Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/sg-hE8Nkeiwjvnf4QpIyHP0yCqg.roa
File: sg-hE8Nkeiwjvnf4QpIyHP0yCqg.roa (raw, json)
Hash identifier: wplTlsAqtclqVztXbrwZBPVyAEoisdOZTMaZzIWy3qE=
Subject key identifier: B2:0F:A1:13:C3:64:7A:2C:23:BE:77:F8:42:92:32:1C:FD:32:0A:A8
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 01857227D7661B44D99D622295087775DDC5
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/sg-hE8Nkeiwjvnf4QpIyHP0yCqg.roa
Signing time: Mon 02 Jan 2023 11:04:51 +0000
ROA not before: Mon 02 Jan 2023 11:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47886
IP address blocks: 185.236.16.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:d7:66:1b:44:d9:9d:62:22:95:08:77:75:dd:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Jan 2 11:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b20fa113c3647a2c23be77f84292321cfd320aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:93:62:92:2d:21:79:ff:f2:bc:f5:67:f0:e5:
fe:50:28:f4:7b:51:9c:d7:0b:9f:d4:85:d4:5a:44:
51:9f:74:47:f4:d8:7d:0d:02:51:a1:70:2d:a1:ed:
bf:ad:e5:1e:0d:5a:9a:2d:6c:08:0d:3d:73:c5:ed:
91:24:5d:9d:89:2c:7e:15:ae:0b:39:2b:6e:49:40:
26:d6:66:ca:29:af:d1:8a:0b:10:bc:09:78:3e:8b:
5f:c3:70:af:5b:56:d6:20:56:70:0a:83:a4:3a:76:
44:01:33:29:a8:5b:e2:dd:f4:24:43:9a:a7:2b:20:
9c:00:5b:97:1e:d4:45:0e:9a:da:e7:b2:ea:7f:31:
42:42:19:5c:d1:31:b3:9b:e0:58:6a:74:ff:56:c7:
1b:1d:32:53:ea:07:4c:9d:92:89:87:02:0e:22:31:
ad:b5:aa:e0:b4:3c:75:cc:df:a4:56:f8:1b:a8:fd:
e1:d7:0c:8a:cc:42:1f:bb:22:e0:8c:8d:71:c7:04:
9f:27:a9:96:15:43:d3:c7:5b:05:50:9a:0a:fb:1c:
73:6d:ba:f7:1c:d5:27:b3:8e:3c:11:46:01:c7:93:
d7:d9:a9:d4:85:fa:56:bb:3c:55:23:d5:e4:7a:65:
86:09:05:01:bf:f3:31:91:01:0a:cc:ba:4f:be:11:
fe:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0F:A1:13:C3:64:7A:2C:23:BE:77:F8:42:92:32:1C:FD:32:0A:A8
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/sg-hE8Nkeiwjvnf4QpIyHP0yCqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:13:34:67:b4:9b:e1:cd:0a:75:ac:89:6b:2a:ff:f1:ce:93:
06:7c:8d:ab:ee:0d:b8:07:a9:68:f8:95:e6:f2:26:40:f1:6d:
53:de:a6:07:47:cb:e3:17:ea:fc:dc:44:0a:19:b6:5d:6d:25:
42:70:a3:e6:50:71:b2:6b:ba:4e:c3:c5:3c:64:ad:bc:27:40:
4c:de:71:90:e7:38:a3:3f:8f:3a:17:e4:55:df:e6:b0:2a:e3:
d8:3a:15:0b:74:84:8b:42:9a:b0:60:52:f9:a7:10:3c:eb:32:
fb:e4:ed:b9:eb:12:8e:ab:7a:fe:d9:17:39:11:f7:44:91:8d:
1b:1f:ef:7f:27:5a:6f:72:e2:c0:2e:9f:fa:da:7f:82:b9:b0:
00:a3:b0:8d:01:c7:7b:b0:ae:90:bf:a6:0b:41:0a:44:42:64:
81:c5:64:12:0d:2b:bf:6e:0a:d1:e9:c1:56:76:0c:af:26:df:
a4:76:9b:c4:33:c0:90:dd:1c:75:8e:d7:2d:c5:f1:9e:c4:7f:
8c:5b:0a:2b:5c:c2:02:56:d6:c2:0f:82:0c:10:01:54:7b:66:
0f:42:32:2d:98:62:f0:4d:a8:16:76:bc:e7:cf:4a:63:8a:72:
79:06:57:0e:19:2b:4a:df:c7:98:00:34:7d:04:21:09:6d:b8:
a7:19:aa:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:58 2024 by rpki-client on console-fra.rpki-client.org