Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/JrAPvDVk6pXjf7ldpbsBWtuWV_E.roa
File: JrAPvDVk6pXjf7ldpbsBWtuWV_E.roa (raw, json)
Hash identifier: 7zxAEUbABnElMjgY2EsUPEJakH12XQPmcYwC4blhbxs=
Subject key identifier: 26:B0:0F:BC:35:64:EA:95:E3:7F:B9:5D:A5:BB:01:5A:DB:96:57:F1
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 0192329AA60CA2EC3F0E235B8CCB5F6158CF
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/JrAPvDVk6pXjf7ldpbsBWtuWV_E.roa
Signing time: Fri 27 Sep 2024 08:30:48 +0000
ROA not before: Fri 27 Sep 2024 08:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206509
IP address blocks: 91.85.128.0/19 maxlen: 19
91.85.192.0/18 maxlen: 18
212.104.129.0/24 maxlen: 24
212.104.130.0/24 maxlen: 24
212.104.132.0/24 maxlen: 24
212.104.136.0/24 maxlen: 24
212.104.143.0/24 maxlen: 24
212.104.149.0/24 maxlen: 24
212.104.150.0/24 maxlen: 24
212.104.152.0/24 maxlen: 24
212.104.155.0/24 maxlen: 24
212.104.156.0/24 maxlen: 24
212.104.159.0/24 maxlen: 24
212.108.88.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 27 Sep 2024 09:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:32:9a:a6:0c:a2:ec:3f:0e:23:5b:8c:cb:5f:61:58:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Sep 27 08:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26b00fbc3564ea95e37fb95da5bb015adb9657f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a9:32:02:67:bb:30:e8:a7:ed:6c:b0:c2:e7:
22:2e:0c:20:e6:a9:3c:6f:16:5a:91:ed:83:9b:da:
20:17:ed:a0:31:47:f7:33:c4:56:23:0f:23:c6:49:
5b:a6:02:9f:cc:9c:c0:47:e3:41:50:0c:3c:73:dc:
5c:3b:72:44:65:f5:ec:92:1b:56:1a:de:bc:13:b6:
f5:a4:e0:6c:86:dc:ec:fa:51:94:3b:78:52:35:cb:
b3:11:f4:b8:d3:ec:75:c2:45:df:7e:a7:80:56:78:
cd:a7:bb:2f:66:ed:34:76:f8:b9:58:ae:ea:26:d0:
38:22:fb:48:48:5c:b3:54:6c:cc:01:18:02:88:9e:
48:b0:25:ae:bd:9f:30:53:a5:2b:c6:e0:35:d1:bb:
e0:7c:f4:ab:70:f6:c9:e1:8a:24:4a:32:56:6a:3f:
60:54:35:da:c2:cd:26:20:af:73:30:04:08:a6:26:
81:a4:ed:a5:30:dc:03:b7:1b:3f:a3:6f:04:3f:82:
5a:0b:b8:bd:be:2b:82:d7:41:30:79:04:f7:f2:52:
5c:c7:be:ed:a9:e4:18:ea:0c:da:01:a5:ad:05:14:
50:fb:1d:52:34:28:9c:92:39:58:48:dd:f8:2b:43:
d9:76:74:c6:55:87:b3:ab:9c:20:49:ad:5f:d3:22:
e9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B0:0F:BC:35:64:EA:95:E3:7F:B9:5D:A5:BB:01:5A:DB:96:57:F1
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/JrAPvDVk6pXjf7ldpbsBWtuWV_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.85.128.0/19
91.85.192.0/18
212.104.129.0-212.104.130.255
212.104.132.0/24
212.104.136.0/24
212.104.143.0/24
212.104.149.0-212.104.150.255
212.104.152.0/24
212.104.155.0-212.104.156.255
212.104.159.0/24
212.108.88.0/23
Signature Algorithm: sha256WithRSAEncryption
10:d4:e2:ed:b5:1a:12:84:a1:a5:6c:16:83:28:4c:08:a9:2b:
df:7e:28:f0:09:55:69:42:d3:4c:89:27:0a:ef:8c:72:a6:70:
37:d4:34:8a:c1:3c:c5:af:c8:4e:82:9f:4e:60:a5:03:a5:54:
05:13:d4:80:f4:a5:62:87:2c:02:00:50:d6:91:9a:f3:af:bd:
55:49:fc:09:7f:df:f1:ac:30:5b:87:14:af:83:fa:68:4e:bf:
fa:af:1a:4b:f0:de:2a:3f:80:9e:16:c7:e2:7d:0a:d2:49:8e:
1e:f5:54:da:04:66:32:a3:88:1c:9b:70:ef:1c:30:d5:9d:37:
86:a4:25:dc:ca:45:45:24:0b:c3:41:92:24:cf:72:dd:90:b5:
a4:7e:b0:08:b7:d4:d7:05:4f:6e:c5:93:74:23:75:87:1a:f0:
58:9b:63:41:9b:15:96:c8:5a:3a:bf:2b:0c:c0:2c:3e:b6:5f:
f9:7d:ac:1b:7e:6f:06:f6:d8:4a:1c:5d:ee:b0:f2:f8:3b:58:
10:63:90:6c:74:05:76:42:b2:fc:44:f9:18:49:72:37:a2:89:
64:08:c6:97:76:0b:36:3f:58:aa:15:ac:ea:bf:8a:da:01:3d:
bf:de:48:9e:7a:b6:ef:42:54:18:72:f2:54:36:17:a6:a4:e1:
ba:1d:57:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:21:33 2025 by rpki-client