Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/swiCTXYxJWVpWEXbazkIpy8-GHA.roa
File: swiCTXYxJWVpWEXbazkIpy8-GHA.roa (raw, json)
Hash identifier: A04I2RwoGW6PJ1L347iqGQ9mNZuL8KG0zwELbKyXwrg=
Subject key identifier: B3:08:82:4D:76:31:25:65:69:58:45:DB:6B:39:08:A7:2F:3E:18:70
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 019001AAD8A232332A6195CDA912B88B0FE8
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/swiCTXYxJWVpWEXbazkIpy8-GHA.roa
Signing time: Mon 10 Jun 2024 10:21:32 +0000
ROA not before: Mon 10 Jun 2024 10:21:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.251.21.0/24 maxlen: 24
109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jun 2024 04:52:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:aa:d8:a2:32:33:2a:61:95:cd:a9:12:b8:8b:0f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jun 10 10:21:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b308824d76312565695845db6b3908a72f3e1870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d7:56:1b:74:f7:31:42:71:34:bb:91:15:2d:
85:9b:3c:22:13:1b:ae:ea:4a:37:67:22:f2:4d:03:
db:ee:20:81:14:7b:3a:0a:31:50:ad:84:dc:de:32:
53:7e:c1:73:31:29:af:a8:56:ae:42:76:4f:5e:32:
84:16:eb:21:32:e5:32:97:c1:f8:b2:e0:53:26:53:
e1:99:56:90:5d:f1:bd:57:33:70:b7:14:e1:bf:05:
40:f2:fe:71:2b:ae:9c:a5:29:db:8d:cc:db:b8:a9:
16:5a:a7:80:ec:00:f7:9c:a1:98:6d:f6:f7:5b:03:
a3:f7:ca:87:57:81:82:86:b8:07:3a:90:b3:29:82:
39:e1:b2:da:b7:78:3c:b4:34:65:d3:e2:e3:c1:50:
8a:6f:7b:d7:ee:1d:0d:78:14:84:70:d8:5e:08:07:
ce:ed:c0:45:70:12:ec:61:58:7f:2c:c5:14:0d:e3:
02:7f:70:b0:bc:64:6e:36:6b:01:c5:82:8e:2f:e6:
d8:22:d8:d5:01:a6:b4:57:eb:1e:db:3c:e0:5e:8b:
cd:00:c2:d5:0a:bb:b3:20:3a:bd:71:24:99:ad:db:
dc:ba:c9:3e:b2:d2:ce:d6:0c:f9:3f:27:22:52:70:
da:70:0a:8c:ee:49:91:9c:54:00:dd:d2:00:bb:3e:
3b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:08:82:4D:76:31:25:65:69:58:45:DB:6B:39:08:A7:2F:3E:18:70
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/swiCTXYxJWVpWEXbazkIpy8-GHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.21.0/24
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7f:5d:bd:95:c3:f9:b7:c9:91:82:1f:8a:09:bf:f5:6d:7b:
6c:e6:33:87:0c:a9:4e:28:d3:23:87:8f:ca:78:70:07:f3:d3:
81:13:1d:7a:5b:ea:ef:ee:a1:76:10:c2:e3:9e:a0:a6:ef:48:
a3:0e:ee:ce:2d:c3:64:9f:af:07:63:da:91:19:9b:97:a3:f3:
40:da:8b:d3:92:cb:fb:91:04:0a:40:9a:bb:61:56:e5:29:e9:
04:9f:44:20:1d:aa:bc:1c:88:a8:b3:54:40:12:fe:66:f0:ce:
5a:dc:d2:63:fd:c1:69:3d:53:e7:ca:c9:df:51:9a:94:2c:c4:
53:1f:8e:a4:7a:d7:e4:5e:e3:d0:c7:1e:33:23:e9:af:28:33:
c4:27:ff:07:fe:26:5e:aa:ef:4e:9e:6a:f8:84:47:14:85:9e:
15:75:59:c6:31:c6:8b:8d:d0:94:dc:f8:06:b3:4c:03:02:01:
1e:a8:e7:62:52:26:99:b9:6b:a2:74:23:3a:68:e3:12:06:3f:
8f:bc:b5:9d:e7:61:f7:3a:ae:f6:f6:99:fd:a0:c9:2b:50:c8:
06:33:57:c3:bb:99:6f:47:89:4e:9c:30:41:be:eb:50:26:8d:
21:4d:e2:df:88:e5:ed:46:f2:a0:a9:00:e2:d0:e3:65:23:e7:
7b:d3:92:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 07:03:01 2024 by rpki-client on console-fra.rpki-client.org