Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JxSg4_E5poYy9OU2cadvdS8kqbw.roa
File: JxSg4_E5poYy9OU2cadvdS8kqbw.roa (raw, json)
Hash identifier: 2s7UZG7Jj9ZQEP8sa0A02XHtaY7ENPy57FSsYeEde5Q=
Subject key identifier: 27:14:A0:E3:F1:39:A6:86:32:F4:E5:36:71:A7:6F:75:2F:24:A9:BC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018586E87FE7B1D513085F570F3FCC02D3FC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JxSg4_E5poYy9OU2cadvdS8kqbw.roa
Signing time: Fri 06 Jan 2023 11:47:42 +0000
ROA not before: Fri 06 Jan 2023 11:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Jan 2023 10:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:86:e8:7f:e7:b1:d5:13:08:5f:57:0f:3f:cc:02:d3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 6 11:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2714a0e3f139a68632f4e53671a76f752f24a9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a1:02:47:44:8b:8d:19:d0:3d:1f:02:81:80:
06:35:35:c6:f9:75:3e:1f:dd:a4:bb:8c:36:2e:fe:
f7:c8:37:f8:ab:47:87:70:7e:9f:ff:e9:c4:c5:f9:
9d:8d:6f:24:4e:5f:97:e7:55:08:92:f8:15:58:5f:
08:2f:7d:47:f1:22:3c:1a:81:61:b7:1c:ad:73:40:
33:f5:aa:63:e0:dd:e5:76:16:16:86:e1:31:5f:7e:
58:f6:16:45:87:bb:3b:d8:79:c4:22:54:b2:11:4a:
a3:d6:d7:f2:6a:39:d5:e8:da:a2:52:68:fb:49:a5:
36:f0:8c:d6:35:4b:26:49:c3:7b:0c:be:f2:d5:b1:
8e:62:0b:66:c6:58:9c:4f:1e:ca:f7:c6:82:44:dc:
18:c9:80:07:a3:19:e6:a3:55:cb:3d:f7:92:42:87:
ae:bb:80:24:81:08:af:78:e9:d4:08:33:e2:c6:ad:
c2:76:16:f5:a1:0a:72:c8:1d:99:67:bf:f9:a9:13:
68:d1:76:e7:bc:09:07:9b:cd:f2:9e:df:d0:23:4b:
ea:de:48:4c:92:5e:94:00:25:61:14:ae:62:2f:75:
45:f0:15:99:19:08:d1:1c:5e:be:e2:e9:63:70:9f:
5e:a5:dd:64:67:e9:6f:b6:a3:27:72:be:4d:b1:24:
14:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:14:A0:E3:F1:39:A6:86:32:F4:E5:36:71:A7:6F:75:2F:24:A9:BC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/JxSg4_E5poYy9OU2cadvdS8kqbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.0.0/23
Signature Algorithm: sha256WithRSAEncryption
87:0d:50:c4:19:49:35:78:10:e9:58:07:a4:ce:50:46:a5:84:
aa:69:bf:92:60:60:45:65:45:c0:3c:60:b9:73:b2:40:6e:c9:
f1:f0:68:35:a9:1c:38:64:20:df:16:14:64:c1:59:8f:67:cf:
6f:10:46:bc:e2:18:e4:62:66:8f:da:ff:74:cc:3f:a2:28:bd:
67:db:08:65:39:57:f7:2e:c0:3b:79:fc:46:02:b1:39:37:01:
1a:43:08:8c:71:1e:bd:3f:23:bc:9f:a3:d3:d9:ec:63:ef:a2:
25:81:76:44:20:bb:e3:9c:21:2c:08:8b:1b:3a:84:5e:87:46:
89:ff:2a:bb:e0:b7:77:d4:da:d4:61:7a:98:ae:a0:53:d3:a1:
37:c9:23:98:0f:ea:85:b4:fb:55:5f:fd:97:81:56:e0:dd:75:
1e:cf:9a:49:02:d9:81:c1:8f:33:12:01:d4:e5:62:6a:f5:00:
72:91:29:91:21:61:7e:5b:30:e3:12:66:a3:8d:33:46:cb:de:
0c:2a:6b:5b:7a:07:86:db:31:a7:92:7e:d7:19:55:1a:2d:02:
2f:06:45:45:12:72:1c:f3:f7:84:a6:95:44:53:13:98:5e:3d:
6f:8e:95:0b:bc:4b:e4:7d:bb:6e:98:96:62:9c:35:e2:e1:97:
20:4b:f5:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org