Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/JBhl445Tn-KwtsCSXOzye9DzJ00.roa
File: JBhl445Tn-KwtsCSXOzye9DzJ00.roa (raw, json)
Hash identifier: J7dUaJm+zb+ExMDBC4c+wsPs7fqADU5ez/xhmiPitak=
Subject key identifier: 24:18:65:E3:8E:53:9F:E2:B0:B6:C0:92:5C:EC:F2:7B:D0:F3:27:4D
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 0187057ACF401D6B517F504B33344403523A
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/JBhl445Tn-KwtsCSXOzye9DzJ00.roa
Signing time: Tue 21 Mar 2023 18:42:27 +0000
ROA not before: Tue 21 Mar 2023 18:42:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 212.68.172.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:7a:cf:40:1d:6b:51:7f:50:4b:33:34:44:03:52:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Mar 21 18:42:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=241865e38e539fe2b0b6c0925cecf27bd0f3274d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e9:c0:97:c9:58:19:80:2f:25:83:c1:f7:43:
89:ed:7d:48:86:9d:bc:40:5b:97:59:e7:9f:c9:fa:
1e:b0:57:08:e6:f0:fd:a0:50:9b:86:97:86:98:06:
2f:ec:a3:cf:0a:16:1e:d9:8a:3f:19:5e:67:53:e7:
b2:04:b2:8e:c7:5c:b7:2b:81:89:e5:c6:59:e2:cc:
ae:0d:f9:24:fd:55:36:b9:ef:29:07:82:6c:dc:e7:
f2:83:f3:78:fb:e0:9c:b3:fa:50:de:db:62:a8:b0:
0a:fb:2e:3f:18:30:7a:aa:90:e6:db:cc:70:38:3b:
e9:ee:9c:39:f9:b4:3b:55:2f:7e:37:0d:ce:9f:d2:
68:8a:1a:13:a8:09:d3:67:ac:0b:cc:03:24:18:14:
ec:5e:4b:b1:fd:14:51:5e:10:2c:96:d2:74:e7:93:
89:20:06:76:e7:d1:2d:33:db:d1:de:e8:8f:6d:0e:
17:bc:db:cd:b5:c6:6b:1e:b2:66:93:bb:09:3d:c9:
66:d1:09:4e:02:f9:a6:a8:52:a6:06:3f:db:7d:04:
6b:ae:f6:b9:28:6a:9c:66:59:87:5c:44:fc:d0:db:
16:e3:7f:22:f0:db:cc:15:86:bb:90:35:dc:83:d5:
36:77:3a:7a:7f:e0:38:37:6d:1b:5c:f5:ee:18:05:
ed:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:18:65:E3:8E:53:9F:E2:B0:B6:C0:92:5C:EC:F2:7B:D0:F3:27:4D
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/JBhl445Tn-KwtsCSXOzye9DzJ00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.172.0/22
Signature Algorithm: sha256WithRSAEncryption
41:49:94:6e:0b:72:8c:3f:46:75:da:81:5b:78:5e:44:87:c7:
2e:9d:5b:26:5a:c7:03:ea:d3:42:54:a1:0b:65:f7:fe:20:89:
0c:79:59:17:bb:09:e3:27:d5:ef:fb:b3:fa:a9:48:b4:9f:67:
6c:16:dc:19:e4:72:ec:33:ae:7f:f8:6d:ed:9f:62:80:d7:24:
18:d9:1d:4f:28:bd:a1:10:9e:73:1b:66:eb:1c:6f:55:1e:fa:
7f:d3:08:16:bc:34:08:24:6e:ff:90:fc:bc:a7:73:1e:0e:c7:
8b:fe:6e:7b:d1:1d:0b:b4:ea:b9:91:af:9c:13:f7:e8:56:5d:
06:80:55:d9:7c:fe:31:14:46:59:d4:b4:aa:ae:9c:e3:e7:4d:
69:c3:88:4c:25:d7:86:2a:3a:34:1c:7e:f8:e5:3e:88:4e:29:
71:1c:f0:97:c1:f8:cc:70:b7:de:fe:ef:ee:a3:0d:91:5b:73:
e6:f4:ef:6c:30:0e:6d:98:06:7a:b2:32:b2:6b:ee:0c:5f:aa:
24:27:55:de:69:07:5a:16:49:6a:fa:47:d1:e3:89:10:18:4f:
ca:20:a1:ae:fa:aa:c1:2f:de:11:22:df:e5:0a:ac:c0:35:97:
7e:f6:13:60:26:8c:07:fd:f1:13:62:3e:1c:e7:4c:33:ed:97:
20:8d:1a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:19 2023 by rpki-client on console.sobornost.net