Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/SWYLpAzlc2-3UKLB6xnlKI3NhKM.roa
File: SWYLpAzlc2-3UKLB6xnlKI3NhKM.roa (raw, json)
Hash identifier: 1hlnFbobPkCCGrqFN5RtzM95ZejSzF+NCt3SeOXeNKM=
Subject key identifier: 49:66:0B:A4:0C:E5:73:6F:B7:50:A2:C1:EB:19:E5:28:8D:CD:84:A3
Certificate issuer: /CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Certificate serial: 01857246A4764C8EFA81B833EA7F9876841D
Authority key identifier: E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/SWYLpAzlc2-3UKLB6xnlKI3NhKM.roa
Signing time: Mon 02 Jan 2023 11:38:30 +0000
ROA not before: Mon 02 Jan 2023 11:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62154
IP address blocks: 185.34.203.0/24 maxlen: 24
2a04:5ec7::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:a4:76:4c:8e:fa:81:b8:33:ea:7f:98:76:84:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Validity
Not Before: Jan 2 11:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49660ba40ce5736fb750a2c1eb19e5288dcd84a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:61:7a:22:96:63:cb:e1:b6:f4:9c:69:2c:48:
96:b2:06:31:a4:d8:0d:4e:05:d6:0d:4e:64:eb:7a:
4c:65:ef:1a:72:31:0f:d1:b1:04:29:47:89:ec:ca:
87:cd:b2:7c:4e:a3:ef:3b:41:2b:a7:14:5c:15:5e:
a2:0d:67:ff:19:bb:c7:a1:68:84:73:12:60:f1:a2:
55:d5:40:6a:04:b9:98:82:22:bc:9d:18:ba:dd:df:
2e:c4:9c:37:d8:bb:e3:c5:a3:93:37:c7:e6:c3:6d:
a7:c6:27:fd:58:66:0e:01:5b:a8:ad:5d:25:45:c3:
59:50:08:20:af:6e:a0:36:4f:dd:5b:e2:cf:d4:7c:
08:0d:1a:84:6f:04:48:8d:76:e5:b7:18:f3:26:3d:
48:60:bb:29:d2:d8:e1:9c:be:a4:e8:cc:dd:0a:cf:
65:dc:0f:42:82:74:db:3d:eb:56:d4:22:3a:13:32:
68:2c:a6:a3:5b:a5:08:43:5a:75:ec:68:b7:c0:90:
8d:d2:21:d2:cc:e0:ac:8d:09:94:e8:5a:d5:ac:16:
fc:3a:07:c2:fb:9b:09:46:07:81:40:8b:fb:01:d8:
ae:12:f2:b9:4c:d1:43:7d:ee:1d:72:51:c0:fb:83:
4f:52:1c:e1:dd:94:9d:4a:9e:77:4d:59:68:8d:e1:
78:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:66:0B:A4:0C:E5:73:6F:B7:50:A2:C1:EB:19:E5:28:8D:CD:84:A3
X509v3 Authority Key Identifier:
keyid:E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/SWYLpAzlc2-3UKLB6xnlKI3NhKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/50wpC1vM233lOD7kW6YV0vMGdh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.203.0/24
IPv6:
2a04:5ec7::/48
Signature Algorithm: sha256WithRSAEncryption
34:5c:0f:79:1f:14:7b:5e:62:34:5a:0f:9b:de:b1:8e:6a:42:
3b:49:b4:6a:f2:6d:6b:1d:0e:2f:73:19:d5:d6:3d:f0:31:c0:
9a:1a:84:33:de:11:6a:13:7a:fa:ca:88:4e:d5:10:66:5d:cc:
85:91:a2:5f:9e:29:60:67:c6:22:ff:8c:ff:6c:11:ea:b6:2d:
fe:0c:0a:b7:d2:bc:6c:7c:0b:e7:b0:33:21:80:12:41:1a:90:
39:ea:c7:c4:14:62:a0:cb:06:c1:f1:f5:8c:01:6c:34:50:64:
5e:d5:3f:8c:49:aa:58:7c:99:5d:c3:35:78:bb:4c:c8:ff:24:
39:5b:6d:a7:eb:55:8b:0e:a7:f9:c9:5a:5a:c5:4d:14:52:43:
3b:cc:aa:38:dd:e6:f6:c5:5a:8c:5a:bc:b0:a4:41:5c:45:a3:
d5:15:0f:52:1f:00:61:8c:6c:e6:84:d9:e4:5b:31:77:f8:c7:
25:c4:30:35:16:4e:a1:67:d7:1d:89:6e:cc:29:61:93:b7:3f:
93:53:6e:bc:0e:d3:de:a4:9c:38:2d:85:c7:f9:d0:8e:d6:ea:
4c:7f:eb:fd:52:33:4a:3c:f0:39:1d:29:1e:4e:21:0b:4e:50:
8d:47:49:16:76:4a:7e:6c:f1:75:1f:e0:f1:b8:98:3c:6d:5d:
e2:14:a2:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:01 2024 by rpki-client on console-ams.rpki-client.org