Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/SGUB9f9Wtd_MW6pfwo6ZthShqYc.roa
File: SGUB9f9Wtd_MW6pfwo6ZthShqYc.roa (raw, json)
Hash identifier: HCvwtwcK3I64kEJ7FZbHvVnPGoT1U5japPVZEJG03qc=
Subject key identifier: 48:65:01:F5:FF:56:B5:DF:CC:5B:AA:5F:C2:8E:99:B6:14:A1:A9:87
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE61632819224D5B3D8649B84F3BC6B
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/SGUB9f9Wtd_MW6pfwo6ZthShqYc.roa
Signing time: Sun 01 Jan 2023 10:34:56 +0000
ROA not before: Sun 01 Jan 2023 10:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39421
IP address blocks: 2.56.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:16:32:81:92:24:d5:b3:d8:64:9b:84:f3:bc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=486501f5ff56b5dfcc5baa5fc28e99b614a1a987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:74:ee:15:2b:67:7c:15:0e:7e:4e:7c:3a:bd:
ad:d9:32:e1:b0:24:5e:17:9a:7f:16:7f:bc:f1:d9:
1e:43:d9:8a:a8:98:35:16:5c:1b:30:a1:fe:26:11:
9b:0d:3b:9b:2c:89:3a:a4:cc:d6:3a:7b:78:97:3e:
26:36:cf:e3:79:98:d2:af:65:e2:31:0a:4a:dd:43:
42:77:83:91:fa:d6:62:01:94:b2:5c:16:b5:0b:51:
27:b6:07:55:c1:d3:cf:ac:e0:12:c6:f6:f7:bf:ec:
ed:fa:a9:c8:d7:46:1b:3c:6d:87:a4:7f:fd:4a:63:
0d:09:64:9d:76:27:97:f3:74:7f:78:07:c9:c2:21:
89:32:99:7e:c3:e7:23:bc:a1:97:ec:f5:cc:e9:70:
45:6f:1f:fa:7c:4b:6f:4a:ec:98:60:58:93:61:e9:
3f:f8:3c:e1:c1:e4:6e:82:4d:0c:ad:1e:ae:f1:13:
c0:1a:33:65:9e:e2:bd:e4:8f:b7:5d:b6:8e:29:fd:
fd:4a:64:77:04:2d:3a:22:d3:19:0b:2a:6a:82:70:
b4:e3:37:45:43:c2:f6:86:1a:1d:c4:a6:91:d4:9a:
07:f2:92:b9:69:58:a1:ee:82:24:32:ed:30:b3:69:
e6:18:bc:d9:a4:49:ff:4b:5b:71:11:21:5f:25:b1:
6e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:01:F5:FF:56:B5:DF:CC:5B:AA:5F:C2:8E:99:B6:14:A1:A9:87
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/SGUB9f9Wtd_MW6pfwo6ZthShqYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.247.0/24
Signature Algorithm: sha256WithRSAEncryption
01:4c:66:75:7e:90:9f:00:f2:73:69:55:2d:a6:5d:0c:09:04:
db:4b:6b:56:d5:e0:80:31:07:be:61:a6:55:90:f0:bb:c2:8d:
68:91:4d:c6:28:d1:f4:05:05:09:01:cf:ef:24:ec:e9:cb:d3:
6f:55:a3:40:62:7c:a5:ad:f8:18:a2:ab:be:bd:76:d1:99:7c:
0c:a5:95:2b:38:e2:67:be:9f:e8:f7:9c:de:31:d7:4a:a5:e6:
07:ec:5b:6a:25:fa:5e:00:f7:9f:8d:98:74:b3:f9:96:ce:50:
e6:a9:9f:05:27:58:2b:f3:b3:59:c4:27:7d:54:85:4a:ab:27:
f0:1e:0e:87:f8:2d:53:f3:f6:58:2e:a2:cd:b2:66:e9:ea:67:
8e:96:60:f3:33:07:dc:33:89:aa:e2:36:50:e3:f5:a2:2e:de:
fd:c5:73:2c:ba:38:fc:d6:2e:f2:5a:77:bf:a5:56:94:9c:7c:
9a:d5:a2:d6:53:bc:57:18:50:82:f8:26:dd:04:81:71:11:b7:
e4:6b:cf:37:d1:8a:fa:c1:62:6c:68:34:6d:32:5c:d1:94:1a:
2b:f2:3f:de:73:ff:c8:61:17:53:6b:7d:a8:70:ba:46:c8:d2:
dd:49:2b:f3:72:27:af:74:46:01:3d:d1:f8:21:64:26:85:ea:
9c:90:d9:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org