Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/jWEYXPXy3m1L0DC7NOrvQaCNSjg.roa
File: jWEYXPXy3m1L0DC7NOrvQaCNSjg.roa (raw, json)
Hash identifier: QWNgREVWCzuyhMALzbiAlFicTDTImkdW9jNG4RC7Q7s=
Subject key identifier: 8D:61:18:5C:F5:F2:DE:6D:4B:D0:30:BB:34:EA:EF:41:A0:8D:4A:38
Certificate issuer: /CN=4caf0f7635a96eff5b73f216d8fe77cc4e2a0a8e
Certificate serial: 0185711E8195AF4D91D57652487EEEDD5386
Authority key identifier: 4C:AF:0F:76:35:A9:6E:FF:5B:73:F2:16:D8:FE:77:CC:4E:2A:0A:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK8PdjWpbv9bc_IW2P53zE4qCo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/jWEYXPXy3m1L0DC7NOrvQaCNSjg.roa
Signing time: Mon 02 Jan 2023 06:15:02 +0000
ROA not before: Mon 02 Jan 2023 06:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58075
IP address blocks: 185.96.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:81:95:af:4d:91:d5:76:52:48:7e:ee:dd:53:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4caf0f7635a96eff5b73f216d8fe77cc4e2a0a8e
Validity
Not Before: Jan 2 06:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d61185cf5f2de6d4bd030bb34eaef41a08d4a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:73:37:58:bd:ab:c8:af:77:8a:6e:4e:2a:c0:
87:40:d6:63:cd:72:f0:37:cc:00:30:76:24:32:aa:
11:7e:7e:2c:aa:4f:0f:ec:1d:32:12:9e:22:e4:59:
7c:02:24:e7:94:50:9f:86:c7:ef:0a:36:63:dc:c7:
bd:5b:97:8f:59:4b:06:10:0e:33:f1:df:d4:0e:c1:
2f:b7:1a:31:43:0b:30:6d:22:b0:bd:29:ad:10:a3:
b0:94:3d:4a:56:2f:24:37:df:2e:8e:24:14:75:82:
f7:9f:54:2f:9d:80:ce:c0:b3:66:51:69:59:88:68:
0a:8b:8a:fc:81:09:bc:7c:1e:5e:90:62:b7:39:a2:
0c:cf:cf:5d:b5:c6:df:a9:7f:71:87:e5:c0:ed:b2:
da:f1:5b:67:d2:3f:14:ef:79:49:38:2c:fd:2c:d9:
17:80:9b:76:5d:65:71:e4:2e:b7:cf:0f:6f:99:6e:
2a:d5:70:96:09:50:6d:eb:7a:34:e9:da:d9:12:fd:
5d:2c:06:cd:c3:04:e1:04:c3:db:49:99:39:e9:2b:
f7:2b:2a:e1:27:25:49:c5:c1:95:e9:22:d4:2a:17:
70:5b:a5:be:33:9e:8b:fd:4c:49:6a:b8:54:de:d6:
9e:18:d5:13:36:20:3a:e1:0e:15:b6:6b:d7:ec:0b:
b3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:61:18:5C:F5:F2:DE:6D:4B:D0:30:BB:34:EA:EF:41:A0:8D:4A:38
X509v3 Authority Key Identifier:
keyid:4C:AF:0F:76:35:A9:6E:FF:5B:73:F2:16:D8:FE:77:CC:4E:2A:0A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK8PdjWpbv9bc_IW2P53zE4qCo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/jWEYXPXy3m1L0DC7NOrvQaCNSjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/TK8PdjWpbv9bc_IW2P53zE4qCo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.148.0/22
Signature Algorithm: sha256WithRSAEncryption
20:01:f1:2c:ce:bb:bd:cb:d3:b7:3d:31:5a:a0:84:e7:0d:5f:
4d:ed:6c:91:57:09:49:97:3e:65:d0:aa:d7:c3:4a:c9:4b:d1:
79:ad:4b:03:50:49:56:80:5f:a2:55:1a:bb:7a:8b:33:b7:20:
0d:ce:93:30:8d:bd:af:59:b7:dd:9a:fe:68:a2:18:a4:ba:38:
77:c4:e3:ae:14:70:b6:10:02:7d:b7:1e:e2:ac:f4:56:58:72:
b0:fc:8b:7f:83:5d:d7:13:14:fe:85:94:6f:01:96:9a:e9:a5:
5d:24:1b:11:b8:05:89:42:aa:4f:f8:79:78:19:ad:7c:31:90:
3c:48:59:db:e3:93:ce:84:31:07:8c:7f:05:78:0a:ff:68:ce:
ff:3a:3b:08:40:af:3d:b3:08:ef:55:a9:bc:3f:6a:b1:ce:d1:
5e:6f:72:71:00:cb:d6:98:3d:d0:5c:46:42:87:b6:38:77:e9:
67:d7:e9:68:d2:47:0d:cf:05:d7:79:81:ac:21:96:82:0e:63:
cc:b2:97:b6:7f:7a:54:68:09:9c:7e:fc:91:4d:f9:b6:53:4f:
f4:24:8d:6b:c0:8d:a2:4c:dc:cb:bc:fd:bf:f6:67:51:66:c8:
56:67:ed:5a:3f:e2:54:e4:60:f2:04:84:43:af:e6:c8:1f:8b:
4d:30:26:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:10 2024 by rpki-client on console-ams.rpki-client.org