Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/S8PIcBiC677Ml7azyxtG2-xS3WU.roa
File: S8PIcBiC677Ml7azyxtG2-xS3WU.roa (raw, json)
Hash identifier: O7BNE/ImGm2RbpKgWSqEsXlDLgbjkVEt/3hQdc0DOyY=
Subject key identifier: 4B:C3:C8:70:18:82:EB:BE:CC:97:B6:B3:CB:1B:46:DB:EC:52:DD:65
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018BC98DD502931D5437DCA952208C104082
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/S8PIcBiC677Ml7azyxtG2-xS3WU.roa
Signing time: Mon 13 Nov 2023 16:39:57 +0000
ROA not before: Mon 13 Nov 2023 16:39:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 212.52.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:8d:d5:02:93:1d:54:37:dc:a9:52:20:8c:10:40:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 13 16:39:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bc3c8701882ebbecc97b6b3cb1b46dbec52dd65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fd:ee:92:bd:08:2b:64:ea:58:86:3d:c2:75:
51:aa:ae:35:70:15:e3:64:61:74:b6:aa:11:fb:c1:
de:4b:2e:b6:16:f3:6d:ab:20:c1:df:78:22:e1:c4:
a3:68:57:ae:c3:b5:99:85:82:e1:62:bd:7b:3a:48:
b1:ce:5c:e0:88:b9:f8:27:8b:04:d0:62:3e:18:65:
ac:07:2f:d4:7e:4a:5a:cd:01:9e:da:55:34:df:76:
19:18:f6:85:ee:08:e8:f9:c8:04:40:6f:19:0e:a2:
a0:0d:f0:60:be:2d:78:38:26:8d:aa:7b:3f:51:0a:
49:d9:94:ec:62:21:90:2e:16:2c:a1:10:67:55:ec:
f8:27:12:eb:7e:c3:41:04:19:5c:10:6b:b9:fe:01:
94:0c:e6:21:03:a5:69:ac:3f:34:3c:66:60:b7:9a:
97:fb:e8:3c:1d:d1:61:39:8b:1b:9a:0f:86:63:1b:
a9:bc:f9:84:4c:a3:86:9e:2d:9d:b6:02:c3:83:b8:
f6:dc:bf:69:18:d9:95:c9:8f:05:31:6b:1d:ba:b8:
af:51:04:3f:08:bd:eb:45:3b:e6:97:19:d2:e3:6f:
d2:22:1b:b0:18:ea:c0:9b:56:70:17:81:8c:52:c9:
af:d7:3e:6b:82:2e:ab:6a:45:ac:7b:72:69:7c:70:
ff:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C3:C8:70:18:82:EB:BE:CC:97:B6:B3:CB:1B:46:DB:EC:52:DD:65
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/S8PIcBiC677Ml7azyxtG2-xS3WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.20.0/24
Signature Algorithm: sha256WithRSAEncryption
07:9e:a3:32:e1:a8:e8:f7:ce:74:87:46:73:04:d0:23:fc:16:
fc:99:a8:c5:63:0d:22:bf:ea:41:09:77:3f:02:2b:e4:a0:23:
0b:37:0b:28:7d:6b:45:e3:1b:a0:c1:a9:2c:4b:13:36:a1:76:
34:fc:f1:d8:48:b9:06:1a:26:6e:73:5c:57:a2:e0:0c:e8:cc:
6b:f9:91:e0:77:fe:8f:33:a6:d8:81:b0:c8:17:8a:d4:9a:2b:
df:ca:9e:65:87:92:4f:45:07:b7:34:4e:25:2c:97:d4:8b:03:
49:b0:73:20:7c:7f:43:d6:e2:82:05:5b:8d:5c:0d:ad:00:6a:
cf:96:b2:5c:8d:90:fe:d5:3f:1b:5a:35:e5:61:dd:45:d0:66:
a4:ef:49:a3:ee:72:ff:9d:ce:32:68:72:e4:34:da:96:27:1c:
25:ff:ec:c2:02:e4:f1:91:1c:8b:da:a8:21:d1:e1:2c:22:0c:
0c:e3:fe:fe:f2:ee:96:96:36:e1:50:b0:a9:20:66:a4:aa:aa:
b7:a3:3f:08:d6:66:98:c9:7c:0e:34:35:90:73:fa:93:d3:85:
fa:54:bc:74:87:3b:35:11:ae:3e:e1:43:6e:72:66:a6:16:3c:
b9:9c:e6:c5:59:54:29:ec:a6:17:ad:9c:76:d5:41:59:d7:1b:
4c:b8:1a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org