Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/JL0IKu83khJDhYVtiyJ__iB7iTY.roa
File: JL0IKu83khJDhYVtiyJ__iB7iTY.roa (raw, json)
Hash identifier: DEQO+v6Ta8rdtsaaNWGVnCXxn220D9OTtdzV0C+iekA=
Subject key identifier: 24:BD:08:2A:EF:37:92:12:43:85:85:6D:8B:22:7F:FE:20:7B:89:36
Certificate issuer: /CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Certificate serial: 0187A8347058D7B686CBAB496F7C9B012B3F
Authority key identifier: 5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/JL0IKu83khJDhYVtiyJ__iB7iTY.roa
Signing time: Sat 22 Apr 2023 09:03:41 +0000
ROA not before: Sat 22 Apr 2023 09:03:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64200
IP address blocks: 152.36.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 22 Apr 2023 12:55:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:34:70:58:d7:b6:86:cb:ab:49:6f:7c:9b:01:2b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Validity
Not Before: Apr 22 09:03:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24bd082aef3792124385856d8b227ffe207b8936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:83:5e:cd:78:cd:eb:e8:85:e4:38:da:6d:de:
a7:8f:58:d0:ef:10:90:27:df:16:7c:38:71:c2:ac:
25:ac:4c:0f:90:d4:40:c2:c7:55:f8:0e:0d:7f:e2:
4c:4f:ab:d8:90:fd:82:e0:1e:12:32:cf:0d:57:40:
fe:f9:5a:14:55:82:bf:5c:04:20:fd:6f:9d:0e:29:
bf:7c:bf:51:ba:0a:6a:08:b2:11:3e:28:85:af:05:
f2:30:49:c4:23:20:e9:8d:37:88:c0:04:23:ca:0f:
16:1d:a5:93:32:4c:8a:13:b5:49:5f:6c:5a:54:4e:
a3:67:44:56:46:59:00:ed:e3:6e:00:24:a7:06:68:
d5:69:65:d4:d7:d7:50:f7:46:f8:83:1e:d4:f3:db:
a9:03:c9:27:85:a1:cd:8a:41:79:8a:a4:9f:69:1b:
70:ae:28:b6:56:e2:11:fc:2e:d9:cd:5d:50:d8:7f:
5e:0b:ff:70:b8:fb:3a:71:de:47:c8:0b:65:f3:0c:
9c:0e:41:39:9d:a2:cb:55:99:18:70:2e:63:63:51:
33:a8:c8:13:ea:49:b7:27:37:5e:d9:42:4f:62:cf:
5d:d0:40:13:e5:6e:4d:ec:c7:8f:a2:de:89:42:0f:
23:1f:d1:a3:a6:36:8f:4e:7b:5a:03:5f:64:b7:a3:
62:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BD:08:2A:EF:37:92:12:43:85:85:6D:8B:22:7F:FE:20:7B:89:36
X509v3 Authority Key Identifier:
keyid:5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/JL0IKu83khJDhYVtiyJ__iB7iTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/Xhv2oxnaJImBau26G0_QzH3fPh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.36.240.0/20
Signature Algorithm: sha256WithRSAEncryption
27:79:c3:01:da:b3:de:b2:f5:25:31:e2:39:d3:a1:09:67:42:
84:39:a4:e8:14:ae:84:c5:aa:15:05:14:4b:32:9d:36:8b:0a:
6d:df:f0:24:b0:d0:4e:57:5d:37:21:f3:bd:1f:7c:e4:68:42:
80:d7:f2:83:3c:e5:59:d5:50:a3:e8:f3:c7:14:b8:3a:8e:76:
35:5f:0e:f3:39:2a:54:76:18:ef:b7:e1:c1:65:4e:9a:ee:1d:
f7:d7:d7:98:ed:28:43:7b:13:6b:08:18:73:f5:9f:62:ad:f8:
cf:67:cc:07:15:57:b9:cf:f5:fe:6c:30:12:45:39:98:7a:04:
46:4b:14:cc:43:d2:42:d3:1b:8b:87:9c:91:10:00:2a:1c:0b:
43:25:93:c1:e4:a5:c4:27:d2:39:9c:b0:f6:ea:cc:09:01:6c:
2c:f9:6c:3b:8e:c7:bf:77:44:b9:b0:e3:b8:c1:27:a3:45:d9:
66:ce:8b:50:27:2b:52:6f:2b:68:79:ea:11:27:36:91:5d:5a:
ac:57:38:06:a1:69:32:8c:ee:1f:b1:32:26:6f:2b:11:e1:f5:
86:e2:6a:d6:0d:32:63:30:19:ee:53:27:f6:a8:f8:dc:8d:b6:
a8:78:97:1f:48:37:80:76:f8:2c:7f:83:49:cf:1d:a2:79:37:
22:42:a4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:09 2024 by rpki-client on console-fra.rpki-client.org