Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SXSQiCrIRCLVwTsEMxxGW1OfL4o.roa
File: SXSQiCrIRCLVwTsEMxxGW1OfL4o.roa (raw, json)
Hash identifier: RUURK9m3v6B1sxBlUZesod0/g8hoxnU7GnxQGIPZ2rM=
Subject key identifier: 49:74:90:88:2A:C8:44:22:D5:C1:3B:04:33:1C:46:5B:53:9F:2F:8A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188F73973FD8C2AF35520D13B244EAF611A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SXSQiCrIRCLVwTsEMxxGW1OfL4o.roa
Signing time: Mon 26 Jun 2023 10:21:57 +0000
ROA not before: Mon 26 Jun 2023 10:21:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 37.156.5.0/24 maxlen: 24
89.46.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 10:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:39:73:fd:8c:2a:f3:55:20:d1:3b:24:4e:af:61:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 26 10:21:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=497490882ac84422d5c13b04331c465b539f2f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d5:e4:ea:26:cd:87:f2:19:65:1c:16:25:8e:
5a:be:8a:5b:57:45:f5:0d:c9:ab:9a:22:e9:24:da:
0e:b7:56:70:26:e2:66:73:4a:ca:4b:5f:e9:03:44:
1d:98:0f:b9:75:06:1b:32:95:4f:f6:62:93:5e:78:
e9:54:ef:ce:96:0b:06:94:06:b6:a7:19:96:90:55:
f5:1a:ec:fc:f0:a8:83:0b:90:c4:f3:f4:a1:84:3c:
a9:f1:f7:3e:bf:ca:49:11:80:13:56:0b:ff:12:bb:
4a:c0:25:a9:c1:6e:4b:37:65:e2:98:5f:60:f7:c0:
47:34:7b:e2:99:05:d8:79:53:bf:3f:ad:50:66:15:
d8:c1:d3:7a:0f:eb:18:dc:f4:f4:47:6b:e7:f2:21:
17:b6:15:cf:4e:4d:b4:75:0c:d9:56:aa:19:b6:59:
bd:c0:1c:ff:83:9a:11:dd:f9:b3:21:08:38:30:bf:
5b:ae:4d:58:2b:48:09:f2:62:e2:ef:8b:bd:29:ae:
b0:89:bd:fe:ad:e3:5a:35:a4:ab:c6:40:2f:31:ba:
f6:0c:b4:f1:94:33:fc:b1:e9:04:53:4c:eb:e3:73:
1a:b0:7f:da:db:8a:38:21:af:20:40:c7:b9:dc:1d:
38:41:36:4e:91:82:67:89:0c:da:54:bd:23:cc:37:
71:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:74:90:88:2A:C8:44:22:D5:C1:3B:04:33:1C:46:5B:53:9F:2F:8A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/SXSQiCrIRCLVwTsEMxxGW1OfL4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.5.0/24
89.46.42.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e8:51:e5:a0:f8:21:f9:fb:df:48:60:1a:7d:54:49:a7:e2:
c6:8b:d8:b5:6a:06:84:8f:40:e6:ce:c0:fc:de:9e:96:6e:05:
0b:c7:2a:ed:29:f2:da:c2:cc:36:f7:df:13:d7:f8:f2:c0:44:
43:cb:9d:f0:10:64:15:e6:6a:0e:56:b3:3c:38:9f:70:2c:c8:
d0:0e:8e:5d:ad:02:0f:24:5a:76:5d:da:e4:21:8f:8e:c5:ad:
c9:bf:08:d5:d4:12:f0:fd:9e:04:93:c1:4e:1a:0f:2c:10:18:
1b:28:7f:1e:00:ff:fb:e3:d8:d3:a4:33:a8:93:8a:b8:f6:27:
97:4d:44:a9:41:e1:09:6a:fd:e5:db:61:5d:95:53:b0:29:22:
9e:14:72:4a:3c:74:77:d0:6f:21:4c:b4:23:81:21:49:9e:4d:
c6:de:93:e4:3c:b5:c9:cb:4e:04:8e:9c:68:d9:68:0a:ca:1e:
e6:9c:f8:5b:d3:35:63:22:af:7d:bc:ea:17:9a:ae:30:6e:06:
de:9f:74:9c:bf:71:e9:d1:21:07:9f:e4:68:2f:e9:42:11:67:
53:dd:5a:e2:39:1e:f3:af:6e:a9:d2:6d:cb:c3:a8:18:ca:7a:
77:06:99:00:0f:40:ce:ce:ae:7a:7d:ec:83:bf:b8:fa:52:ca:
70:fa:43:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org