Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jk-GCF0FrB2p-sKi8NlrANkNlyY.roa
File: jk-GCF0FrB2p-sKi8NlrANkNlyY.roa (raw, json)
Hash identifier: rEAYJrOfNX8idilA33pT+PO3qSEXp2+Qq8biqVSkTDQ=
Subject key identifier: 8E:4F:86:08:5D:05:AC:1D:A9:FA:C2:A2:F0:D9:6B:00:D9:0D:97:26
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0190F334D89D4144E4D7FE27FE8C126EECD3
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jk-GCF0FrB2p-sKi8NlrANkNlyY.roa
Signing time: Sat 27 Jul 2024 08:00:45 +0000
ROA not before: Sat 27 Jul 2024 08:00:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396356
IP address blocks: 213.145.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 05:42:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f3:34:d8:9d:41:44:e4:d7:fe:27:fe:8c:12:6e:ec:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jul 27 08:00:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e4f86085d05ac1da9fac2a2f0d96b00d90d9726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:68:ca:0d:12:03:f7:f7:69:dc:ff:30:6a:
cb:48:32:6b:28:4c:76:dc:27:ff:5b:16:4b:8a:45:
bd:b5:1c:b5:bf:c6:50:52:a9:bb:2a:27:60:73:af:
81:5d:7d:24:37:85:72:f1:61:ca:e5:45:f2:ce:33:
26:6a:46:29:27:5f:bf:a8:fb:bc:eb:08:d6:7d:36:
a7:ee:41:bc:c3:d5:d3:8c:d2:bf:4f:98:8b:98:ae:
2a:f9:34:7f:f9:ec:4f:b0:21:dd:eb:5e:ae:ae:ba:
5e:7a:84:71:cc:52:14:5f:c3:2e:cd:41:79:f8:e8:
2a:9e:56:84:0f:e2:89:c6:40:38:9d:b6:1c:ff:43:
63:47:db:be:97:e3:c4:d1:d6:78:70:b0:56:f1:b7:
c9:4e:f9:81:16:a7:99:1d:ae:1a:fa:98:be:c5:85:
be:49:33:e5:d2:ed:f0:13:5e:eb:e7:ee:f5:2e:78:
d0:d2:96:75:96:02:1c:da:7e:76:40:86:7a:fe:ac:
3f:6f:63:9f:f6:f6:7d:7b:a0:12:27:6c:5a:08:ad:
4a:f0:b7:27:26:c3:20:64:dd:d1:69:eb:98:3a:36:
a2:45:6b:36:71:96:2b:4d:b6:ac:b4:84:f5:84:2f:
14:2f:0b:ab:e7:e0:3b:4c:a3:d9:a5:9f:30:07:58:
a4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4F:86:08:5D:05:AC:1D:A9:FA:C2:A2:F0:D9:6B:00:D9:0D:97:26
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jk-GCF0FrB2p-sKi8NlrANkNlyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.85.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6c:c6:a6:f6:26:38:a7:6b:3e:ef:a5:f5:b2:1b:6a:18:22:
07:1c:86:2c:9f:c4:38:46:b1:ac:e9:0f:06:66:80:ff:ca:61:
4f:67:91:35:49:fa:41:2a:79:66:26:09:07:29:a6:5a:13:da:
37:79:9b:55:d2:50:48:d5:69:dc:fc:28:f9:e4:53:9e:be:08:
d2:09:bf:26:b2:29:35:12:0b:d4:45:fc:32:8d:5b:6e:ec:7b:
f4:2c:cf:96:71:5b:ab:4f:e5:71:70:9b:6d:7f:8d:bb:c2:29:
f5:42:b4:c2:5a:9d:1b:a8:0f:eb:66:e8:4d:ad:0d:28:1e:54:
8b:74:3c:10:c5:a6:a7:27:73:cb:a4:d7:8c:81:05:32:bc:06:
77:2b:94:83:2e:f2:9f:a3:ca:7c:64:29:1f:31:7a:a3:79:5d:
6e:40:4d:4f:db:88:81:51:09:5d:7d:88:d9:9e:91:2f:c6:f3:
ef:2e:78:44:a9:53:5c:e5:71:bc:49:4c:20:c0:db:5e:12:b6:
e2:a4:5b:a8:43:78:78:b0:8d:29:a8:86:9c:80:a8:45:e3:bf:
5d:fd:94:5f:61:ce:24:6e:ba:d9:b0:a4:fd:b2:1f:91:1e:0c:
d9:7e:6d:93:af:0e:c1:b7:31:b9:f6:75:1f:d7:35:cf:a3:df:
06:e6:04:ec
-----BEGIN CERTIFICATE-----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Generated at Sun Sep 8 06:17:25 2024 by rpki-client on console-fra.rpki-client.org