Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sgSKNoV558otvuBpczfZXt0YZfQ.roa
File: sgSKNoV558otvuBpczfZXt0YZfQ.roa (raw, json)
Hash identifier: yQayNr8z41c8DqUgCBP5XWPMp1cRbXi+4m2FlHK+oDM=
Subject key identifier: B2:04:8A:36:85:79:E7:CA:2D:BE:E0:69:73:37:D9:5E:DD:18:65:F4
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185742C0D19BCD20A84383C939C71AFD121
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sgSKNoV558otvuBpczfZXt0YZfQ.roa
Signing time: Mon 02 Jan 2023 20:28:42 +0000
ROA not before: Mon 02 Jan 2023 20:28:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16200
IP address blocks: 91.186.192.0/24 maxlen: 24
83.147.192.0/24 maxlen: 24
83.147.193.0/24 maxlen: 24
83.147.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 13:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:74:2c:0d:19:bc:d2:0a:84:38:3c:93:9c:71:af:d1:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 20:28:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2048a368579e7ca2dbee0697337d95edd1865f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e0:3a:9a:82:b5:95:57:58:19:64:9f:1c:eb:
45:7e:88:f6:5a:27:77:3c:02:80:18:85:07:44:b8:
c7:6d:53:ea:c2:df:80:f1:78:c4:92:60:8b:84:af:
cf:f0:70:4c:66:d7:02:40:79:8b:33:19:ae:b4:81:
e3:6a:ae:46:c9:6d:ec:ba:a3:75:4a:00:b7:a8:ec:
d4:c7:83:7b:28:20:63:d2:47:0a:bd:99:03:f5:4b:
5a:95:ef:01:d2:f7:02:c8:6d:a3:19:a0:01:69:47:
d2:32:a3:e3:81:d4:3d:9d:45:7d:2e:d7:b1:e6:05:
09:0e:01:22:13:10:68:82:1b:32:b2:e2:ac:41:9c:
f2:50:0b:88:1d:d4:1b:0b:04:fa:e4:95:69:be:4c:
a6:58:05:5d:d8:83:ed:8c:0e:51:55:65:21:95:eb:
7a:92:f6:72:15:d6:fe:f1:03:09:f9:c2:99:5d:2d:
bc:0c:9f:39:f1:aa:22:49:0c:36:24:43:2f:8d:ec:
92:0f:3f:aa:21:a3:bb:01:57:02:a2:f4:f9:08:11:
56:91:80:4f:3d:d8:69:c5:e5:af:db:33:44:91:bb:
e0:a9:3e:3c:7e:8e:30:45:64:7f:9c:ff:60:b3:72:
fd:e4:e1:96:84:89:01:b7:89:60:ba:04:9e:73:b1:
f0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:04:8A:36:85:79:E7:CA:2D:BE:E0:69:73:37:D9:5E:DD:18:65:F4
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sgSKNoV558otvuBpczfZXt0YZfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.192.0-83.147.194.255
91.186.192.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9d:7e:93:52:2e:ee:47:af:b8:b9:94:d8:bd:32:1a:98:96:
96:42:97:8a:00:27:83:e0:26:57:a9:ef:fb:53:6f:a1:9e:73:
74:0d:01:7b:46:9f:fd:d5:9f:be:a0:b4:9c:71:2b:82:c5:8c:
97:f2:ec:f3:f1:d3:71:7e:ae:65:46:20:38:de:c0:b2:18:80:
22:70:5d:7c:2b:25:c7:8b:eb:81:65:48:20:e8:f5:f9:43:c0:
02:82:01:c3:dd:1a:5b:25:94:7f:df:0e:90:45:26:f5:80:98:
4f:b6:13:7d:b4:7f:9a:8c:11:4d:54:0b:d6:a1:2c:22:b3:55:
d6:d8:4a:c0:4f:49:15:b3:3c:93:51:ca:cc:d1:16:73:60:6f:
8e:ef:03:28:3f:58:40:b5:45:30:4b:e7:7a:ba:4d:bc:2e:f8:
66:82:98:87:1a:dc:99:fc:a4:c9:a4:c8:cb:19:f6:5d:6b:61:
fa:40:dc:e8:72:a5:40:09:29:fe:0e:e3:02:53:4a:bc:07:76:
ce:5a:1a:9c:4c:4e:77:f2:5e:fa:fe:3d:d6:17:ac:1e:f7:7d:
90:6d:3d:b9:36:48:d4:d3:e3:ac:8b:f8:f2:53:e2:93:97:d7:
ec:3f:51:1e:63:2a:1e:c8:4b:26:49:c7:ed:43:27:b4:ce:51:
21:2f:93:24
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYV0LA0ZvNIKhDg8k5xxr9EhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjMwMTAyMjAyODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjA0OGEzNjg1NzllN2NhMmRiZWUwNjk3MzM3ZDk1ZWRkMTg2NWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuA6moK1lVdYGWSfHOtFfoj2Wid3
PAKAGIUHRLjHbVPqwt+A8XjEkmCLhK/P8HBMZtcCQHmLMxmutIHjaq5GyW3suqN1
SgC3qOzUx4N7KCBj0kcKvZkD9Utale8B0vcCyG2jGaABaUfSMqPjgdQ9nUV9Ltex
5gUJDgEiExBoghsysuKsQZzyUAuIHdQbCwT65JVpvkymWAVd2IPtjA5RVWUhlet6
kvZyFdb+8QMJ+cKZXS28DJ858aoiSQw2JEMvjeySDz+qIaO7AVcCovT5CBFWkYBP
PdhpxeWv2zNEkbvgqT48fo4wRWR/nP9gs3L95OGWhIkBt4lgugSec7HwdQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFLIEijaFeefKLb7gaXM32V7dGGX0MB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvc2dTS05vVjU1OG90dnVCcGN6ZlpYdDBZWmZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAZTk8AD
BABTk8IDBABbusAwDQYJKoZIhvcNAQELBQADggEBADedfpNSLu5Hr7i5lNi9MhqY
lpZCl4oAJ4PgJlep7/tTb6Gec3QNAXtGn/3Vn76gtJxxK4LFjJfy7PPx03F+rmVG
IDjewLIYgCJwXXwrJceL64FlSCDo9flDwAKCAcPdGlsllH/fDpBFJvWAmE+2E320
f5qMEU1UC9ahLCKzVdbYSsBPSRWzPJNRyszRFnNgb47vAyg/WEC1RTBL53q6Tbwu
+GaCmIca3Jn8pMmkyMsZ9l1rYfpA3OhypUAJKf4O4wJTSrwHds5aGpxMTnfyXvr+
PdYXrB73fZBtPbk2SNTT46yL+PJT4pOX1+w/UR5jKh7ISyZJx+1DJ7TOUSEvkyQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org