Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/SChTrKs1MlPwlnaGGZ_O6AHJkVY.roa
File: SChTrKs1MlPwlnaGGZ_O6AHJkVY.roa (raw, json)
Hash identifier: rudwy9tzKzkosuBggupJPq1jyWJ5Pc0kNyjiufWbPEw=
Subject key identifier: 48:28:53:AC:AB:35:32:53:F0:96:76:86:19:9F:CE:E8:01:C9:91:56
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 018571830988014F246C9AC8B4BB22F366D7
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/SChTrKs1MlPwlnaGGZ_O6AHJkVY.roa
Signing time: Mon 02 Jan 2023 08:04:51 +0000
ROA not before: Mon 02 Jan 2023 08:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1930
IP address blocks: 192.68.221.0/24 maxlen: 24
192.104.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:09:88:01:4f:24:6c:9a:c8:b4:bb:22:f3:66:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Jan 2 08:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=482853acab353253f0967686199fcee801c99156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:ae:e0:4b:7d:4b:ff:18:fd:be:2c:c2:a4:
e8:6a:4f:35:a2:df:75:3e:8b:49:41:a5:49:f9:88:
c4:1f:58:97:11:22:45:a1:a8:e4:a6:2a:c7:cf:0f:
8d:48:f9:dc:72:2d:bf:da:ba:86:25:75:3b:5f:46:
e6:63:36:ff:cf:a3:4a:d7:5a:55:42:1b:51:0c:87:
19:36:5c:a4:10:47:03:04:ba:74:70:88:40:86:d4:
cf:21:e3:6f:c5:29:9a:0f:cc:6c:aa:17:89:c7:c5:
ba:85:92:80:9f:a5:30:d6:52:93:8e:91:ab:fe:88:
53:7b:3b:be:96:f0:bf:94:47:88:c4:ca:f0:fd:9e:
31:92:f0:e1:26:56:73:c2:30:e4:b6:6a:91:d9:12:
34:dc:22:c8:30:13:51:db:bc:8e:18:8e:2b:16:b4:
37:04:0f:18:26:69:3f:ad:b7:21:e9:27:d2:b7:a1:
02:bb:f3:e2:87:0a:e6:66:fe:20:7d:fd:65:49:a5:
e4:f0:c7:31:ac:a5:52:42:51:de:80:4c:55:56:e7:
6e:d7:18:64:cf:22:1a:a7:c7:48:c3:87:ef:f3:08:
cf:27:4a:c9:6c:9c:29:af:83:26:81:3b:8a:f6:54:
65:e5:22:d0:ee:31:8b:b6:e0:09:b9:97:03:12:27:
49:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:28:53:AC:AB:35:32:53:F0:96:76:86:19:9F:CE:E8:01:C9:91:56
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/SChTrKs1MlPwlnaGGZ_O6AHJkVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.68.221.0/24
192.104.48.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d5:19:23:7a:22:8c:98:d8:b2:61:39:3e:09:a9:42:6f:81:
af:91:27:54:54:16:e1:2b:7d:ee:76:71:23:5d:bd:86:e1:fa:
27:a6:6c:6a:b7:af:c2:09:b4:b4:de:b3:d3:6c:27:85:30:82:
12:8d:f7:2e:db:0d:aa:c1:f9:01:e4:a8:c9:c7:c0:4f:05:73:
d6:df:a4:71:2a:d7:5e:c9:3f:27:8b:58:96:55:82:cf:a2:c0:
05:cc:36:1b:5a:13:30:1e:45:26:b9:1b:b0:a7:2b:2d:1f:68:
2f:72:9f:63:2e:16:ed:ae:0f:6a:22:82:cd:eb:dd:fb:8d:b4:
d3:ed:58:71:b1:33:1a:5e:34:9d:74:35:37:56:5c:a5:d3:d9:
7f:68:68:29:53:be:7c:0d:9c:54:db:b7:f0:45:1d:fe:4a:53:
e1:cc:d1:ed:ab:5c:53:e5:cc:2a:e1:4d:0a:3e:5d:3b:4d:bf:
bc:3b:14:87:5b:e6:55:b0:ba:c2:d1:1a:be:e3:50:30:04:92:
57:c8:f2:33:cd:a5:c4:02:a7:72:31:13:6e:68:13:21:0e:07:
5f:23:df:73:d3:28:0a:f6:36:93:65:ea:e0:9d:c9:f4:e6:9b:
bb:a9:6b:65:49:1e:30:49:c9:43:27:72:f3:ba:06:b1:7c:bd:
2f:f8:50:27
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxgwmIAU8kbJrItLsi82bXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmMTcyNDM5NTk5ZDdkYTUyNTc5Nzg5OWJmMjEzYjhlNjM1
NTQ5MTQwHhcNMjMwMTAyMDgwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODI4NTNhY2FiMzUzMjUzZjA5Njc2ODYxOTlmY2VlODAxYzk5MTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPeu4Et9S/8Y/b4swqToak81ot91
PotJQaVJ+YjEH1iXESJFoajkpirHzw+NSPncci2/2rqGJXU7X0bmYzb/z6NK11pV
QhtRDIcZNlykEEcDBLp0cIhAhtTPIeNvxSmaD8xsqheJx8W6hZKAn6Uw1lKTjpGr
/ohTezu+lvC/lEeIxMrw/Z4xkvDhJlZzwjDktmqR2RI03CLIMBNR27yOGI4rFrQ3
BA8YJmk/rbch6SfSt6ECu/PihwrmZv4gff1lSaXk8McxrKVSQlHegExVVudu1xhk
zyIap8dIw4fv8wjPJ0rJbJwpr4MmgTuK9lRl5SLQ7jGLtuAJuZcDEidJ+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEgoU6yrNTJT8JZ2hhmfzugByZFWMB8GA1UdIwQY
MBaAFD8XJDlZnX2lJXl4mb8hO45jVUkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEt
ODg3MzMxZWZiNzE1LzEvU0NoVHJLczFNbFB3bG5hR0daX082QUhKa1ZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEtODg3MzMxZWZiNzE1
LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwETdAwQA
wGgwMA0GCSqGSIb3DQEBCwUAA4IBAQAo1RkjeiKMmNiyYTk+CalCb4GvkSdUVBbh
K33udnEjXb2G4fonpmxqt6/CCbS03rPTbCeFMIISjfcu2w2qwfkB5KjJx8BPBXPW
36RxKtdeyT8ni1iWVYLPosAFzDYbWhMwHkUmuRuwpystH2gvcp9jLhbtrg9qIoLN
6937jbTT7VhxsTMaXjSddDU3Vlyl09l/aGgpU758DZxU27fwRR3+SlPhzNHtq1xT
5cwq4U0KPl07Tb+8OxSHW+ZVsLrC0Rq+41AwBJJXyPIzzaXEAqdyMRNuaBMhDgdf
I99z0ygK9jaTZergncn05pu7qWtlSR4wSclDJ3LzugaxfL0v+FAn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:16 2024 by rpki-client on console-ams.rpki-client.org