLTJv_srzrs.roa
File: JdZDWhBJ0xEAwaaqxLTJv_srzrs.roa (raw, json)
Hash identifier: XVcBDjydLOK19L5VCQgxLoLrNdVp8jRw1dZDEviKX4A=
Subject key identifier: 25:D6:43:5A:10:49:D3:11:00:C1:A6:AA:C4:B4:C9:BF:FB:2B:CE:BB
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 01856EEFE1AC79FF8E0CD730AF2ABDAB75A0
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/JdZDWhBJ0xEAwaaqxLTJv_srzrs.roa
Signing time: Sun 01 Jan 2023 20:04:52 +0000
ROA not before: Sun 01 Jan 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54113
IP address blocks: 185.221.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 16:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:e1:ac:79:ff:8e:0c:d7:30:af:2a:bd:ab:75:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Jan 1 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25d6435a1049d31100c1a6aac4b4c9bffb2bcebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:64:40:9a:88:5e:7a:02:79:69:23:de:ec:01:
99:53:fb:30:17:e7:97:f1:08:27:4c:54:21:39:08:
a9:11:ca:17:f6:42:9d:3d:96:e2:d5:79:cb:2c:24:
4b:56:a3:1b:b4:7a:70:3b:57:58:35:28:72:e9:99:
0b:a6:20:15:88:59:dd:17:30:97:5d:34:b9:01:c8:
fb:0a:09:3e:fb:bf:dd:d5:56:3e:71:2a:ea:77:4a:
09:d8:2c:bd:e3:95:fd:53:61:77:8d:fa:17:7d:28:
5f:5a:92:fe:a4:54:85:27:da:b6:d7:c1:5a:02:1c:
4b:01:1a:22:7e:b9:5e:52:db:4a:77:10:e3:14:69:
21:c7:c7:b2:43:97:7e:73:ee:ef:13:f9:fe:27:f6:
a0:bb:c2:9b:ff:40:c7:a2:c9:0c:b5:d9:9a:93:86:
6b:76:a0:c4:ed:96:0c:c9:ff:d8:ff:26:bd:64:1c:
2c:e2:10:82:ff:a6:9f:ef:08:40:b5:78:d6:64:95:
da:c0:e3:a1:c9:cf:ac:27:50:b3:6a:55:bf:6a:22:
7b:ed:18:ad:da:87:a8:bc:c9:4f:d9:25:d0:42:7f:
e1:58:8e:14:eb:45:78:4b:4d:f4:3d:9d:f0:c2:f2:
e2:bc:28:01:b3:0c:8e:68:be:7b:70:db:72:a0:3c:
bb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D6:43:5A:10:49:D3:11:00:C1:A6:AA:C4:B4:C9:BF:FB:2B:CE:BB
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/JdZDWhBJ0xEAwaaqxLTJv_srzrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.87.0/24
Signature Algorithm: sha256WithRSAEncryption
10:f9:d1:03:cd:64:3f:f8:8c:8e:77:84:b8:76:b1:7f:fc:c6:
ad:e2:2d:bb:a2:bb:f4:9c:54:b2:68:4f:d5:0a:ec:32:11:20:
9c:68:db:29:6d:ce:b0:13:28:bd:6f:79:18:e5:db:9c:96:c2:
35:ee:47:4a:19:9d:3e:f2:29:b1:0a:71:fa:d3:b2:b9:0a:0b:
a6:f5:43:03:67:3e:84:51:dd:51:e8:46:0c:27:57:c0:a3:30:
bd:d4:27:b3:8e:98:4e:86:72:73:85:6d:e2:d8:39:fc:f9:66:
5a:e2:16:f0:12:9c:85:56:48:90:39:55:e3:e6:f3:d7:37:48:
9b:05:3a:cc:ce:3d:f3:ad:94:b2:11:bf:20:6b:99:9f:f6:28:
a2:b1:52:8a:39:e4:e1:60:83:85:70:f2:fa:84:73:3f:7f:8d:
fd:95:0f:e5:9e:17:45:70:59:8b:ca:35:c7:00:4e:bd:6a:5b:
df:04:9f:90:f8:c6:5f:34:55:b7:9f:b2:0c:9c:88:ff:66:07:
8a:81:9d:8a:3e:4b:7b:e0:fc:27:e6:b6:00:d3:8a:90:0f:3d:
f7:c1:03:50:40:06:a0:2e:77:c2:f0:1d:aa:d2:6c:cb:3d:8c:
b6:90:64:61:69:9a:0f:c5:20:4b:f9:d9:79:5d:f5:9f:93:bb:
68:85:f5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org