Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/SY24HcWv9nj0xRh3nJ0v_PdZhl8.roa
File: SY24HcWv9nj0xRh3nJ0v_PdZhl8.roa (raw, json)
Hash identifier: Lq6RgOcdXbLXreH7+YfhnEVo1nJPgFKF6B8uWzK+ZTs=
Subject key identifier: 49:8D:B8:1D:C5:AF:F6:78:F4:C5:18:77:9C:9D:2F:FC:F7:59:86:5F
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 018EC1BAD4A70DA9E3926CD500411FA5776B
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/SY24HcWv9nj0xRh3nJ0v_PdZhl8.roa
Signing time: Tue 09 Apr 2024 07:20:30 +0000
ROA not before: Tue 09 Apr 2024 07:20:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31673
IP address blocks: 185.52.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 12:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c1:ba:d4:a7:0d:a9:e3:92:6c:d5:00:41:1f:a5:77:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Apr 9 07:20:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=498db81dc5aff678f4c518779c9d2ffcf759865f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:08:97:a0:e9:bb:52:47:cd:06:a6:85:22:68:
cc:12:24:89:ac:97:3f:30:80:d9:b0:aa:2a:07:1d:
68:89:75:10:49:c6:66:ce:b2:b8:bf:d8:53:10:20:
52:7c:21:42:e1:67:bf:be:ea:97:02:ed:29:64:0e:
25:14:12:b0:b2:dd:73:90:f0:06:f0:61:f4:12:66:
44:7b:91:2c:9c:c5:5c:a8:c1:f2:82:9b:b7:b1:35:
79:4e:f8:cf:0e:c5:7e:e7:69:ff:83:0b:32:30:2b:
95:8f:97:b9:52:5e:36:d0:6b:8b:1a:26:3f:13:d0:
ff:af:98:47:21:e8:c2:8b:2f:23:f2:54:aa:10:ec:
68:18:ad:1d:41:27:dc:eb:14:fe:ee:0a:cc:30:95:
66:10:01:68:db:4f:70:c3:2f:dc:c7:a5:93:26:c5:
38:aa:f0:33:f8:7b:9f:84:67:1e:30:39:d1:1b:e7:
b5:13:68:b2:01:b5:e8:31:9a:d2:97:79:c8:25:b8:
1a:d1:22:3c:22:51:7e:93:79:d9:91:76:9e:fe:04:
12:f7:b1:79:26:51:4f:7d:dc:ce:92:2d:12:85:7c:
7a:83:8e:0b:18:49:a1:6d:e9:e3:4b:1c:a9:fe:d6:
2a:ea:2f:f6:63:8c:29:dc:96:ea:21:2f:67:11:6a:
35:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8D:B8:1D:C5:AF:F6:78:F4:C5:18:77:9C:9D:2F:FC:F7:59:86:5F
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/SY24HcWv9nj0xRh3nJ0v_PdZhl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.212.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:df:bd:cc:5b:7d:a2:55:94:07:8e:03:38:6a:f2:5f:8d:ee:
9a:8f:e1:4d:47:ac:88:9e:1b:20:d3:e0:26:e1:b6:9d:b4:62:
89:ab:32:3e:80:bb:d2:d1:f7:e3:31:08:d4:1d:43:03:7a:46:
87:f3:87:8f:2b:fd:7f:56:b3:4d:20:9f:c2:b3:e5:ec:9b:c0:
aa:aa:7a:c0:58:62:fe:0a:f0:b1:d8:2a:74:bb:43:d3:36:a2:
43:de:b3:a4:21:7d:f4:40:af:85:dc:69:08:74:10:cd:7a:07:
49:0e:07:ea:2b:c7:fd:d5:c2:be:d9:00:c6:cb:1d:3b:d0:b2:
ec:28:9e:d6:2f:3d:64:a2:c8:6f:2e:cd:ce:0a:aa:e6:cb:8b:
b3:b0:3d:8e:8d:08:54:e3:fb:be:cd:92:22:67:70:29:64:35:
89:33:de:dc:ba:8e:08:2d:2f:e2:f1:60:ed:91:90:10:c4:0f:
c3:8e:2d:ff:5f:c4:5d:7a:1d:88:e5:7e:f1:84:d7:01:09:60:
8f:4a:36:16:4a:47:16:c2:c0:0a:f9:8e:a3:fa:79:8f:c2:63:
cc:4c:13:e3:c9:d3:dd:75:56:95:0f:1d:2d:8e:88:b7:3e:2d:
22:e3:9a:83:c8:71:5c:af:7d:e3:ae:dc:44:c0:2a:47:97:3a:
ef:47:59:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:20 2024 by rpki-client on console-fra.rpki-client.org