Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T7GY-SSGiy2opYgHF_4EesjNsqM.roa
File: T7GY-SSGiy2opYgHF_4EesjNsqM.roa (raw, json)
Hash identifier: BNZCFN45MGx1KsFzg1bNMxPknVawB9hiTBbEhzDguJ0=
Subject key identifier: 4F:B1:98:F9:24:86:8B:2D:A8:A5:88:07:17:FE:04:7A:C8:CD:B2:A3
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE5389BD50EFF0E76D2190AE7086D
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T7GY-SSGiy2opYgHF_4EesjNsqM.roa
Signing time: Sun 01 Jan 2023 10:05:14 +0000
ROA not before: Sun 01 Jan 2023 10:05:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136796
IP address blocks: 194.61.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e5:38:9b:d5:0e:ff:0e:76:d2:19:0a:e7:08:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fb198f924868b2da8a5880717fe047ac8cdb2a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:18:a1:fe:a0:a8:ab:15:ec:b3:19:45:8f:69:
8a:04:39:bd:d5:f5:7a:cb:fe:dc:c8:0f:5e:d4:82:
f8:39:2b:98:62:1f:a8:9e:7d:9e:bc:e3:d3:6c:b7:
cf:2d:93:a8:12:25:78:0d:7d:4a:0f:34:18:c6:3b:
b5:c0:a2:e7:cc:a0:90:c6:d6:24:9d:c1:ce:1f:2b:
7e:e9:eb:45:58:db:69:ad:53:c6:36:0d:af:fe:ec:
b5:41:fc:f9:09:81:0e:73:99:56:02:f2:e1:ee:20:
70:dd:d0:aa:b3:7e:ed:2e:83:0b:bb:fb:a2:3d:87:
77:92:b1:d5:81:08:a7:2e:6f:d2:9b:ee:4f:3a:71:
b3:6c:70:49:9e:2e:b5:b8:ff:35:a3:1a:dc:e6:ce:
10:fd:31:ea:da:5e:51:a5:52:ad:fd:21:60:74:c6:
51:d3:a2:40:8f:ee:f2:b7:38:9a:67:ab:be:f7:4d:
41:1b:16:30:41:59:43:c8:7c:e2:54:44:de:79:e7:
a3:cf:a2:16:35:33:11:c2:54:19:f5:9b:0f:e3:44:
12:b4:13:17:59:39:42:8c:5e:9b:f3:3c:0f:0b:c6:
75:ea:5a:7b:60:05:64:b8:79:3a:42:8f:da:89:bb:
5c:ea:6b:a4:2d:e4:a0:50:6d:2f:61:0c:b7:9e:e9:
68:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B1:98:F9:24:86:8B:2D:A8:A5:88:07:17:FE:04:7A:C8:CD:B2:A3
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/T7GY-SSGiy2opYgHF_4EesjNsqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.236.0/23
Signature Algorithm: sha256WithRSAEncryption
37:57:0b:0d:89:db:86:10:de:67:93:1a:29:25:0e:12:48:6e:
d2:7e:40:47:57:d8:9c:5c:51:dc:68:ca:e4:28:82:f0:4b:4e:
fc:92:3e:21:a5:35:1e:11:74:21:d4:95:ec:df:1a:b1:92:1b:
a3:f4:da:29:8a:44:c4:44:ad:58:04:c6:e7:c3:e6:b3:1f:37:
7e:c3:34:d0:be:f0:58:2f:9b:91:dc:09:c4:b2:b1:b8:5b:7d:
f0:82:fa:70:68:09:d6:95:a6:c4:38:dd:b3:6d:ab:80:a2:20:
5e:ce:87:c0:99:61:41:82:a0:89:24:36:05:a8:d6:2e:a7:27:
0f:3a:17:4d:5c:77:7f:f0:d1:2f:b2:49:ca:80:eb:97:18:9f:
b7:54:83:be:99:3e:69:16:72:81:72:3f:7e:26:d1:d5:cc:5c:
d2:3d:3c:3c:5c:99:d5:b5:3d:b7:22:77:b5:8b:d7:9c:04:16:
6e:5b:e3:8a:2f:94:8a:aa:a3:79:86:fe:3f:b3:b2:1e:b2:7c:
09:e5:b0:f5:59:0e:33:50:a4:fe:ea:ab:e0:90:3d:43:11:94:
8f:b4:5a:d5:cb:07:e6:70:46:b7:c9:97:4e:54:6d:c3:21:03:
78:63:c0:8c:94:d3:c6:fe:a8:49:c5:17:d8:5c:0e:7a:e5:0a:
72:8f:7e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org