Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/jNkxa0yZHc1GyGQw8hjb5tNuGS8.roa
File: jNkxa0yZHc1GyGQw8hjb5tNuGS8.roa (raw, json)
Hash identifier: dstOxrrEG3j0pxoaodiETBsWawtNCBQwGZLzbMUEmek=
Subject key identifier: 8C:D9:31:6B:4C:99:1D:CD:46:C8:64:30:F2:18:DB:E6:D3:6E:19:2F
Certificate issuer: /CN=2672b9fb546b365e323230dcea9ba8c9fbedfeb8
Certificate serial: 018CC500C72FB03D26E351F846344504C6E8
Authority key identifier: 26:72:B9:FB:54:6B:36:5E:32:32:30:DC:EA:9B:A8:C9:FB:ED:FE:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JnK5-1RrNl4yMjDc6puoyfvt_rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/jNkxa0yZHc1GyGQw8hjb5tNuGS8.roa
Signing time: Mon 01 Jan 2024 12:30:11 +0000
ROA not before: Mon 01 Jan 2024 12:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56971
IP address blocks: 45.156.24.0/22 maxlen: 22
45.156.20.0/22 maxlen: 22
45.156.21.0/24 maxlen: 32
45.156.22.0/24 maxlen: 32
45.156.23.0/24 maxlen: 32
45.156.24.0/24 maxlen: 32
45.156.27.0/24 maxlen: 32
45.156.25.0/24 maxlen: 32
45.156.26.0/24 maxlen: 32
194.120.116.0/24 maxlen: 32
194.116.214.0/24 maxlen: 32
194.116.215.0/24 maxlen: 32
194.116.216.0/24 maxlen: 32
194.116.217.0/24 maxlen: 32
194.116.216.0/23 maxlen: 23
193.176.179.0/24 maxlen: 32
194.36.171.0/24 maxlen: 32
194.120.24.0/24 maxlen: 32
193.176.153.0/24 maxlen: 32
194.36.209.0/24 maxlen: 32
193.176.158.0/24 maxlen: 32
2a13:7c00::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 06:47:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:c7:2f:b0:3d:26:e3:51:f8:46:34:45:04:c6:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2672b9fb546b365e323230dcea9ba8c9fbedfeb8
Validity
Not Before: Jan 1 12:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8cd9316b4c991dcd46c86430f218dbe6d36e192f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:66:61:86:67:0a:8a:0e:33:5a:72:1e:62:17:
04:9c:68:6d:9d:51:2f:84:3b:0c:c4:e2:54:0d:c8:
5c:8d:cd:92:3e:f2:7c:5a:f2:11:2d:a9:f9:8b:76:
12:ee:13:3a:15:a0:e2:a8:42:2d:b6:ff:7c:07:30:
d5:09:0d:e8:bb:dc:41:96:e9:b9:a6:2d:7e:cc:e0:
6a:84:d1:94:96:4d:96:37:2f:d1:40:69:e2:b8:fe:
77:c5:36:28:72:f4:db:51:b1:9f:04:4d:27:e8:6d:
d9:85:97:70:19:91:ce:67:07:a1:49:e2:01:38:21:
2d:55:2c:aa:d9:8e:d1:46:3d:68:99:0c:b3:59:2f:
77:01:2a:1d:3c:d5:6f:b5:55:b9:76:80:1d:5f:75:
d5:8e:75:6c:8d:ec:14:68:6b:b4:96:8e:2b:8f:59:
89:26:ab:a6:c9:a5:00:51:6a:54:52:6f:a5:28:10:
54:be:d7:27:d2:fc:3a:5f:9c:4c:1c:9c:0d:9a:69:
b5:10:90:4d:62:7d:be:a5:2e:7a:67:23:fa:a8:06:
ea:5c:90:20:74:0c:69:bc:9b:35:1e:0e:58:18:77:
23:da:ec:c5:e7:6c:a1:ad:05:e3:e6:07:f8:de:be:
a0:17:bd:13:0a:fb:8f:e1:0c:a4:41:ec:98:bb:29:
09:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D9:31:6B:4C:99:1D:CD:46:C8:64:30:F2:18:DB:E6:D3:6E:19:2F
X509v3 Authority Key Identifier:
keyid:26:72:B9:FB:54:6B:36:5E:32:32:30:DC:EA:9B:A8:C9:FB:ED:FE:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JnK5-1RrNl4yMjDc6puoyfvt_rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/jNkxa0yZHc1GyGQw8hjb5tNuGS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/b13b55-1288-45e6-8876-a70db58280fc/1/JnK5-1RrNl4yMjDc6puoyfvt_rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.20.0-45.156.27.255
193.176.153.0/24
193.176.158.0/24
193.176.179.0/24
194.36.171.0/24
194.36.209.0/24
194.116.214.0-194.116.217.255
194.120.24.0/24
194.120.116.0/24
IPv6:
2a13:7c00::/32
Signature Algorithm: sha256WithRSAEncryption
69:2b:2e:f2:8e:67:34:25:fb:d9:c4:bb:5b:8b:17:f6:e0:7b:
e5:72:22:96:c9:97:60:47:21:b7:8c:d8:56:f7:6d:1d:20:59:
6f:65:aa:9e:fe:32:79:91:ac:51:76:69:74:2c:dc:65:cd:a2:
5a:83:90:11:73:c8:9e:a6:2b:e0:87:84:bf:69:2f:ba:91:3b:
90:d7:36:37:cf:95:a2:3f:1f:34:c3:42:22:fb:70:8d:65:1b:
17:57:23:6c:6e:e3:33:da:6d:3f:55:42:8e:2f:5f:49:0d:f5:
f7:1f:d4:45:8b:99:b2:a5:c8:fd:78:8a:ce:83:93:d6:95:85:
ee:25:e0:ed:4b:cf:19:1f:2b:7a:c3:c2:b4:74:e0:a9:14:e3:
e1:e9:68:91:2b:fc:61:98:bb:08:6f:df:47:10:40:de:23:d2:
8c:0c:5d:87:02:0b:11:2c:ab:41:c2:9c:94:92:9c:96:42:dc:
61:ec:da:1d:df:69:72:0b:8f:c9:5a:75:70:c5:5a:40:61:7e:
72:54:12:04:3d:c2:7c:0b:00:59:f2:2a:d8:22:86:58:19:45:
c5:38:a8:ca:36:e3:5a:f1:f2:fc:a0:61:ce:d8:e0:c8:be:e8:
af:57:5a:9a:18:ad:72:2d:36:32:51:9f:5b:83:58:fc:fc:82:
77:61:b2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:18 2025 by rpki-client