Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/sbcdDpuUQSI1G-gnhHCHp4vOOLc.roa
File: sbcdDpuUQSI1G-gnhHCHp4vOOLc.roa (raw, json)
Hash identifier: OHMFR3vbU0KtPGnGc96gteo1cbdnjt76/TqItEkXilk=
Subject key identifier: B1:B7:1D:0E:9B:94:41:22:35:1B:E8:27:84:70:87:A7:8B:CE:38:B7
Certificate issuer: /CN=5d370a48b59fb811495f11c49734482f22b1a392
Certificate serial: 018CFC9BD778361D06BC1EBDB58F51D88DBA
Authority key identifier: 5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/sbcdDpuUQSI1G-gnhHCHp4vOOLc.roa
Signing time: Fri 12 Jan 2024 07:38:40 +0000
ROA not before: Fri 12 Jan 2024 07:38:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.226.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 17:45:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fc:9b:d7:78:36:1d:06:bc:1e:bd:b5:8f:51:d8:8d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d370a48b59fb811495f11c49734482f22b1a392
Validity
Not Before: Jan 12 07:38:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1b71d0e9b944122351be827847087a78bce38b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:74:5f:ed:7b:d0:c4:22:d4:e0:0e:1d:01:a1:
12:26:94:8f:66:60:47:44:2e:69:56:df:ab:ae:2d:
78:2f:ed:1d:4d:4b:a0:77:56:c6:88:b9:4c:2d:a7:
bf:34:a8:9e:51:00:81:fc:c9:37:3e:29:ab:d7:e3:
0c:ce:d6:6b:38:6a:c6:0c:20:46:6f:09:a3:b2:d2:
1a:3d:6c:70:13:1b:bc:90:d0:89:03:6c:0f:19:2a:
c2:e3:31:cb:17:ae:0a:2a:9f:3c:db:01:af:b4:6a:
53:c5:07:f2:ad:4e:16:ae:04:fc:05:3f:06:3e:5d:
a2:cc:bb:f6:29:ee:b9:91:2a:4d:73:b5:e0:e8:8a:
60:85:79:7b:cd:d8:56:30:2c:27:7b:e9:a5:eb:e2:
b9:3f:b1:ab:7d:62:90:2a:a2:5b:cd:c4:a5:c9:f1:
f5:c3:84:57:3f:4b:24:03:cb:0d:75:44:7b:83:7c:
82:96:0b:22:d8:48:ad:76:75:eb:09:6b:fa:4e:42:
fd:42:c4:5c:18:8b:25:d0:5c:23:7f:e9:96:33:8c:
d5:c2:9a:cb:a6:f5:06:6e:95:0d:60:3f:85:34:76:
32:c8:16:85:93:71:b5:06:43:e7:f5:e0:ee:bc:d4:
7f:68:cc:4b:ef:c8:ff:25:cc:33:0e:a0:c7:93:10:
1b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B7:1D:0E:9B:94:41:22:35:1B:E8:27:84:70:87:A7:8B:CE:38:B7
X509v3 Authority Key Identifier:
keyid:5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/sbcdDpuUQSI1G-gnhHCHp4vOOLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/XTcKSLWfuBFJXxHElzRILyKxo5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.97.0/24
Signature Algorithm: sha256WithRSAEncryption
26:90:6d:bb:21:18:e3:c3:10:25:1c:d7:bf:c8:fd:36:4f:14:
23:a2:c1:0c:aa:8d:06:dd:4c:f2:05:82:b9:fb:84:5e:3d:35:
af:2c:7e:d9:1a:82:b9:44:f1:59:13:50:15:6b:df:c6:b5:15:
04:e3:1b:87:d9:5f:58:84:c9:71:b0:fb:05:26:a8:95:79:18:
f9:e0:53:4a:3c:84:57:cd:53:79:63:69:bf:3d:85:66:4a:57:
52:de:97:86:ba:1e:5a:96:97:9c:f3:94:a5:b7:10:08:d1:4c:
a2:eb:ef:c0:0d:05:04:e7:3f:5d:8e:ba:7f:33:bb:8f:72:4e:
3e:e5:7e:45:80:bf:d9:04:7f:39:b4:57:5c:d1:9a:d1:5d:52:
16:24:e5:86:a8:d9:c4:2b:c3:a2:31:36:59:3e:49:3e:16:a0:
8f:d2:50:76:ab:d2:5f:34:04:e6:3e:24:79:f1:c5:10:b2:25:
10:75:ff:ee:00:f3:68:a2:fa:3d:38:12:08:ad:73:af:31:17:
b1:c5:b7:fc:c7:38:8b:73:9c:0a:72:83:3c:d7:49:30:b9:45:
8e:88:af:14:e4:0e:a9:04:ad:f9:0a:f6:c6:f0:f4:9c:31:1e:
ee:6a:54:52:6f:f8:c4:b8:47:9a:ab:48:f9:a8:0e:f9:69:fb:
34:93:c0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org