Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/S5GwIkWlDAM32FkHbb88SmbyqYA.roa
File: S5GwIkWlDAM32FkHbb88SmbyqYA.roa (raw, json)
Hash identifier: keO7PCpt8ABhY0sylQS6CjF3C8sxutghAZjlftqqn+E=
Subject key identifier: 4B:91:B0:22:45:A5:0C:03:37:D8:59:07:6D:BF:3C:4A:66:F2:A9:80
Certificate issuer: /CN=339cbb1e439a3a71eb8796692f622bf838f8488c
Certificate serial: 018570798B5ED90D2349EEF267FD888814BB
Authority key identifier: 33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/S5GwIkWlDAM32FkHbb88SmbyqYA.roa
Signing time: Mon 02 Jan 2023 03:14:51 +0000
ROA not before: Mon 02 Jan 2023 03:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204534
IP address blocks: 193.151.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:8b:5e:d9:0d:23:49:ee:f2:67:fd:88:88:14:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=339cbb1e439a3a71eb8796692f622bf838f8488c
Validity
Not Before: Jan 2 03:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b91b02245a50c0337d859076dbf3c4a66f2a980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:69:15:75:ce:a5:fd:46:e3:02:e3:8b:11:
cd:51:2f:a9:28:cc:50:75:51:53:da:b0:46:a2:64:
36:5a:59:89:a1:fa:9d:f9:9b:c3:c3:c9:b3:75:83:
c0:78:13:f5:c5:94:60:4a:f4:a1:71:2d:ce:be:33:
9f:c4:04:11:e5:00:5d:49:44:e0:73:7c:05:9e:d7:
eb:6b:61:cb:69:99:44:c5:ff:34:16:43:5e:48:2f:
db:da:3c:93:f0:a2:52:54:f9:07:6e:bf:fc:7f:d8:
ce:e0:d9:8c:82:14:30:4a:c2:4f:61:1a:98:61:db:
a4:aa:a9:db:34:27:93:af:5c:8e:29:6e:16:ef:1b:
67:04:e2:3b:fa:d2:7a:ec:26:f2:2d:d1:de:59:f8:
fb:0d:5e:4b:1f:d8:67:3a:cc:39:98:60:cb:e6:50:
d4:64:c1:99:88:42:60:34:04:ac:6f:e2:aa:d7:81:
a9:9c:03:1c:00:a0:b2:89:e1:42:60:16:1c:70:07:
85:03:c9:a4:66:44:cf:a8:22:b5:57:5a:2d:16:17:
62:6a:78:05:eb:6b:dc:71:29:9f:98:d3:1f:46:45:
f5:b2:f1:46:8a:8c:23:8c:73:a2:28:ef:78:1a:6c:
6c:55:a7:5c:ff:f8:af:f6:98:b7:3c:5b:a1:df:c9:
2c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:91:B0:22:45:A5:0C:03:37:D8:59:07:6D:BF:3C:4A:66:F2:A9:80
X509v3 Authority Key Identifier:
keyid:33:9C:BB:1E:43:9A:3A:71:EB:87:96:69:2F:62:2B:F8:38:F8:48:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/S5GwIkWlDAM32FkHbb88SmbyqYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/7e500d-5552-4b82-a3bd-aa0071b7bf84/1/M5y7HkOaOnHrh5ZpL2Ir-Dj4SIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.39.0/24
Signature Algorithm: sha256WithRSAEncryption
62:2e:3e:46:1f:ca:45:c3:c5:fb:49:0e:ed:48:e2:61:b0:67:
68:a1:ec:fd:09:ea:30:5b:77:4d:45:57:d5:a2:f8:27:cf:a9:
2d:86:93:09:83:f3:8b:fa:02:ed:68:d3:78:15:5c:6e:e3:09:
8a:15:1b:90:27:63:6d:32:54:41:81:4f:12:46:d6:fb:24:70:
e7:92:06:e3:04:05:04:92:49:7b:42:0a:38:c0:dd:4a:04:67:
a4:20:0c:d4:18:22:02:31:5f:48:c6:85:ff:5b:35:61:3f:61:
37:15:71:db:66:bd:6c:9b:f6:c7:1b:c8:dc:22:71:23:e1:5e:
b4:66:08:6f:c0:5a:d6:4c:a5:ea:07:07:40:93:b3:2a:06:24:
00:cf:d1:7c:33:1a:27:c0:b5:9f:94:5b:ff:6c:3f:6a:dc:71:
43:2f:97:cf:a7:a3:de:35:63:47:7a:fd:69:fe:81:5e:45:67:
43:e4:f2:d3:d6:2a:d7:50:61:f1:96:f9:91:f2:0e:81:c6:d3:
e1:45:fa:8a:6d:5a:e0:29:41:ee:bd:6f:eb:70:e7:6d:75:f9:
0f:42:82:7f:8f:b5:14:9f:7d:a4:fb:ec:19:91:68:55:57:13:
ea:25:5c:f3:4a:78:0e:48:45:59:d0:e9:b9:f6:e3:55:5c:2c:
7d:ff:d1:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:02 2024 by rpki-client on console-ams.rpki-client.org