Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Sgip39Cx_LVJQ9ualojhkZad9J0.roa
File: Sgip39Cx_LVJQ9ualojhkZad9J0.roa (raw, json)
Hash identifier: OFhX0bOcK+fhjKZTwV738ltZPw2DIlrkSduXuR0AfOg=
Subject key identifier: 4A:08:A9:DF:D0:B1:FC:B5:49:43:DB:9A:96:88:E1:91:96:9D:F4:9D
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018C1F342B0A93D88A0B17EFB1BDD0B82759
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Sgip39Cx_LVJQ9ualojhkZad9J0.roa
Signing time: Thu 30 Nov 2023 07:49:21 +0000
ROA not before: Thu 30 Nov 2023 07:49:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57935
IP address blocks: 178.239.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1f:34:2b:0a:93:d8:8a:0b:17:ef:b1:bd:d0:b8:27:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 30 07:49:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a08a9dfd0b1fcb54943db9a9688e191969df49d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:65:21:ac:f3:97:50:c9:f9:2a:bc:bd:8e:db:
e7:a8:b4:72:7c:6c:bf:26:6e:fe:f1:4c:b9:76:f7:
ad:11:3b:d7:8b:45:05:23:cb:67:20:d0:63:c3:97:
b5:97:6f:5a:d2:a2:9d:7e:75:29:1f:61:a8:01:25:
4c:a2:52:82:9f:7c:32:d0:0e:94:16:5a:66:83:f4:
dd:00:2f:37:53:83:5b:60:e2:54:40:00:fc:a5:96:
e2:00:93:13:14:0e:16:01:f2:63:f2:8d:aa:78:ff:
8d:d8:1a:8e:3e:04:99:9f:93:ed:8d:9b:4f:6e:48:
e7:a5:a8:be:eb:c5:c1:eb:47:18:8b:eb:38:95:93:
d2:71:a6:7e:47:73:23:20:e5:c1:d1:ea:53:13:02:
42:dd:12:12:c3:f4:51:34:e3:04:5a:02:75:03:b4:
15:f5:bb:65:0d:bb:13:0a:8f:c5:1e:bb:0c:3d:cc:
ef:36:ec:4c:af:1d:00:1a:f9:e9:db:41:22:49:9d:
58:13:9c:e5:4e:ea:64:ac:9c:1e:b0:54:e6:1a:fd:
b1:7b:8c:dd:ad:ce:bc:91:33:e9:68:14:f9:d4:68:
13:22:cf:fd:35:51:d6:ac:df:33:45:6c:c8:d3:51:
f3:f7:79:ee:30:78:b7:6d:0c:c8:da:a6:52:bc:3d:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:08:A9:DF:D0:B1:FC:B5:49:43:DB:9A:96:88:E1:91:96:9D:F4:9D
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Sgip39Cx_LVJQ9ualojhkZad9J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.204.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ef:2e:94:de:cf:c6:58:56:7f:62:79:5e:1e:da:0a:90:31:
05:fd:ab:67:aa:cc:26:e7:34:60:42:4b:63:da:a1:bd:a2:28:
a6:35:1b:b4:62:39:39:f7:36:d0:bc:b1:8e:5b:dc:e8:88:78:
18:c2:d5:4a:d7:bb:c4:13:e1:26:a4:86:3c:d1:7a:32:2f:e3:
8a:a1:e6:cb:a4:9f:72:f6:aa:9b:27:e3:5a:f0:92:6b:97:30:
6c:58:99:aa:2d:fd:b6:2d:16:df:79:25:20:9c:3a:be:15:5a:
ea:a1:db:a3:d3:54:1a:13:a0:27:89:74:5a:cb:70:a0:8e:8a:
ce:bd:91:9a:fd:20:e7:5f:6e:01:07:57:b4:61:1d:14:31:c4:
43:03:77:88:fc:1b:28:fe:b9:bf:b3:bd:52:ba:5c:2d:b1:f6:
44:69:0d:cb:0e:82:3f:17:32:9f:ab:78:31:1c:da:c9:9b:1c:
55:b0:c9:d7:d2:7f:1d:4e:b8:ec:84:7c:ba:b3:f5:d1:1e:e0:
e2:ea:a3:8d:32:e0:f0:b7:08:8f:0d:54:65:4d:ee:15:4e:47:
dd:9a:a7:bc:ff:80:0b:f2:2f:96:6a:76:54:8b:41:37:22:f6:
d5:95:2e:5f:97:02:16:46:f6:c2:59:23:e7:88:ee:94:c3:2a:
f1:b5:d4:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org