Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/SRGGrdRgd9ufGrV55MhaQguM5Ew.roa
File: SRGGrdRgd9ufGrV55MhaQguM5Ew.roa (raw, json)
Hash identifier: MW3QflIxv2H6Sba7KQNhmpr9luSd9NKEAxvJjegWcCc=
Subject key identifier: 49:11:86:AD:D4:60:77:DB:9F:1A:B5:79:E4:C8:5A:42:0B:8C:E4:4C
Certificate issuer: /CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Certificate serial: 01857195877A96A827AF6F95354F10B9A818
Authority key identifier: 99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/SRGGrdRgd9ufGrV55MhaQguM5Ew.roa
Signing time: Mon 02 Jan 2023 08:25:03 +0000
ROA not before: Mon 02 Jan 2023 08:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20676
IP address blocks: 188.239.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:87:7a:96:a8:27:af:6f:95:35:4f:10:b9:a8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Validity
Not Before: Jan 2 08:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=491186add46077db9f1ab579e4c85a420b8ce44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:3f:f4:fd:1b:70:30:80:d2:c8:5f:4e:5c:
9c:cb:b1:40:56:fa:d4:e6:3d:a8:c5:95:8e:e0:be:
93:de:d6:7a:b0:8e:f9:5f:20:4e:c7:72:f5:fb:e2:
44:cf:24:e5:99:93:81:98:5e:ef:d0:c1:78:fa:82:
a0:7b:e7:75:a2:59:7d:87:ce:b7:52:72:b0:d2:68:
8c:f3:3a:c0:69:31:cf:84:dd:75:14:19:6c:7a:d9:
88:8d:ad:f0:2e:05:d4:16:ed:80:ca:73:10:bb:a4:
59:06:f7:0e:1a:ee:11:15:0e:ff:e3:5b:fc:04:6f:
23:88:a1:e1:9c:c0:c5:50:33:bc:59:c9:28:27:b8:
14:ef:04:a5:cc:bd:0f:ad:11:ee:48:99:df:53:af:
2c:8f:56:c4:e7:db:13:30:d2:85:e3:61:ed:fa:11:
8f:72:43:74:0d:ab:7f:2c:92:7d:69:4d:c0:59:db:
52:8d:5f:83:0d:80:97:86:36:76:a7:89:99:b1:ca:
b4:ff:15:85:d2:90:85:c1:cf:6d:42:34:62:cf:24:
b4:0e:ab:bd:2b:0f:82:7f:f7:76:3f:d9:a6:c7:bf:
7d:89:90:b0:2c:5a:36:15:9a:e4:7e:b5:c7:01:d6:
0b:90:75:05:35:f1:90:49:27:ca:d3:2b:6e:1a:b3:
35:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:11:86:AD:D4:60:77:DB:9F:1A:B5:79:E4:C8:5A:42:0B:8C:E4:4C
X509v3 Authority Key Identifier:
keyid:99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/SRGGrdRgd9ufGrV55MhaQguM5Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/mYS56xIiNxEcH4yldwfscwcpHug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.239.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:66:af:9c:49:2d:86:7a:be:b5:6f:fd:ad:c1:93:70:60:09:
cc:3c:bf:d6:c3:21:fc:d5:9a:03:93:c1:2a:c8:61:81:ea:53:
fe:7f:fe:a4:35:62:54:d8:62:ad:fe:a0:42:52:9c:f4:75:bd:
99:05:fc:af:0f:a7:5f:74:84:7b:1a:3c:20:7a:db:00:38:ff:
14:a0:59:fe:b5:a2:e6:15:e2:0c:00:50:1d:58:64:3a:e1:d2:
f5:7d:27:fb:0d:30:12:3c:1b:f0:1e:35:f3:8f:40:d5:98:4f:
21:2d:2d:b6:c0:ad:b5:e3:c9:ed:a0:57:1a:db:27:3c:8d:88:
2f:ac:1d:20:70:18:ac:d0:42:cc:fe:33:d8:77:90:51:98:92:
52:d0:b6:42:43:93:c2:29:46:8e:ce:7f:36:79:d3:5f:6f:57:
12:27:0c:ae:84:59:8c:4f:63:9c:8b:ce:32:6b:6c:1d:cb:6a:
a2:25:40:86:42:84:fc:bf:4a:37:e4:97:49:a5:ef:c0:3b:bf:
41:96:2b:0f:c8:fb:27:78:2c:92:13:c1:27:6b:81:f1:9a:19:
a2:1e:1f:4c:cd:39:5a:2c:a2:a4:49:c3:8a:ba:6c:78:01:e1:
a0:56:35:38:cd:d6:fb:27:ac:2d:62:4c:bd:2c:85:1d:d9:66:
45:3c:2f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:10 2024 by rpki-client on console-ams.rpki-client.org