Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/JX6TefDW89DG2sLd7EgXW4NID9U.roa
File: JX6TefDW89DG2sLd7EgXW4NID9U.roa (raw, json)
Hash identifier: udbkY/8R2okP1FqWfqPhZhIPcMmjchxYPEcadO9QbZA=
Subject key identifier: 25:7E:93:79:F0:D6:F3:D0:C6:DA:C2:DD:EC:48:17:5B:83:48:0F:D5
Certificate issuer: /CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Certificate serial: 018570C2A96AE1887BC93FE5699E2AB83AEB
Authority key identifier: 92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/JX6TefDW89DG2sLd7EgXW4NID9U.roa
Signing time: Mon 02 Jan 2023 04:34:43 +0000
ROA not before: Mon 02 Jan 2023 04:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62597
IP address blocks: 185.103.34.0/24 maxlen: 24
185.103.33.0/24 maxlen: 24
2a00:edc0:1f0::/44 maxlen: 44
2a00:edc0:100::/44 maxlen: 48
2a00:edc0:1003::/48 maxlen: 48
2a00:edc0:1001::/48 maxlen: 48
2a00:edc0:1002::/48 maxlen: 48
2a00:edc0:1005::/48 maxlen: 48
2a00:edc0:1000::/48 maxlen: 48
2a00:edc0:1010::/48 maxlen: 48
2a00:edc0:6259::/48 maxlen: 48
2a00:edc0:1004::/48 maxlen: 48
2a00:edc0:10f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 Mar 2023 20:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:a9:6a:e1:88:7b:c9:3f:e5:69:9e:2a:b8:3a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92319bcd9b09a984b070e2ef588ffcfa8b73c8a2
Validity
Not Before: Jan 2 04:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=257e9379f0d6f3d0c6dac2ddec48175b83480fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:86:aa:cd:a6:fc:9d:63:8f:8a:78:98:89:5c:
03:2b:42:26:03:18:54:58:78:cc:1a:d0:7a:12:b3:
08:bc:c7:db:de:b4:c2:3c:d7:b5:69:b7:a6:d1:85:
b6:f2:1c:3c:70:7a:4f:03:50:db:d3:d0:c9:60:2e:
46:01:31:85:1f:2d:b3:67:10:be:51:b4:19:5a:05:
a7:e6:b6:ff:96:c4:d2:48:2e:1e:d5:f7:58:0d:9d:
68:56:e2:0b:9c:30:bd:34:a5:8b:c8:15:d2:22:4d:
11:28:2a:4e:a8:39:36:2c:91:7f:f5:69:24:4b:b5:
c9:20:ee:6e:ff:75:87:98:5c:22:83:ce:68:95:1d:
91:96:bd:f6:dc:53:29:02:8d:25:89:7e:0b:5d:b7:
d8:bf:37:de:14:6f:f3:c0:5b:2c:56:1e:d1:f4:2f:
f8:46:ab:d5:43:93:f7:04:c7:0d:bb:80:1a:55:3c:
f2:20:66:92:a5:d6:c1:75:77:ae:ec:bc:5a:de:1b:
b2:58:c9:74:db:c6:2f:11:e9:c7:5a:5a:9b:ca:e2:
90:30:14:b4:93:58:c8:e5:08:3a:72:04:02:b3:e1:
5e:32:5c:c3:d3:72:b5:db:e9:f9:3f:fb:b9:31:e3:
01:20:40:62:92:64:11:8f:0f:f8:25:99:c7:0b:0f:
a9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7E:93:79:F0:D6:F3:D0:C6:DA:C2:DD:EC:48:17:5B:83:48:0F:D5
X509v3 Authority Key Identifier:
keyid:92:31:9B:CD:9B:09:A9:84:B0:70:E2:EF:58:8F:FC:FA:8B:73:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjGbzZsJqYSwcOLvWI_8-otzyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/JX6TefDW89DG2sLd7EgXW4NID9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b2b2c6-35ee-42f5-a268-cdbebbc652de/1/kjGbzZsJqYSwcOLvWI_8-otzyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.33.0-185.103.34.255
IPv6:
2a00:edc0:100::/44
2a00:edc0:1f0::/44
2a00:edc0:1000::-2a00:edc0:1005:ffff:ffff:ffff:ffff:ffff
2a00:edc0:1010::/48
2a00:edc0:6259::/48
Signature Algorithm: sha256WithRSAEncryption
18:ae:b1:7d:aa:35:06:54:a3:de:2f:56:1e:14:52:5c:a1:6d:
af:64:9d:00:fa:3c:c3:18:d0:c1:49:9a:19:6d:85:96:fc:fe:
3d:a3:78:9f:f4:a3:f8:76:52:9e:2e:a7:3a:7d:82:45:12:f4:
a8:09:79:d2:68:4c:18:53:c4:5f:2e:81:87:06:a8:99:60:59:
7f:85:62:b0:18:42:f3:98:63:90:92:0e:e0:1e:fe:19:6d:8e:
ee:b8:08:cf:70:8d:d5:60:ab:18:2d:4d:99:be:15:73:8d:f2:
79:5e:9e:69:a1:ba:65:c0:35:ed:59:04:6d:9c:02:6d:f2:48:
d4:eb:9e:08:8c:6b:32:9b:bd:b0:95:5b:f4:36:f6:ef:31:2b:
06:dc:af:87:7c:4b:38:57:e1:4c:8a:34:ff:f0:ff:29:09:80:
29:06:36:4a:c2:79:10:14:9c:6e:ed:90:ef:9a:64:da:c4:0a:
8a:72:41:49:1e:32:91:bd:ce:54:44:70:ea:0d:0f:b0:5a:b8:
e7:ca:b0:2b:4b:5d:b8:11:b1:7a:14:b5:f4:11:ee:7c:6a:5a:
ec:cd:8b:61:57:cb:24:eb:57:b3:31:38:bf:a9:dc:aa:25:66:
ba:39:6a:a4:94:c3:a6:c2:9e:dc:8f:c3:9b:80:0b:94:fe:c5:
f8:c2:2e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org