Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/SzpgDO9dvOZH0NYthhszqERbyXM.roa
File: SzpgDO9dvOZH0NYthhszqERbyXM.roa (raw, json)
Hash identifier: H43Sd3LrDYSZXMZazvQ3p+1Z4IOkVmvC06YONiLCc/4=
Subject key identifier: 4B:3A:60:0C:EF:5D:BC:E6:47:D0:D6:2D:86:1B:33:A8:44:5B:C9:73
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018C01996E0F3A18C85BBF8C0A4B190CF9C6
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/SzpgDO9dvOZH0NYthhszqERbyXM.roa
Signing time: Fri 24 Nov 2023 13:51:21 +0000
ROA not before: Fri 24 Nov 2023 13:51:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197992
IP address blocks: 5.102.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 24 Dec 2023 07:42:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:99:6e:0f:3a:18:c8:5b:bf:8c:0a:4b:19:0c:f9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Nov 24 13:51:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b3a600cef5dbce647d0d62d861b33a8445bc973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:07:ac:a1:69:79:c9:84:94:9b:87:fe:45:7c:
aa:65:ed:0b:33:c8:1b:56:16:94:db:82:8c:b8:fe:
2d:9f:d3:74:e7:ed:34:3c:78:74:29:ad:e3:fc:91:
f0:fe:9a:82:ed:90:1c:c3:92:a2:d7:0c:1b:23:d0:
d7:75:6e:bf:ea:68:55:c0:e1:8b:64:f0:7c:88:ad:
ed:c7:90:80:ea:86:f7:7a:76:37:13:bd:1a:c9:05:
34:a6:d4:f6:c3:ba:f9:b9:6d:a8:b7:e3:fc:5c:ce:
a1:e2:d5:b1:55:7b:18:5a:6e:0d:02:2f:a6:c8:77:
a9:5b:43:8f:ca:5f:17:7a:c0:5f:80:86:c4:e9:fb:
2f:ef:70:7a:b1:db:43:ce:ea:42:f6:78:c1:76:3e:
38:9d:65:49:87:0c:db:c3:01:3a:75:d2:bb:ca:ea:
ad:91:17:a4:47:9d:08:4b:a7:86:32:34:4c:1c:1e:
34:72:33:aa:f3:0b:3a:be:9f:e4:60:2f:19:c8:17:
28:aa:81:49:f1:a0:05:72:5e:b3:1c:cc:86:6d:b9:
d1:12:ca:2a:51:02:bf:2f:d9:42:dd:49:1f:ac:69:
5f:49:c8:14:c3:ee:25:4e:dc:12:33:c1:2e:a6:cc:
df:42:b5:a5:40:d3:00:f8:e6:62:23:a6:a1:d8:71:
3b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3A:60:0C:EF:5D:BC:E6:47:D0:D6:2D:86:1B:33:A8:44:5B:C9:73
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/SzpgDO9dvOZH0NYthhszqERbyXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:d5:fd:7e:d2:13:98:94:ca:88:74:de:1c:5d:30:2f:2e:c0:
ba:73:9a:d2:f5:ee:5a:56:51:0a:28:cf:b2:41:a4:55:6f:8d:
5b:d3:6c:61:0e:90:88:41:99:52:4d:57:05:c3:e9:97:bc:89:
b0:4e:fc:c2:db:3a:9b:6a:6b:b7:bb:ce:0d:61:63:5a:f3:5c:
1d:51:27:83:7e:8e:1a:8d:8b:bd:d2:ae:23:89:94:44:0c:f8:
14:8c:c0:7c:98:35:4d:8e:18:ab:c0:26:f7:e0:24:89:e2:76:
6e:a2:d0:f9:2a:1a:9b:3d:6e:fd:c3:60:42:71:a1:05:46:d1:
69:60:8b:b8:fd:02:7f:c6:1b:92:dd:60:38:3f:59:bc:de:c1:
f6:cc:ec:8a:72:24:85:ba:87:9d:a7:7c:10:44:6f:28:f2:52:
74:8b:bf:1d:f5:fa:35:6e:c4:2f:3f:28:db:29:6d:0e:bf:6f:
c9:ff:30:80:71:1e:f1:ac:64:46:75:60:ba:1d:ec:e0:1e:a1:
d2:9e:1d:24:d3:a2:55:da:47:46:2f:c6:28:0d:0b:c7:54:f7:
b9:80:1b:95:23:36:c1:46:8a:a4:0b:3a:f9:b8:98:dc:5b:2f:
d7:64:d5:81:00:b8:65:ad:92:17:23:09:f0:3b:f2:97:2d:94:
c1:fc:5e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org