Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/sbgjFW5LdfSk1X2qzIa6k1og9LQ.roa
File: sbgjFW5LdfSk1X2qzIa6k1og9LQ.roa (raw, json)
Hash identifier: aeRWVOd1p1Gxi1vrQuknxQFxGdDMIo7qXNSu3Icn+BA=
Subject key identifier: B1:B8:23:15:6E:4B:75:F4:A4:D5:7D:AA:CC:86:BA:93:5A:20:F4:B4
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 018A07A712F48144F5A888DEB4DC0F794994
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/sbgjFW5LdfSk1X2qzIa6k1og9LQ.roa
Signing time: Fri 18 Aug 2023 07:58:24 +0000
ROA not before: Fri 18 Aug 2023 07:58:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 86.62.31.0/24 maxlen: 24
86.62.28.0/24 maxlen: 24
86.62.29.0/24 maxlen: 24
86.62.30.0/24 maxlen: 24
185.81.126.0/24 maxlen: 24
194.107.161.0/24 maxlen: 24
194.107.162.0/24 maxlen: 24
194.36.32.0/23 maxlen: 23
45.80.28.0/24 maxlen: 24
45.80.30.0/24 maxlen: 24
45.80.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 10:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:a7:12:f4:81:44:f5:a8:88:de:b4:dc:0f:79:49:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Aug 18 07:58:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1b823156e4b75f4a4d57daacc86ba935a20f4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b8:1f:11:d3:4c:f9:c6:f6:db:b2:4e:aa:7f:
6d:d4:3c:17:43:76:65:ba:95:47:3a:c4:85:21:a9:
7a:ef:e9:e0:d4:9b:a4:20:7a:ab:8e:73:27:e4:f4:
d5:eb:c8:20:56:98:b1:db:b4:82:a3:15:31:ea:fc:
aa:63:56:47:7e:f4:1d:d5:31:b7:e8:e2:fe:1a:70:
e7:25:c3:27:a0:b7:c6:93:e0:f2:9c:93:25:e8:de:
73:40:ac:28:fb:0e:7d:47:74:b3:6c:67:16:fe:b6:
f9:ae:68:22:36:43:23:07:71:c1:d6:c8:4c:71:63:
7a:b4:22:26:b9:67:2f:0e:08:6c:9b:5f:b8:cf:95:
ea:a3:33:06:42:af:55:b8:89:9c:ca:fb:6e:b9:c0:
74:ab:78:4b:fb:40:df:83:ed:51:1e:28:bf:db:b2:
08:ee:b4:a2:f6:0f:71:f2:dd:93:1b:4d:0f:2f:d2:
77:2c:67:49:07:b0:6a:14:98:92:6b:95:fd:a6:7d:
09:94:31:23:e6:e1:78:60:80:b9:e2:cf:49:6d:99:
07:ae:5b:6b:ad:7f:ff:5f:e7:71:79:ac:f4:f0:e5:
2b:01:38:2d:b5:79:45:fc:48:19:88:cd:b4:dd:c2:
5a:43:a9:b1:4c:c8:e2:fe:b7:35:77:33:65:d3:b0:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B8:23:15:6E:4B:75:F4:A4:D5:7D:AA:CC:86:BA:93:5A:20:F4:B4
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/sbgjFW5LdfSk1X2qzIa6k1og9LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.28.0/24
45.80.30.0/23
86.62.28.0/22
185.81.126.0/24
194.36.32.0/23
194.107.161.0-194.107.162.255
Signature Algorithm: sha256WithRSAEncryption
9c:3c:54:eb:b7:d1:46:81:af:28:e5:fb:2d:00:d9:d7:29:47:
66:e0:c0:fd:95:08:72:d9:d1:71:00:0b:99:e8:5a:16:c8:45:
fc:47:5f:44:7b:50:c3:d0:51:a5:59:42:c0:ac:fa:92:f0:93:
a7:a7:db:b4:a4:99:ad:36:d9:57:95:ce:57:66:47:09:46:c3:
f3:e3:64:cc:51:08:8f:28:07:1f:76:ec:60:fe:8f:c9:19:80:
7d:28:2d:f4:df:f1:2f:1d:53:69:5f:4c:a6:44:96:b3:86:e9:
fb:ad:e3:f4:b6:b0:93:9d:8b:6f:18:4d:98:57:a7:af:8a:f7:
52:f9:66:e0:12:1c:03:b3:d7:b0:2e:e0:31:a5:22:34:b9:20:
fd:4f:2b:89:4b:8c:4b:13:fd:fa:a5:89:5d:4e:62:87:85:4f:
4d:4a:a7:cb:8d:c1:46:13:21:24:b9:5d:a7:6f:f6:b0:55:a4:
ee:48:b3:90:67:ca:69:bb:3a:1b:51:7d:8b:80:78:09:28:50:
cd:3d:d8:c8:97:10:a8:e8:42:ad:f6:9d:c2:9f:c0:0e:0f:35:
7e:24:47:df:8c:c6:32:dc:a9:25:dc:49:30:8c:81:db:38:ed:
f1:b7:e5:ae:92:bc:2b:d2:b9:53:6f:11:30:7a:57:1b:b7:8f:
a4:27:69:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org