Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/J1pjSJcPZ519pnuWv_hq01BBJyU.roa
File: J1pjSJcPZ519pnuWv_hq01BBJyU.roa (raw, json)
Hash identifier: Qi29syvZiBs1XoH++25Wrdz8eMlT/Z5CU6iSirJs5S0=
Subject key identifier: 27:5A:63:48:97:0F:67:9D:7D:A6:7B:96:BF:F8:6A:D3:50:41:27:25
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 01856F4B859BEF35C06B07234CD8C6CBD8E7
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/J1pjSJcPZ519pnuWv_hq01BBJyU.roa
Signing time: Sun 01 Jan 2023 21:44:58 +0000
ROA not before: Sun 01 Jan 2023 21:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
164.152.216.0/24 maxlen: 24
2a11:1680:1::/48 maxlen: 48
2a11:1680:1c::/48 maxlen: 48
2a11:1680:17::/48 maxlen: 48
2a11:1680:1a::/48 maxlen: 48
2a11:1680:15::/48 maxlen: 48
2a11:1680:b::/48 maxlen: 48
2a11:1680:14::/48 maxlen: 48
2a11:1680:f::/48 maxlen: 48
2a11:1680:d::/48 maxlen: 48
2a11:1680:3::/48 maxlen: 48
2a11:1680:16::/48 maxlen: 48
2a11:1680:c::/48 maxlen: 48
2a11:1680:a::/48 maxlen: 48
2a11:1680:5::/48 maxlen: 48
2a11:1680::/48 maxlen: 48
2a11:1680:1b::/48 maxlen: 48
2a11:1680:e::/48 maxlen: 48
2a11:1680:4::/48 maxlen: 48
2a11:1680:1f::/48 maxlen: 48
2a11:1680:2::/48 maxlen: 48
2a11:1680:1d::/48 maxlen: 48
2a11:1680:18::/48 maxlen: 48
2a11:1680:13::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Mar 2023 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:85:9b:ef:35:c0:6b:07:23:4c:d8:c6:cb:d8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Jan 1 21:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=275a6348970f679d7da67b96bff86ad350412725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e6:91:44:26:74:69:26:25:a0:41:0a:91:bb:
9c:ed:ba:e5:2f:79:55:c4:c9:27:b1:54:e7:a1:9d:
16:f0:e0:4a:0e:a5:dc:33:62:3d:39:ca:87:0c:e1:
00:b5:44:17:8f:db:8f:c9:52:d6:07:ac:da:9f:3f:
f4:e5:f0:f9:48:9d:74:56:f7:cf:02:62:94:71:b9:
2c:25:b3:80:af:62:33:09:6a:fd:98:1a:05:c0:5c:
cb:49:c5:90:ef:4b:81:0b:82:c7:14:7d:50:d5:60:
df:1d:31:3e:05:75:1a:3d:71:60:6a:ec:93:06:2b:
40:3c:a9:57:be:86:d8:c4:31:aa:0e:22:d0:2e:50:
fb:db:d6:80:77:4f:35:1c:6d:98:31:6c:b8:aa:53:
0a:09:0d:93:03:4b:06:e5:8f:45:32:4f:80:1e:1b:
5d:75:be:14:06:ea:f3:2f:5b:8c:69:90:44:eb:1f:
2f:7b:5d:54:46:8e:37:d8:86:a1:d6:3d:61:7d:88:
7e:7d:c7:06:67:b8:74:c1:1f:a1:a0:94:ac:3c:e4:
dc:9a:9a:1a:e9:d7:8c:d2:ef:e7:2d:6d:dd:87:3a:
70:0c:1a:7a:91:bb:80:71:6b:ba:48:9a:31:73:15:
cb:72:55:98:86:e4:ab:a4:39:30:ce:8d:37:c8:a5:
46:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5A:63:48:97:0F:67:9D:7D:A6:7B:96:BF:F8:6A:D3:50:41:27:25
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/J1pjSJcPZ519pnuWv_hq01BBJyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
164.152.216.0/24
IPv6:
2a11:1680::-2a11:1680:5:ffff:ffff:ffff:ffff:ffff
2a11:1680:a::-2a11:1680:f:ffff:ffff:ffff:ffff:ffff
2a11:1680:13::-2a11:1680:18:ffff:ffff:ffff:ffff:ffff
2a11:1680:1a::-2a11:1680:1d:ffff:ffff:ffff:ffff:ffff
2a11:1680:1f::/48
Signature Algorithm: sha256WithRSAEncryption
87:f9:bb:5a:94:2a:bf:7e:27:0e:ed:6b:01:33:1f:a0:86:aa:
8f:e4:17:0b:59:b9:67:cd:43:c0:94:c3:41:64:e1:0f:9f:e2:
32:39:e5:a0:63:a4:f0:11:07:79:4c:2e:ab:46:f2:f0:d2:dd:
b4:c0:cb:7e:6e:5c:9c:8c:60:df:04:9a:7a:09:8e:75:26:6f:
25:9e:e1:f7:a7:43:b7:14:8e:07:1b:42:5e:eb:1b:dd:06:81:
e6:0f:5e:83:68:a8:24:d3:bc:ce:ae:ec:3a:65:18:05:aa:65:
a0:67:f8:8d:a8:64:1d:77:da:a5:cf:d5:63:5f:e0:a3:82:22:
b5:40:11:fc:17:e5:19:3e:82:fa:40:4a:73:cd:f3:1c:b6:be:
26:29:ea:f9:ee:83:c1:7d:7a:3b:6a:f2:2c:21:d1:97:84:74:
6c:79:02:26:6e:07:45:b6:50:1f:c3:b8:93:45:45:ae:38:8f:
bb:ae:39:81:8d:c8:2f:95:7f:ef:b5:6c:a8:e8:5e:e5:2d:94:
fd:99:ff:af:5a:f1:e2:6e:f9:52:bb:14:cc:c5:c7:6a:2d:69:
74:eb:b9:83:6b:9a:76:ed:41:db:fd:c2:c6:33:c7:8d:d5:f8:
9d:4f:04:1a:24:68:5d:0d:87:27:c9:03:fe:a6:1f:9f:5c:41:
a1:af:79:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:07 2024 by rpki-client on console-fra.rpki-client.org