Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/SGh165sk3a6EBB-JpGkkH1-008o.roa
File: SGh165sk3a6EBB-JpGkkH1-008o.roa (raw, json)
Hash identifier: yNC+uRBLh29ATGMWOkvEgm5yJ3OrauJYFuTCOtFgFhA=
Subject key identifier: 48:68:75:EB:9B:24:DD:AE:84:04:1F:89:A4:69:24:1F:5F:B4:D3:CA
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0189D6BA449E9F632B810B1CE4D9F1F35590
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/SGh165sk3a6EBB-JpGkkH1-008o.roa
Signing time: Tue 08 Aug 2023 19:57:58 +0000
ROA not before: Tue 08 Aug 2023 19:57:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 212.69.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d6:ba:44:9e:9f:63:2b:81:0b:1c:e4:d9:f1:f3:55:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 8 19:57:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=486875eb9b24ddae84041f89a469241f5fb4d3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1b:eb:ff:64:7f:03:b1:cb:83:6d:b7:27:ce:
3b:0d:1a:41:d2:7f:0e:d8:f1:84:e2:db:c3:0e:2c:
b3:25:e0:85:ee:e9:0b:71:45:a7:8f:22:34:7f:b1:
91:cd:79:9b:83:26:d1:f3:58:b6:1f:20:d8:96:ef:
4a:64:33:38:22:4a:59:37:7f:c2:f8:16:32:0f:74:
82:5b:02:fb:2c:83:2d:e9:00:8b:ee:3e:11:51:67:
8a:43:7a:b3:04:96:55:38:c4:c7:a8:56:d5:9b:6e:
a1:cd:51:a2:78:85:e5:c3:52:68:c1:51:11:c6:af:
05:d2:3b:21:97:86:b8:bc:43:58:a2:77:4a:56:df:
e9:1b:57:08:9f:32:ce:ab:01:27:e4:bc:04:04:93:
fc:eb:6b:71:6a:bc:1b:e4:c0:c5:6e:62:d8:3c:79:
9f:3d:4f:35:91:ba:cb:3f:2f:b5:92:4c:9f:77:b0:
89:e1:1b:bc:58:e9:6a:48:f8:3d:88:2d:dd:3b:ed:
aa:c4:a8:11:92:8c:60:29:24:19:f8:71:f8:df:ba:
67:0c:d3:35:5f:b5:ff:bb:d1:88:08:fe:5b:b2:de:
b8:70:dd:75:0f:c3:05:3f:83:f0:c2:e6:32:72:ab:
21:28:1b:09:d7:19:b3:e6:68:72:d2:40:ab:9a:7c:
53:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:68:75:EB:9B:24:DD:AE:84:04:1F:89:A4:69:24:1F:5F:B4:D3:CA
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/SGh165sk3a6EBB-JpGkkH1-008o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:3a:a8:8d:8c:b0:47:fe:1f:76:e1:e9:eb:04:e8:83:be:92:
06:b4:69:90:cf:61:ba:48:3c:02:07:c3:f3:30:a7:6c:9e:93:
26:a9:28:7c:a5:32:36:3f:2b:ab:3f:03:b8:d8:54:58:0b:d4:
f7:99:77:43:f7:0d:19:be:70:0b:e6:8e:e5:7b:14:bb:e6:6f:
6e:f3:28:87:67:3e:7d:2a:07:bb:ad:dd:cc:17:b4:ad:f3:bf:
46:b0:e1:56:e9:68:aa:f0:43:2f:76:d5:8c:78:c2:ba:7a:f1:
99:fb:71:c8:53:04:88:03:61:b2:b8:c4:2d:be:dc:dd:ef:44:
7b:ea:a5:0c:bc:42:27:6f:39:9e:bb:bf:70:e6:7d:a0:d9:ab:
0c:30:29:f1:16:63:c5:ed:48:cf:8e:8d:4b:36:5a:7b:d3:82:
4a:85:b2:97:69:cf:8b:5b:96:eb:30:31:c3:a1:fa:01:4d:28:
fb:37:d6:16:f4:2f:c6:15:26:6a:fc:d8:7f:05:9f:e0:f7:04:
06:e9:aa:5a:85:30:b4:35:0a:b9:0d:d2:8c:bd:56:1a:e6:5b:
ea:1d:ce:ad:5e:04:97:00:d2:7c:43:a3:1b:05:48:a5:d1:f8:
9a:89:43:96:30:8a:68:f6:8a:e3:d1:da:93:0e:03:27:eb:28:
b3:93:31:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org