Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/5e43b0-8f0e-469c-b9b9-86f5d0a11949/1/SQp5yBXnFdYS-huvjkVHZIbG-p4.roa
File: SQp5yBXnFdYS-huvjkVHZIbG-p4.roa (raw, json)
Hash identifier: gnyG8h2Ux6PP1PLKqZa+cixmqH54RwdYM78cpg+h8Rs=
Subject key identifier: 49:0A:79:C8:15:E7:15:D6:12:FA:1B:AF:8E:45:47:64:86:C6:FA:9E
Certificate issuer: /CN=4bea1b1297dbc3f4b81d910c2476ec81fc3e969b
Certificate serial: 01856C13869A22BF0E7ADC5AA354F2EAA72E
Authority key identifier: 4B:EA:1B:12:97:DB:C3:F4:B8:1D:91:0C:24:76:EC:81:FC:3E:96:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-obEpfbw_S4HZEMJHbsgfw-lps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/5e43b0-8f0e-469c-b9b9-86f5d0a11949/1/SQp5yBXnFdYS-huvjkVHZIbG-p4.roa
Signing time: Sun 01 Jan 2023 06:44:57 +0000
ROA not before: Sun 01 Jan 2023 06:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198167
IP address blocks: 185.138.222.0/23 maxlen: 23
185.138.220.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:86:9a:22:bf:0e:7a:dc:5a:a3:54:f2:ea:a7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bea1b1297dbc3f4b81d910c2476ec81fc3e969b
Validity
Not Before: Jan 1 06:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=490a79c815e715d612fa1baf8e45476486c6fa9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:11:29:14:aa:22:2c:2f:5e:39:75:77:9e:12:
31:85:8e:34:cc:ab:bd:6f:47:2c:66:ac:50:2e:31:
ca:68:8e:55:58:93:92:37:1a:16:00:d6:81:6f:a7:
9a:3a:03:91:ee:bf:5b:1c:2a:bb:22:48:26:7d:1e:
20:70:d2:3e:e8:a3:0b:76:b5:67:dd:2a:1c:89:d7:
af:ce:08:9a:0c:62:5e:11:78:63:17:72:87:ed:7d:
35:45:aa:82:e5:99:65:5a:cc:01:a5:81:97:36:96:
8b:d1:1a:15:e9:3b:43:1a:35:19:4d:3e:8d:0c:74:
81:e1:f8:5d:5d:a5:9d:1c:18:37:5d:d2:a0:8e:33:
18:ac:b2:ff:a0:67:3d:09:d9:87:9f:45:47:de:4f:
81:c2:f4:26:53:b4:57:9a:e3:ff:08:0d:d8:b1:ff:
d8:1d:8e:08:3a:03:c4:1d:01:05:75:99:c0:4e:93:
54:39:07:3f:08:e7:05:cd:30:4f:e5:5d:ee:24:1e:
bc:1a:63:59:73:6d:ea:7e:39:1b:da:6b:00:f3:5b:
f7:cc:3b:e1:ed:eb:18:4d:61:31:93:f2:52:f5:81:
cd:5f:07:e0:c1:6e:7d:89:0f:18:65:cd:b9:39:45:
de:8a:16:2b:c8:f7:c8:2a:68:72:9d:b1:69:ac:3f:
67:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0A:79:C8:15:E7:15:D6:12:FA:1B:AF:8E:45:47:64:86:C6:FA:9E
X509v3 Authority Key Identifier:
keyid:4B:EA:1B:12:97:DB:C3:F4:B8:1D:91:0C:24:76:EC:81:FC:3E:96:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-obEpfbw_S4HZEMJHbsgfw-lps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5e43b0-8f0e-469c-b9b9-86f5d0a11949/1/SQp5yBXnFdYS-huvjkVHZIbG-p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/5e43b0-8f0e-469c-b9b9-86f5d0a11949/1/S-obEpfbw_S4HZEMJHbsgfw-lps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.220.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:4b:48:44:2b:3f:7c:9e:96:7d:80:96:1a:2f:6f:a7:21:f8:
5a:a3:68:4e:96:db:89:df:58:65:0f:16:69:50:0b:7b:73:04:
86:ac:9f:3c:46:88:f5:48:b8:0f:15:19:7e:a6:34:49:cb:77:
fb:70:19:37:a7:ce:03:7f:73:f7:2f:9d:22:12:94:ac:fe:c4:
6a:91:74:6c:e2:e9:c3:da:2c:bb:e2:61:d5:ba:86:52:17:f2:
82:6c:86:fe:2e:05:f9:db:57:d8:75:1b:46:0d:fb:57:08:c6:
c8:dd:3f:3d:d1:50:2d:1d:f3:78:81:83:22:93:59:40:ab:7e:
eb:64:4d:52:98:36:fa:c3:cb:ed:c5:ca:07:34:27:29:65:c1:
0a:b9:c3:60:d5:0a:cf:99:ef:fc:ae:bf:e9:90:8c:84:31:5b:
2a:f6:16:27:e5:7a:68:f8:f2:d1:ed:64:0b:b8:c5:55:07:e3:
c4:eb:8b:31:90:a4:8a:90:c3:7c:fb:77:8a:c0:8e:0f:88:b0:
8c:41:6c:03:9b:65:19:ec:85:c5:53:82:cd:3b:4c:27:04:be:
fb:c4:72:81:c9:a4:83:a2:e4:1e:73:9b:12:74:63:0f:a0:51:
90:1f:eb:94:80:39:d3:9e:c4:0c:8f:b2:28:1f:18:df:21:11:
dd:fe:7a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:27 2024 by rpki-client on console-ams.rpki-client.org