Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/b4f6d3-a4c0-437c-b4c6-0d3814ea73c7/1/SkyBdhLu1iqTT2g_w56tfiwnqoU.roa
File: SkyBdhLu1iqTT2g_w56tfiwnqoU.roa (raw, json)
Hash identifier: 1NKjKSBEfm0om54zcBv3G7kmkrnMnWIO4IFnrneux1U=
Subject key identifier: 4A:4C:81:76:12:EE:D6:2A:93:4F:68:3F:C3:9E:AD:7E:2C:27:AA:85
Certificate issuer: /CN=9bad10f972e6789e2a4377a2c29ee08bc3a367ca
Certificate serial: 018A172C7653AB71DFC7C821FE35EF14DBF5
Authority key identifier: 9B:AD:10:F9:72:E6:78:9E:2A:43:77:A2:C2:9E:E0:8B:C3:A3:67:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m60Q-XLmeJ4qQ3eiwp7gi8OjZ8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/b4f6d3-a4c0-437c-b4c6-0d3814ea73c7/1/SkyBdhLu1iqTT2g_w56tfiwnqoU.roa
Signing time: Mon 21 Aug 2023 08:18:24 +0000
ROA not before: Mon 21 Aug 2023 08:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205908
IP address blocks: 23.252.72.0/24 maxlen: 24
167.160.18.0/24 maxlen: 24
2a10:4cc0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:2c:76:53:ab:71:df:c7:c8:21:fe:35:ef:14:db:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bad10f972e6789e2a4377a2c29ee08bc3a367ca
Validity
Not Before: Aug 21 08:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a4c817612eed62a934f683fc39ead7e2c27aa85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:aa:53:d6:c2:5e:8a:58:43:90:ba:ef:98:d8:
85:11:d7:db:26:ab:83:c0:fd:6b:7f:ef:02:91:1c:
b8:ed:a3:8a:32:17:63:3e:be:95:ae:43:c7:91:85:
83:21:28:22:9e:72:27:70:29:fa:df:df:35:d1:be:
3c:1a:81:3a:c6:6d:2b:75:21:a1:07:46:8a:1d:64:
b7:11:86:7d:f5:16:26:eb:d5:ae:0c:ec:4b:f1:f0:
6b:db:c4:47:5b:55:b8:e9:5a:fe:2d:83:24:4d:63:
1b:63:5f:33:37:8a:ce:13:57:a7:ea:27:69:99:5b:
29:f2:ce:b1:92:35:21:fa:a3:cc:c5:fe:a4:47:20:
b6:64:45:84:cd:8d:65:f7:78:3b:71:2d:50:d3:4d:
ab:f5:a3:bf:b1:16:b9:39:c8:a6:1e:28:18:3c:22:
cc:27:71:5f:7b:61:93:27:de:06:43:fc:27:d2:a3:
1a:9c:31:70:0c:fb:3f:d4:29:01:8d:c1:2a:84:e1:
d5:17:f5:36:94:8b:bb:b1:9e:1d:0b:1e:a6:ce:1a:
2f:80:21:b3:52:5c:b3:2c:f3:af:91:ec:a3:b0:54:
86:65:fb:33:47:cb:eb:8b:28:e2:71:bb:a8:10:74:
05:a0:21:6c:60:e6:12:78:b6:51:e9:de:01:56:13:
76:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4C:81:76:12:EE:D6:2A:93:4F:68:3F:C3:9E:AD:7E:2C:27:AA:85
X509v3 Authority Key Identifier:
keyid:9B:AD:10:F9:72:E6:78:9E:2A:43:77:A2:C2:9E:E0:8B:C3:A3:67:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m60Q-XLmeJ4qQ3eiwp7gi8OjZ8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b4f6d3-a4c0-437c-b4c6-0d3814ea73c7/1/SkyBdhLu1iqTT2g_w56tfiwnqoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b4f6d3-a4c0-437c-b4c6-0d3814ea73c7/1/m60Q-XLmeJ4qQ3eiwp7gi8OjZ8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.252.72.0/24
167.160.18.0/24
IPv6:
2a10:4cc0::/29
Signature Algorithm: sha256WithRSAEncryption
32:b4:f1:8a:3b:87:45:2a:5c:d6:49:61:58:cf:67:47:f3:84:
1a:be:c9:e2:9c:9f:2a:bd:88:b2:76:55:c5:a0:3b:9e:1f:4c:
61:ad:c7:67:5d:6a:6d:8a:6d:b2:d0:e8:b5:67:aa:20:b1:dd:
1b:73:08:9c:cd:02:17:11:87:76:0e:11:f1:19:fc:5d:7d:5d:
00:d9:ba:36:37:78:15:6b:c0:fb:ec:9b:ca:cf:d3:6b:ff:7f:
79:42:5f:18:dc:51:3e:a8:02:18:96:4f:3b:14:90:bd:d0:dd:
af:62:be:ce:bc:d3:a1:a7:f4:64:03:9c:bf:d0:af:cb:05:24:
b5:e9:60:3e:07:e2:06:f2:13:cc:c3:35:38:b5:20:c9:35:e5:
7a:a6:11:2e:57:60:9b:8f:a4:09:48:46:94:2a:50:cb:a0:cb:
76:b0:43:54:ec:c8:23:99:1e:ec:19:6a:2b:27:8a:2c:ba:3c:
af:0a:f6:34:67:a2:4d:86:de:a6:ae:40:6b:d1:2d:7a:7e:f7:
23:9b:e2:7d:c9:9a:bf:f5:9f:37:fd:e6:9a:51:53:af:17:f6:
42:5e:3b:4b:72:8e:ed:85:bb:f1:10:37:1f:b6:ad:af:7a:dd:
ff:5e:a8:a2:09:59:78:de:31:37:4c:fe:b6:48:97:c0:c9:81:
16:5f:c5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:56 2024 by rpki-client on console-fra.rpki-client.org