Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/sgwrnRh_zoCrZZDjXtRZLvRsjfQ.roa
File: sgwrnRh_zoCrZZDjXtRZLvRsjfQ.roa (raw, json)
Hash identifier: abDxCuarGBcR9jX4yp/KzbHcVEO0RNAM/VVC8Xqm8po=
Subject key identifier: B2:0C:2B:9D:18:7F:CE:80:AB:65:90:E3:5E:D4:59:2E:F4:6C:8D:F4
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 018C86A45708DB26B2B814F5815880D189E0
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/sgwrnRh_zoCrZZDjXtRZLvRsjfQ.roa
Signing time: Wed 20 Dec 2023 09:52:46 +0000
ROA not before: Wed 20 Dec 2023 09:52:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 152179
IP address blocks: 185.126.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:a4:57:08:db:26:b2:b8:14:f5:81:58:80:d1:89:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Dec 20 09:52:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b20c2b9d187fce80ab6590e35ed4592ef46c8df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:1e:ff:95:c9:5e:ec:14:56:a1:b1:84:3f:
30:0a:f6:34:5d:6b:f1:7b:2c:c4:10:48:d9:e6:5a:
79:aa:9b:33:1c:26:d7:80:46:f7:f4:85:d2:13:45:
be:49:4e:9b:f2:a0:dd:56:b4:df:c8:1a:2e:49:33:
25:f4:cd:6e:c5:36:10:61:d8:2d:1d:1c:3d:fc:d5:
5d:10:59:d1:29:39:f0:87:19:4e:55:70:ed:16:d2:
d9:01:8f:45:fe:b9:00:49:ea:4f:39:75:7d:19:fc:
78:a1:d2:85:53:08:55:22:c2:6e:bb:a9:96:bc:73:
4f:7c:61:f0:06:69:3a:c8:7e:34:2e:7f:97:99:dc:
aa:85:10:11:02:8f:36:05:66:e3:b2:a2:70:35:3a:
56:c2:40:f5:6e:6d:9d:ef:8f:bd:5b:7a:eb:cb:91:
a9:89:00:6e:78:58:46:a5:99:68:b7:33:99:5a:0d:
fa:96:7f:92:11:f8:fd:6f:f9:00:47:32:15:75:75:
89:cf:d1:a4:9b:e0:17:fc:6a:b5:f7:79:32:8e:70:
f7:cd:82:68:49:81:98:53:6b:5a:42:90:67:2a:ce:
ed:01:bf:9f:d4:9d:4e:c4:9d:db:bc:53:8e:56:b7:
23:2d:62:85:ce:a0:1f:67:36:0c:3f:f5:27:bb:4d:
37:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0C:2B:9D:18:7F:CE:80:AB:65:90:E3:5E:D4:59:2E:F4:6C:8D:F4
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/sgwrnRh_zoCrZZDjXtRZLvRsjfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.134.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:81:86:b4:54:3e:75:8a:f1:00:11:6f:75:fb:db:e5:5e:26:
06:05:6f:75:70:c5:8b:c6:53:5d:8c:fb:d7:74:a4:f1:c0:4f:
65:6a:12:ed:7b:06:f7:33:85:ed:71:6a:b5:c4:aa:36:de:2d:
99:02:11:34:b6:8a:48:46:5d:aa:86:cc:27:38:8e:39:c8:48:
b2:37:67:9d:bb:00:29:c4:e1:cf:28:62:60:46:41:d7:7c:c4:
f1:f9:6c:c6:3a:52:ff:35:d1:0b:3e:d5:06:ab:c1:2e:dc:8a:
43:a5:9e:e6:51:86:99:d2:1b:fc:1d:ee:11:ba:3f:6a:fe:8e:
07:ac:d0:60:e5:83:19:fa:d7:3c:ee:e8:da:55:55:50:ab:d6:
cd:98:f6:6b:f2:cf:18:dd:8a:1a:11:42:fd:01:d2:6b:a2:af:
10:1f:c6:31:06:49:61:bd:66:37:65:f0:4a:d3:d1:f4:4d:bc:
4c:9e:c9:ba:4c:c2:70:68:bc:89:74:49:34:3d:ed:51:8e:39:
49:7e:56:e1:90:8a:9c:81:40:4d:ef:d3:87:99:15:11:90:1c:
62:83:2d:b6:5e:65:e3:9d:11:e4:e7:0d:66:ef:3b:9d:ed:88:
c8:79:c5:70:b8:82:29:e4:15:e8:64:b6:7b:9a:ca:ab:fe:92:
2b:c7:8e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org