Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/SkGQXvLuGPf_gWyxTM8xR2NoCl4.roa
File: SkGQXvLuGPf_gWyxTM8xR2NoCl4.roa (raw, json)
Hash identifier: 3IAywrMsK2sVdzo3m/Xu7Dfr75w2KffcVY7HZvgzJqE=
Subject key identifier: 4A:41:90:5E:F2:EE:18:F7:FF:81:6C:B1:4C:CF:31:47:63:68:0A:5E
Certificate issuer: /CN=bf98e8170959b5e6018f602b3a7487b2d8028106
Certificate serial: 01856D41B2A9152DC35676D6FFBB269656D2
Authority key identifier: BF:98:E8:17:09:59:B5:E6:01:8F:60:2B:3A:74:87:B2:D8:02:81:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5joFwlZteYBj2ArOnSHstgCgQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/SkGQXvLuGPf_gWyxTM8xR2NoCl4.roa
Signing time: Sun 01 Jan 2023 12:15:00 +0000
ROA not before: Sun 01 Jan 2023 12:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203897
IP address blocks: 185.34.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:b2:a9:15:2d:c3:56:76:d6:ff:bb:26:96:56:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf98e8170959b5e6018f602b3a7487b2d8028106
Validity
Not Before: Jan 1 12:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a41905ef2ee18f7ff816cb14ccf314763680a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:52:73:a3:ae:54:6f:6a:a8:f0:bd:5b:a2:
4c:be:08:e6:6a:de:28:05:ab:c1:c8:03:82:7e:cc:
c0:bd:0c:49:b7:5f:15:7d:74:b3:4d:77:b2:de:67:
a5:34:fb:33:f4:29:2a:15:b2:d1:42:d7:b1:22:9e:
99:e8:c3:ad:0d:1b:93:bd:45:b9:ee:64:b5:58:61:
2e:df:38:23:4a:79:27:27:6e:b4:a5:87:da:a1:53:
ae:6d:ca:37:8f:01:58:f4:b5:e8:90:65:26:d0:74:
a5:8a:1d:8d:51:27:e6:db:bc:9c:a3:9a:df:97:44:
fc:5e:2c:7e:e7:d6:bb:27:5b:93:2d:63:44:61:9b:
ea:ab:2c:e1:7e:64:3d:fe:0f:19:60:e9:82:b2:0c:
61:fd:ec:d3:0c:39:5f:cc:e2:1f:34:f7:7c:a6:45:
d8:04:d0:0c:7f:6b:ee:9f:d6:2b:5e:d0:b1:cf:f7:
cb:e8:ee:b5:03:de:53:89:fd:25:bd:f3:52:af:08:
4e:7e:d9:61:a8:02:5e:13:d7:da:60:d1:58:3a:be:
f4:50:27:3a:97:d4:db:bb:e6:5a:3d:16:f1:c2:8f:
b8:65:0c:a2:04:cc:24:17:09:d6:8b:55:99:f7:fa:
25:51:39:9d:79:4d:52:f4:43:95:ea:cc:96:49:9d:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:41:90:5E:F2:EE:18:F7:FF:81:6C:B1:4C:CF:31:47:63:68:0A:5E
X509v3 Authority Key Identifier:
keyid:BF:98:E8:17:09:59:B5:E6:01:8F:60:2B:3A:74:87:B2:D8:02:81:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5joFwlZteYBj2ArOnSHstgCgQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/SkGQXvLuGPf_gWyxTM8xR2NoCl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/23fb1a-a791-400c-a41a-48ceed5e438e/1/v5joFwlZteYBj2ArOnSHstgCgQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.126.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ca:a4:4d:d3:6f:84:1d:8a:e6:ee:a4:63:eb:64:19:e9:06:
7f:03:51:25:36:c3:a0:35:03:83:c4:75:93:d8:ea:49:c2:4e:
95:4c:7c:87:e9:91:4c:2a:8d:db:16:b4:1d:5f:ae:36:46:4e:
ae:af:8b:f3:89:3f:68:5c:3c:ef:3a:22:7b:af:7e:cd:14:43:
ae:7a:68:0a:8f:9b:65:43:ad:f1:62:4a:eb:de:37:82:65:81:
74:18:47:52:11:d1:0b:77:56:d3:6b:ce:83:fc:97:16:8d:ae:
61:fb:0b:a0:f2:23:21:6b:1b:ae:f6:ed:2d:bb:ef:70:a5:84:
40:55:5c:63:d8:01:26:17:66:0d:c3:70:af:be:ea:42:19:9f:
dd:05:31:9f:90:ff:cf:ca:6a:72:d7:06:e4:26:c6:78:9a:5b:
d9:3b:30:d9:f3:8b:59:cb:df:13:77:1a:af:cf:2d:42:0a:9b:
0f:ca:1f:c7:2f:29:87:7a:e5:57:e3:89:75:0a:50:03:d3:ef:
6c:d9:3a:64:c0:04:85:de:5a:12:d7:94:89:ea:6b:bc:91:08:
53:bb:1d:54:d0:a1:66:0f:f6:e2:9a:97:e3:19:b4:b3:c6:28:
b5:57:3e:22:9e:0d:e8:74:7c:1d:66:c9:2d:72:c1:bd:3d:5a:
71:d9:aa:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:49 2024 by rpki-client on console-ams.rpki-client.org