Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JhAbLobR64G0vpyB9L_7aoJh0ok.roa
File: JhAbLobR64G0vpyB9L_7aoJh0ok.roa (raw, json)
Hash identifier: mWAJ+o7UvVYJPyUFFPS78riX+bX3eMDQB0SF8D1U/aw=
Subject key identifier: 26:10:1B:2E:86:D1:EB:81:B4:BE:9C:81:F4:BF:FB:6A:82:61:D2:89
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0186C508CB9B1B00D9D01588A4A2D992566E
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JhAbLobR64G0vpyB9L_7aoJh0ok.roa
Signing time: Thu 09 Mar 2023 06:22:13 +0000
ROA not before: Thu 09 Mar 2023 06:22:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40015
IP address blocks: 45.147.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 27 Mar 2023 19:28:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:08:cb:9b:1b:00:d9:d0:15:88:a4:a2:d9:92:56:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Mar 9 06:22:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26101b2e86d1eb81b4be9c81f4bffb6a8261d289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:64:91:7a:99:8e:87:ef:5a:ce:22:7d:99:6d:
a4:9f:e2:ad:b6:6c:d5:cb:93:e2:89:79:24:88:11:
be:f7:cc:ac:a8:1a:b1:cb:70:05:69:a0:25:0e:35:
6a:fb:9f:c1:5c:15:5a:82:f0:7c:84:42:40:49:52:
26:63:31:b6:fc:3c:18:06:4c:1f:86:fd:92:a1:85:
56:56:ed:27:c7:fb:1c:54:34:6b:47:0e:b6:7a:ed:
69:d9:c5:50:3a:6f:c9:36:5e:d4:cb:9d:77:cf:2e:
7b:20:ff:73:ca:e1:cb:e7:0e:17:d0:29:d9:e9:ba:
a0:33:0d:c4:8c:e2:99:89:ad:3e:f0:48:b7:d9:2e:
75:89:3d:04:b7:ed:01:8d:5e:78:34:40:a8:80:db:
b2:3a:9d:eb:c4:6f:d9:1a:f8:30:9e:3c:a0:31:c9:
01:39:99:43:c3:7a:2f:7b:b4:b6:a6:34:cd:2e:5b:
5b:3e:0a:96:6f:82:fb:15:3d:7d:3d:64:ee:e8:f4:
41:b6:50:15:26:5b:24:4a:ed:44:e4:d1:67:85:b9:
ab:4d:0b:37:9b:81:cd:a1:f5:58:a8:0f:82:19:b0:
5a:ff:5d:76:30:5e:10:99:0a:3e:44:f2:bc:15:0c:
3a:00:b5:df:3d:ec:e7:fc:18:b6:00:bc:46:4e:56:
5e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:10:1B:2E:86:D1:EB:81:B4:BE:9C:81:F4:BF:FB:6A:82:61:D2:89
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JhAbLobR64G0vpyB9L_7aoJh0ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.254.0/23
Signature Algorithm: sha256WithRSAEncryption
04:db:77:32:62:35:a1:13:2e:24:47:8a:a3:f5:97:ec:10:4d:
d8:26:48:f5:1a:6b:d7:63:60:26:ea:5f:9c:09:88:ed:13:d6:
d0:fc:c9:61:d0:34:bc:e2:a0:f1:3c:ad:58:6a:45:5a:1f:c8:
f0:77:98:5d:99:2c:3c:e4:7b:85:34:d3:75:b6:35:59:98:81:
0a:e2:3f:e0:0b:61:a2:b7:27:2d:de:c0:85:ad:da:73:37:f4:
57:60:4e:bc:08:d6:db:b6:a8:d6:c2:00:f0:1d:82:7e:65:fa:
19:b9:41:15:a0:9c:0d:71:a0:c5:77:7f:a7:fe:bc:e8:d4:01:
3e:ff:10:6a:be:dc:9f:24:a8:c2:d6:b7:dd:40:3c:b8:98:23:
d2:13:80:7d:78:67:c4:52:5c:45:6f:a2:11:fc:2f:cb:12:c6:
78:2a:61:3f:96:26:12:f6:2c:33:24:e3:df:a9:29:79:50:13:
02:58:1b:02:23:e4:5e:89:7f:c1:2a:c5:58:0d:d3:c5:43:c4:
4c:b3:34:3d:53:6e:64:36:5c:bc:e1:f2:66:21:46:6e:26:19:
c1:f2:29:37:24:ca:b8:e5:e7:72:eb:15:89:3a:e8:36:bf:2f:
78:ec:2b:be:3f:79:cf:18:35:95:7f:30:fe:76:ae:3c:65:c2:
d5:8a:30:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org