Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sGVylLkSjS6p-DZjhKasAQBHe2g.roa
File: sGVylLkSjS6p-DZjhKasAQBHe2g.roa (raw, json)
Hash identifier: SCNhMh8RWOcvoXSXSrv+wb8vNEJlNg22BkY8ZVT6ZTw=
Subject key identifier: B0:65:72:94:B9:12:8D:2E:A9:F8:36:63:84:A6:AC:01:00:47:7B:68
Certificate issuer: /CN=b73973bc4f57cfefede1ec96160bce6cea42b179
Certificate serial: 01856D2F32A771921494836F71104FB09774
Authority key identifier: B7:39:73:BC:4F:57:CF:EF:ED:E1:EC:96:16:0B:CE:6C:EA:42:B1:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tzlzvE9Xz-_t4eyWFgvObOpCsXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sGVylLkSjS6p-DZjhKasAQBHe2g.roa
Signing time: Sun 01 Jan 2023 11:54:47 +0000
ROA not before: Sun 01 Jan 2023 11:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 194.110.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:32:a7:71:92:14:94:83:6f:71:10:4f:b0:97:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b73973bc4f57cfefede1ec96160bce6cea42b179
Validity
Not Before: Jan 1 11:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0657294b9128d2ea9f8366384a6ac0100477b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:02:94:84:ef:49:7c:1c:a2:9d:37:f3:9e:
8f:86:3a:9a:55:05:d7:5a:22:68:5e:f5:69:49:a7:
10:c2:47:d4:9c:48:64:8d:53:29:2c:b3:73:ad:88:
ad:3c:88:c5:8a:e5:ae:bf:ae:e4:bc:69:f7:75:7b:
11:ca:ad:06:21:b2:f8:1b:fa:0d:83:7b:87:37:06:
f0:9c:2f:67:54:1c:57:e8:6c:2d:b8:c9:ea:21:36:
0c:c3:a6:1e:79:09:47:e8:d5:76:64:69:24:e4:a4:
6e:ac:99:3b:3d:40:36:b4:76:10:f9:ba:6a:95:c6:
73:29:ed:79:ed:72:37:22:0f:52:93:0f:f6:2b:9e:
4b:be:76:38:7d:5d:19:fd:05:ca:30:9e:79:6c:cb:
9a:07:5d:ef:ec:63:10:ff:e9:11:bd:46:4e:a4:d3:
f4:60:ef:df:56:04:ba:c2:30:2a:da:4c:c2:2e:e6:
b8:e3:9a:cc:c6:9a:81:4f:f8:86:86:e2:69:02:c2:
cf:62:9b:f4:a7:31:c9:73:52:2a:98:61:cd:e2:54:
fb:1e:37:f0:ca:c8:be:3a:53:45:24:4b:37:12:d4:
a0:b5:03:33:80:a9:dc:75:54:5f:90:12:3c:7a:7e:
b3:89:56:14:f4:a3:30:80:ac:ce:6c:f0:08:b5:25:
fe:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:65:72:94:B9:12:8D:2E:A9:F8:36:63:84:A6:AC:01:00:47:7B:68
X509v3 Authority Key Identifier:
keyid:B7:39:73:BC:4F:57:CF:EF:ED:E1:EC:96:16:0B:CE:6C:EA:42:B1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tzlzvE9Xz-_t4eyWFgvObOpCsXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/sGVylLkSjS6p-DZjhKasAQBHe2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/286086-6787-49b0-a4e0-09d447a45656/1/tzlzvE9Xz-_t4eyWFgvObOpCsXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.120.0/22
Signature Algorithm: sha256WithRSAEncryption
46:92:e5:0d:77:a9:30:4c:49:c7:3f:63:27:28:ca:60:21:5a:
56:ec:a8:52:df:bd:fa:47:b8:7f:e1:8e:f2:2d:6f:8f:9f:d9:
e6:15:3e:87:83:15:61:fd:cc:3f:c1:43:8b:c6:52:ca:fb:a5:
af:77:d0:b3:21:83:f2:eb:9d:54:ea:61:cd:63:f1:4b:e1:ed:
5f:b6:e0:2c:16:af:47:17:c8:f2:58:b0:89:9b:7c:0b:e0:92:
40:82:d8:18:da:29:32:4e:c0:59:42:40:01:76:7d:a7:1f:8b:
ca:0f:6d:84:fb:f4:5d:b9:62:14:80:0c:25:5c:cc:2b:c4:06:
3e:01:2e:1c:a2:5e:4a:c7:72:82:05:de:3b:5f:0c:be:11:18:
a8:4b:08:d0:9e:81:de:7e:14:ab:81:fd:1a:74:83:f2:68:52:
74:60:4b:b8:d3:dc:b4:49:dc:38:f6:4d:d4:3b:c4:0d:52:ad:
1b:8b:36:88:83:2c:6d:c0:53:2f:85:f7:04:3a:f3:b1:79:b1:
71:f8:71:71:1d:26:68:55:56:52:af:72:bf:c4:98:82:62:07:
c4:ea:ef:72:6a:ae:fc:4b:7d:80:44:d9:43:76:51:59:33:c2:
b6:8d:50:89:fa:b3:45:1d:d7:43:98:5e:29:ef:d0:1c:9c:df:
82:1a:9c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:15 2024 by rpki-client on console-fra.rpki-client.org