Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/eQcqizgHO-nitl7zn4SmfJs7a6o.roa
File: eQcqizgHO-nitl7zn4SmfJs7a6o.roa (raw, json)
Hash identifier: PhUfE8nU2i6tmOnxQL8o/9Vq6k2tLdCKEACEjoUWJ18=
Subject key identifier: 79:07:2A:8B:38:07:3B:E9:E2:B6:5E:F3:9F:84:A6:7C:9B:3B:6B:AA
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018AFE320F1FA31AE3CF2A41E2CD432AB5B1
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/eQcqizgHO-nitl7zn4SmfJs7a6o.roa
Signing time: Thu 05 Oct 2023 04:56:48 +0000
ROA not before: Thu 05 Oct 2023 04:56:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 85.203.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:32:0f:1f:a3:1a:e3:cf:2a:41:e2:cd:43:2a:b5:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Oct 5 04:56:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79072a8b38073be9e2b65ef39f84a67c9b3b6baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7f:0d:82:ba:cc:38:4d:fa:bd:62:38:fb:1f:
15:29:cf:3a:9a:c6:79:6a:93:73:57:27:88:3b:78:
3c:e4:94:d5:10:1e:7a:52:76:69:d5:25:4d:6f:28:
c8:d9:07:c0:1b:12:d4:df:c0:fe:36:3c:d7:1d:92:
f8:bd:a5:43:ed:97:84:89:c1:28:14:3d:9e:b1:88:
0e:6b:b0:e4:78:22:0d:49:fd:03:02:7c:e9:ad:8e:
45:72:28:96:cb:e5:ca:e8:fa:30:b9:a6:19:8e:2c:
81:99:25:76:97:fb:cd:4b:4c:37:cf:01:c4:db:3d:
ba:b5:d1:e8:6b:ac:00:10:96:80:81:38:ad:28:d5:
ab:b5:ee:bf:1a:9f:28:44:90:86:0e:0b:d2:58:4a:
f0:4d:ac:0f:6b:61:e8:fa:3b:3c:f3:4d:3a:96:e7:
33:3a:b6:fb:68:2d:ad:38:dc:73:47:a6:36:2e:54:
9e:51:a5:d5:61:34:24:81:f0:50:bf:7e:cc:92:b0:
24:b5:a5:89:1e:cd:1d:f2:ba:55:47:49:4b:28:47:
3c:23:af:27:b5:00:d8:7a:86:fe:d5:35:fe:6d:ea:
c4:d0:57:c1:f6:60:5d:02:d1:d3:93:e6:eb:00:6f:
72:5d:04:bb:a8:9d:63:1a:0e:d7:07:78:62:b1:23:
66:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:07:2A:8B:38:07:3B:E9:E2:B6:5E:F3:9F:84:A6:7C:9B:3B:6B:AA
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/eQcqizgHO-nitl7zn4SmfJs7a6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:9d:d4:86:f1:72:9b:2e:22:20:77:ee:94:72:6c:88:db:be:
17:21:33:14:45:c5:7e:25:4e:1f:af:0e:5f:60:a0:ea:99:a3:
db:88:a1:19:a5:c3:b0:d5:4c:f3:22:c1:83:c5:63:c0:06:fc:
5a:eb:2c:94:bd:75:e2:f9:ab:3f:f3:d1:69:da:91:14:28:80:
98:b1:ec:75:7d:8d:e7:7d:53:70:ee:a7:18:21:84:ae:b2:5c:
02:e0:06:2d:65:f3:13:f4:04:10:d0:46:e2:86:b9:62:ba:f3:
24:82:60:56:f7:ae:57:34:06:a7:c5:bd:a9:f2:39:7a:47:ef:
97:ba:ce:0b:b3:1c:ec:cd:0c:53:bc:61:f5:94:1b:b7:5a:de:
b2:f7:0c:06:e6:a3:1a:4b:4a:1f:a1:af:3e:69:c6:35:a5:67:
ac:a4:96:5c:7b:10:46:19:06:03:29:02:39:6d:b2:ef:75:fe:
eb:55:70:e4:8b:62:5d:ef:c1:2a:25:18:fe:72:68:77:10:6c:
98:0e:1d:50:fb:08:c7:78:25:1e:05:2d:bb:f5:bc:9f:ca:8b:
42:81:16:a4:eb:c6:d3:ef:30:86:56:ed:d8:fa:a8:b6:f7:0a:
48:d4:2d:c7:cb:27:37:d7:49:81:82:c1:1f:05:e3:fc:88:1f:
b5:b6:85:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:15 2024 by rpki-client on console-fra.rpki-client.org