Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/S2G8KMuiAx00BU_bW6ayenIWsZk.roa
File: S2G8KMuiAx00BU_bW6ayenIWsZk.roa (raw, json)
Hash identifier: AmUwevAJkkjtiK9wTHFx+Yoq6YRNUbRuaeKJZA+T47s=
Subject key identifier: 4B:61:BC:28:CB:A2:03:1D:34:05:4F:DB:5B:A6:B2:7A:72:16:B1:99
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0190AB65CF65C4CAFA3999E3F2EC41A82903
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/S2G8KMuiAx00BU_bW6ayenIWsZk.roa
Signing time: Sat 13 Jul 2024 09:21:34 +0000
ROA not before: Sat 13 Jul 2024 09:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208976
IP address blocks: 204.11.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 12:55:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ab:65:cf:65:c4:ca:fa:39:99:e3:f2:ec:41:a8:29:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 13 09:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b61bc28cba2031d34054fdb5ba6b27a7216b199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:27:39:79:49:9e:b9:83:e1:d4:91:5c:2b:34:
95:0b:6e:7e:f3:61:55:41:4b:54:e9:98:f7:01:a1:
96:d8:de:bb:bb:4f:a5:d8:b5:86:d3:e8:77:eb:ad:
d4:ae:61:f6:98:e1:57:91:f6:59:7b:2a:a1:62:0e:
a0:42:f4:37:f5:0f:65:5a:5b:6c:8f:ec:5a:3c:04:
bf:22:c0:41:d0:1f:32:20:d5:ed:8f:ea:f1:21:11:
23:3d:a9:80:a0:0a:a5:0a:20:1e:20:83:f3:d8:f3:
d1:da:55:c1:e9:e0:b9:f0:fc:13:e0:42:5e:75:02:
1c:43:27:ce:e6:d3:ba:96:93:03:03:c8:03:74:c8:
5a:31:45:3f:d0:11:f7:a7:7d:dd:23:67:a8:ba:25:
3e:78:bf:87:20:18:6a:01:ab:7d:7f:66:d0:20:99:
de:85:b4:a5:59:cb:bb:ce:69:d3:eb:1f:25:c2:41:
c8:28:92:ae:fa:76:f0:03:31:6a:29:0d:47:f3:9d:
43:db:94:6f:d9:8a:d6:95:f9:67:b2:9a:85:61:99:
35:32:6d:bf:ed:e1:02:f5:b1:e8:e0:8a:d0:17:5a:
f6:c5:24:7b:2e:93:46:96:36:36:94:b4:1b:a4:b2:
0e:96:40:cb:1f:1f:29:15:ed:9c:34:1c:f2:43:4a:
4a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:61:BC:28:CB:A2:03:1D:34:05:4F:DB:5B:A6:B2:7A:72:16:B1:99
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/S2G8KMuiAx00BU_bW6ayenIWsZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.11.1.0/24
Signature Algorithm: sha256WithRSAEncryption
85:45:d1:1a:0f:e8:90:d5:9c:8a:58:99:46:73:71:54:d8:fd:
05:d7:a8:1d:68:3a:d6:46:ca:ac:a0:d4:d5:1f:37:d3:a0:92:
63:49:eb:76:83:51:34:a2:bf:4e:1d:d5:d5:3f:68:a5:21:84:
7b:42:c3:02:39:d5:38:ba:d1:9c:40:1a:16:81:fa:e5:86:d1:
37:b2:ab:61:52:5e:1d:22:23:55:82:fb:5e:d8:c9:f2:42:c6:
17:c7:a5:dc:70:66:ef:84:05:25:7e:50:21:ad:81:3e:e3:f1:
ae:cb:0d:56:39:f7:12:e1:51:b4:c9:ee:95:27:83:35:43:11:
03:68:ac:b5:79:9b:14:f8:13:79:45:ae:18:23:a7:07:a8:b0:
e0:a9:f2:56:a8:81:ba:f3:4f:4b:df:12:89:75:02:8f:b7:5d:
c6:9e:c4:c0:6c:55:51:ae:dd:71:3b:2d:c4:d3:f9:bb:11:01:
1d:c5:1a:75:e7:8e:3c:cd:0e:a1:e4:a9:46:91:47:59:fc:f9:
32:f7:dd:df:33:04:91:5c:fb:18:ac:f8:16:20:83:3b:2f:1a:
da:5f:ec:d5:ab:ab:39:dc:17:a9:d9:f1:b1:b0:fb:cf:0c:37:
43:56:ce:64:16:db:55:45:44:af:d9:13:3a:16:0e:48:70:36:
45:ad:e0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 17:33:28 2024 by rpki-client on console-ams.rpki-client.org