Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/JiEuTq6hOSK56R54R1kwZxqKj0M.roa
File: JiEuTq6hOSK56R54R1kwZxqKj0M.roa (raw, json)
Hash identifier: /KYakopSPQFjcvWbladiiU1KruHCdHbc9sxMVTn9ZQs=
Subject key identifier: 26:21:2E:4E:AE:A1:39:22:B9:E9:1E:78:47:59:30:67:1A:8A:8F:43
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018CC56F00A7707EA4E1C4DF4029DFBE491F
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/JiEuTq6hOSK56R54R1kwZxqKj0M.roa
Signing time: Mon 01 Jan 2024 14:30:35 +0000
ROA not before: Mon 01 Jan 2024 14:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 84.247.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 20:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6f:00:a7:70:7e:a4:e1:c4:df:40:29:df:be:49:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 1 14:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26212e4eaea13922b9e91e78475930671a8a8f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3e:b5:2c:e9:0d:41:14:98:36:99:8d:70:b4:
bd:81:e1:d4:e9:ad:ed:67:fa:36:cc:b9:45:cb:82:
77:0d:f7:c7:ea:09:72:a5:7f:27:55:bc:06:7e:d7:
33:20:d7:c9:54:82:3a:c0:9a:00:a2:97:d8:4f:50:
10:85:af:04:9f:15:a3:4e:26:6e:1e:8c:2b:15:e8:
f6:0e:e6:80:0a:f3:e2:f5:cf:c4:27:89:cf:a9:b8:
94:51:c9:14:a5:04:25:0c:34:8b:f0:05:3f:8b:40:
d9:37:c0:0e:56:32:15:23:af:54:12:a9:f1:54:e5:
b7:4f:d1:5e:0a:23:e7:01:f7:b5:e6:8b:a0:49:2a:
0e:1d:b9:72:85:d0:ef:df:0a:30:b9:a4:a0:27:47:
70:96:f4:37:20:6f:3b:92:d7:f5:de:cf:36:2c:90:
c3:56:59:76:8e:cb:5f:f6:30:93:49:f6:14:80:4f:
76:f4:b7:c9:6c:3f:4b:90:bc:aa:ad:f7:ef:7c:95:
02:b1:ab:30:69:2d:91:0d:d1:14:53:c1:b2:71:32:
59:b9:12:09:cf:6e:87:0a:a7:ae:66:a8:6e:4a:7d:
d5:05:03:16:bf:8b:1e:36:4a:fd:43:b0:0f:33:4f:
76:c1:37:ad:9a:c2:03:48:4f:6f:9d:4a:ed:28:da:
6d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:21:2E:4E:AE:A1:39:22:B9:E9:1E:78:47:59:30:67:1A:8A:8F:43
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/JiEuTq6hOSK56R54R1kwZxqKj0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.59.0/24
Signature Algorithm: sha256WithRSAEncryption
77:b6:9d:5b:c0:f0:3b:df:50:83:65:2f:26:14:8a:6d:a9:a2:
61:97:b8:8a:c2:e9:a9:6a:2f:19:1b:7d:78:23:d8:f8:37:54:
40:ea:0b:88:05:ab:73:55:87:1f:09:ff:da:52:c7:ac:15:e2:
93:4f:55:24:bc:ca:67:59:c5:27:32:fc:0d:49:80:f6:2a:f2:
89:35:fc:33:87:9d:7e:39:86:ab:f0:75:71:5d:00:87:d1:f4:
ca:1c:2a:81:41:05:48:9c:cc:c9:cd:db:a6:0c:58:2c:c2:03:
a4:36:c1:50:b6:63:a0:51:ab:b1:5c:93:ba:71:10:a0:2d:e5:
66:0c:84:ac:90:2d:98:91:b0:37:84:b3:51:20:fb:2c:46:32:
99:10:43:f9:37:f9:53:e8:d2:e6:64:0a:cd:2b:63:f7:d2:06:
4b:bd:3d:8d:f4:fb:5c:d4:05:64:0c:6a:dc:ef:9c:10:9c:b6:
9f:57:15:18:32:f5:44:f9:0d:a8:eb:b4:ea:90:86:2f:b7:39:
95:26:47:44:c1:1d:6c:6d:62:96:ac:4e:6b:c0:75:49:f1:bc:
ad:32:8a:90:4a:53:9d:c9:55:61:e7:c4:44:d4:f9:e8:5d:9c:
8f:28:af:d7:a3:12:65:e0:c6:fe:71:bd:b4:0f:3d:78:48:8a:
9e:97:cd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 21:13:58 2024 by rpki-client on console-fra.rpki-client.org