Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/DnuvVR7HrhWh4azEmRH7KscYCjg.roa
File: DnuvVR7HrhWh4azEmRH7KscYCjg.roa (raw, json)
Hash identifier: UclBz9HJnQV4bRsdGEf3utXB5iVVSnEK0wr6k05EKpI=
Subject key identifier: 0E:7B:AF:55:1E:C7:AE:15:A1:E1:AC:C4:99:11:FB:2A:C7:18:0A:38
Certificate issuer: /CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Certificate serial: 018BC014986C73EEB671BAC350D358C4C0C1
Authority key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/DnuvVR7HrhWh4azEmRH7KscYCjg.roa
Signing time: Sat 11 Nov 2023 20:30:57 +0000
ROA not before: Sat 11 Nov 2023 20:30:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203378
IP address blocks: 37.216.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:14:98:6c:73:ee:b6:71:ba:c3:50:d3:58:c4:c0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Validity
Not Before: Nov 11 20:30:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e7baf551ec7ae15a1e1acc49911fb2ac7180a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4d:a5:96:b3:5c:26:81:41:65:48:1c:79:b6:
75:1c:6b:93:0f:66:14:cd:d7:ef:26:0d:ac:40:40:
ec:84:b6:f0:66:c1:c4:22:f1:ff:3e:42:10:93:c1:
fa:4d:8d:1f:26:df:40:c7:2a:be:24:f2:7f:63:12:
4e:97:34:26:c1:d2:9c:3a:be:2e:6e:45:03:45:97:
c2:8a:06:36:33:89:53:21:69:34:e7:b6:71:63:fa:
a8:07:19:ac:d1:4c:69:6f:fe:f1:19:24:ec:d1:91:
6f:b5:4e:38:ba:f7:e2:f3:c5:e8:99:6d:0e:1a:f1:
6a:9e:32:7f:d5:3a:06:d0:e7:cc:45:8f:8e:d4:65:
7d:2e:fd:da:bd:c8:28:88:50:8f:8b:10:a1:32:22:
65:3f:1c:c9:47:c8:00:71:ea:af:42:f4:d9:5b:9c:
a7:98:eb:63:64:68:7f:0d:f8:c7:f8:d9:6f:58:d3:
bc:47:8b:01:26:43:94:9d:00:a5:b8:ca:be:63:eb:
17:e1:dd:fa:22:05:5f:11:6f:06:7e:59:c8:13:71:
e5:65:bf:c1:5c:f6:c4:08:f7:0d:ca:2a:61:fa:69:
2e:02:1f:f5:51:4a:03:2f:49:32:78:83:91:de:c9:
bd:95:07:4e:f2:58:07:e3:d0:04:81:e2:a4:84:9a:
7c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7B:AF:55:1E:C7:AE:15:A1:E1:AC:C4:99:11:FB:2A:C7:18:0A:38
X509v3 Authority Key Identifier:
keyid:A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/DnuvVR7HrhWh4azEmRH7KscYCjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.216.202.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:36:fc:ab:eb:f6:33:a0:22:b6:a4:9e:a8:84:dc:e9:22:9b:
6d:d8:27:9f:a9:e2:8a:fa:44:48:32:c1:f7:69:9d:fa:eb:e2:
8c:76:a6:9f:74:59:a8:31:45:4a:6a:0f:b1:b3:6a:8b:75:6e:
c5:f1:80:32:fb:8f:3f:95:30:06:c2:d9:12:ed:4e:4e:ce:d6:
27:bf:79:4e:87:a5:84:c2:5d:b1:5e:5f:4c:c7:94:1b:f8:7f:
eb:0f:b8:55:40:09:f1:cc:a3:e4:67:c4:87:cf:e0:b2:e4:a8:
b3:7d:68:31:8b:8c:a8:8d:ab:ea:24:f5:80:7e:4b:46:81:17:
26:41:e1:41:b7:f4:78:0e:1d:64:77:1a:7e:f9:7d:88:2b:3b:
c4:6a:99:57:fb:d4:46:1a:04:f6:cf:c8:84:15:cc:1c:66:ff:
67:47:c6:15:73:67:67:d1:eb:1f:f5:47:8b:7f:88:85:35:d7:
6e:2b:d4:11:03:28:66:87:5b:ac:6c:c6:08:0e:54:a4:bb:d4:
0b:13:91:29:f2:bd:2d:04:fa:52:62:e6:48:53:58:54:5d:69:
ea:4e:66:ab:4c:e3:44:54:17:e1:54:fe:f0:42:e4:b9:49:d6:
32:ba:e0:e7:6c:ca:91:97:0d:8a:5c:1f:29:2d:6a:fc:87:0a:
f7:0b:ae:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:05 2024 by rpki-client on console-ams.rpki-client.org