Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/G56iFMl5xs48CNvzJ3eUhizjxXQ.roa
File: G56iFMl5xs48CNvzJ3eUhizjxXQ.roa (raw, json)
Hash identifier: HFz0dIJ5Q/2jY5r5t5GIvDST3JXHcsV/NRUw7U2Q6QI=
Subject key identifier: 1B:9E:A2:14:C9:79:C6:CE:3C:08:DB:F3:27:77:94:86:2C:E3:C5:74
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018CC7956AB9F9C3AC92FEFA5F6096B2561F
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/G56iFMl5xs48CNvzJ3eUhizjxXQ.roa
Signing time: Tue 02 Jan 2024 00:31:47 +0000
ROA not before: Tue 02 Jan 2024 00:31:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19437
IP address blocks: 46.226.124.0/24 maxlen: 24
185.138.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 13:20:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:6a:b9:f9:c3:ac:92:fe:fa:5f:60:96:b2:56:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Jan 2 00:31:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b9ea214c979c6ce3c08dbf3277794862ce3c574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:87:8c:08:fb:99:7c:26:2e:cf:b5:a1:a8:d5:
85:13:14:37:bd:1f:c7:0a:c2:13:9b:13:de:8a:9e:
33:d5:da:c7:94:79:f6:36:a4:2b:a8:f4:8b:cd:1b:
09:2b:a2:de:ee:9e:02:c8:6c:8d:3f:69:f7:90:e0:
68:07:d8:b6:7b:05:c4:63:9d:b4:28:e4:82:eb:b1:
d6:a0:43:34:cd:f0:cf:bb:c8:d6:ac:57:a3:8f:e7:
7d:7d:93:19:2a:72:f2:d4:3b:5a:a7:8f:90:f1:0b:
bb:10:06:bd:14:a5:cf:02:b8:35:3e:df:b4:f3:b6:
f6:4f:bc:f9:19:1f:4c:c1:24:9d:20:18:e7:5c:f9:
2f:41:f7:6e:c6:d0:3f:dd:ec:97:01:2a:0f:92:87:
b6:9e:1a:fb:30:9e:ab:a7:62:80:b2:f9:e6:fc:93:
c5:20:c3:ad:08:0a:25:e2:a1:20:20:0b:65:da:11:
29:be:b5:7f:2c:a9:b7:e4:f5:8c:88:07:a1:82:4f:
69:37:cb:bd:af:d7:20:a4:ce:fa:d2:cd:0a:4c:78:
2c:c9:43:76:3b:69:06:9f:c4:f1:5b:5a:f2:96:da:
af:1c:32:8d:d1:6b:15:09:5b:38:19:e5:28:ba:16:
da:ca:26:4b:cc:c2:f8:7b:89:96:06:f7:83:6e:a3:
49:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9E:A2:14:C9:79:C6:CE:3C:08:DB:F3:27:77:94:86:2C:E3:C5:74
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/G56iFMl5xs48CNvzJ3eUhizjxXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.124.0/24
185.138.166.0/24
Signature Algorithm: sha256WithRSAEncryption
76:37:0d:08:8b:8d:0c:75:f0:de:04:86:7b:16:e0:bc:d1:6d:
7f:47:96:3d:2c:90:68:30:f1:08:6b:74:5b:81:b7:94:c0:7e:
89:c5:0d:17:96:83:b3:85:17:b9:3b:63:d6:e2:f1:2b:44:f3:
75:11:ee:c5:26:20:d1:b8:33:33:24:57:92:bf:7c:1e:f5:2d:
97:2c:a3:5d:77:e1:72:68:71:24:f5:fa:21:78:a6:2f:f1:b1:
49:1c:42:84:d6:ec:02:a3:21:7a:2b:95:c8:d6:81:1c:f3:dc:
be:5c:29:80:1b:ac:46:f4:3c:c6:6f:5e:ec:78:54:9d:1b:af:
68:67:06:44:c5:76:0b:6f:ce:eb:76:ca:b6:3c:cc:94:97:37:
8d:38:4f:9c:31:b3:1f:cb:09:97:d4:25:72:eb:ae:f9:3a:af:
e1:24:b4:cb:8a:9b:8f:09:42:9f:35:c6:73:5d:9c:8f:97:c2:
0e:cf:b1:12:18:3c:b3:f5:19:47:82:2d:0a:f7:e3:b7:8b:23:
97:25:df:03:98:2b:77:6d:d0:98:b5:0b:56:e8:fe:97:e4:45:
0d:f0:5b:11:18:39:84:dd:0d:d0:32:59:be:50:2d:ba:00:70:
cd:7b:16:50:91:2a:fa:8d:01:3d:b1:66:a5:ab:86:08:fc:99:
32:41:1c:44
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzHlWq5+cOskv76X2CWslYfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkYzI4YWU5OTM3ZmY3ZTQ5ZWM0ZjEyMzRlNTNkOGI5ZGQ2
OTQ1NDEwHhcNMjQwMTAyMDAzMTQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjllYTIxNGM5NzljNmNlM2MwOGRiZjMyNzc3OTQ4NjJjZTNjNTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAloeMCPuZfCYuz7WhqNWFExQ3vR/H
CsITmxPeip4z1drHlHn2NqQrqPSLzRsJK6Le7p4CyGyNP2n3kOBoB9i2ewXEY520
KOSC67HWoEM0zfDPu8jWrFejj+d9fZMZKnLy1Dtap4+Q8Qu7EAa9FKXPArg1Pt+0
87b2T7z5GR9MwSSdIBjnXPkvQfduxtA/3eyXASoPkoe2nhr7MJ6rp2KAsvnm/JPF
IMOtCAol4qEgIAtl2hEpvrV/LKm35PWMiAehgk9pN8u9r9cgpM760s0KTHgsyUN2
O2kGn8TxW1ryltqvHDKN0WsVCVs4GeUouhbayiZLzML4e4mWBveDbqNJDwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBueohTJecbOPAjb8yd3lIYs48V0MB8GA1UdIwQY
MBaAFJ3CiumTf/fknsTxI05T2LndaUVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmNLSzZaTl85LVNleFBFalRsUFl1ZDFwUlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9jMDMzMGMtOTg3Mi00YWM2LWEyMmMt
MTkyY2JkMDhkYjUxLzEvRzU2aUZNbDV4czQ4Q052ekozZVVoaXpqeFhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9jMDMzMGMtOTg3Mi00YWM2LWEyMmMtMTkyY2JkMDhkYjUx
LzEvbmNLSzZaTl85LVNleFBFalRsUFl1ZDFwUlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALuJ8AwQA
uYqmMA0GCSqGSIb3DQEBCwUAA4IBAQB2Nw0Ii40MdfDeBIZ7FuC80W1/R5Y9LJBo
MPEIa3RbgbeUwH6JxQ0XloOzhRe5O2PW4vErRPN1Ee7FJiDRuDMzJFeSv3we9S2X
LKNdd+FyaHEk9foheKYv8bFJHEKE1uwCoyF6K5XI1oEc89y+XCmAG6xG9DzGb17s
eFSdG69oZwZExXYLb87rdsq2PMyUlzeNOE+cMbMfywmX1CVy6675Oq/hJLTLipuP
CUKfNcZzXZyPl8IOz7ESGDyz9RlHgi0K9+O3iyOXJd8DmCt3bdCYtQtW6P6X5EUN
8FsRGDmE3Q3QMlm+UC26AHDNexZQkSr6jQE9sWalq4YI/JkyQRxE
-----END CERTIFICATE-----
Generated at Fri Nov 1 16:06:59 2024 by rpki-client on console-ams.rpki-client.org