Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/8YaEqMXrknvPed55mLO6x6VFyCc.roa
File: 8YaEqMXrknvPed55mLO6x6VFyCc.roa (raw, json)
Hash identifier: KVnAxwDWW3hWwHuQJdp7PraxGxApIgH2Z5p0ArTxaPs=
Subject key identifier: F1:86:84:A8:C5:EB:92:7B:CF:79:DE:79:98:B3:BA:C7:A5:45:C8:27
Certificate issuer: /CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Certificate serial: 018CCA96D1B328922F61174F2625A512FA53
Authority key identifier: 2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/8YaEqMXrknvPed55mLO6x6VFyCc.roa
Signing time: Tue 02 Jan 2024 14:32:10 +0000
ROA not before: Tue 02 Jan 2024 14:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 37.140.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 09:34:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:96:d1:b3:28:92:2f:61:17:4f:26:25:a5:12:fa:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Validity
Not Before: Jan 2 14:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f18684a8c5eb927bcf79de7998b3bac7a545c827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c4:bf:df:91:36:52:8d:83:49:7e:f1:5b:65:
08:68:e1:55:03:45:e3:3e:0d:68:b0:53:40:21:e2:
48:a6:30:87:be:96:d8:bc:b5:e0:0c:1d:7d:0e:59:
46:5d:c9:1c:85:9e:cf:14:e3:8f:ce:68:25:18:7a:
29:bf:81:f5:17:41:e8:a3:83:2e:56:31:1d:bf:01:
aa:20:5b:5a:ba:90:10:20:77:03:1d:fa:b3:9c:80:
00:67:23:a7:af:36:f4:1a:c6:a6:db:7d:69:a2:2f:
ec:55:b9:3b:2b:d8:c7:ba:f0:62:f9:17:b9:77:54:
f7:82:f7:87:69:1f:54:17:6a:63:e6:1f:bf:5e:2a:
aa:e4:a2:b5:24:ad:5f:ea:bb:34:9f:8e:b4:6f:44:
8a:b5:a4:67:c6:d3:60:45:0d:01:5c:9e:32:42:a0:
a9:8f:2e:fa:9c:54:3f:70:11:9d:f8:10:92:44:64:
b9:cd:02:4f:da:5e:a5:4a:e3:61:fc:c4:c6:d9:ad:
8c:04:a1:a0:bf:f6:d0:70:f9:e7:7b:c5:8a:a7:52:
8a:9f:ea:28:c4:f1:d2:25:19:6b:f4:2d:4c:8f:d3:
12:0f:b6:01:e6:85:98:55:a8:36:2d:65:10:b3:05:
c3:39:50:17:b0:4a:67:fe:62:ed:ad:e3:97:1c:8d:
f9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:86:84:A8:C5:EB:92:7B:CF:79:DE:79:98:B3:BA:C7:A5:45:C8:27
X509v3 Authority Key Identifier:
keyid:2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/8YaEqMXrknvPed55mLO6x6VFyCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/LjaLCuxsf9SNDZa0B3oj-Qaoakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.253.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b6:cf:9b:43:98:ec:fc:38:6b:26:1e:d7:23:65:c3:82:c0:
02:f3:89:da:05:bd:82:06:a2:de:79:64:ec:b3:11:58:5e:e8:
72:97:49:e6:77:f4:be:a5:9b:88:c2:6a:f3:4c:f6:59:84:87:
ba:d4:3d:92:ef:cf:3c:29:0f:ec:97:85:7d:d1:e9:c5:2c:fc:
f8:d3:bf:56:7b:63:4d:f1:46:ff:93:c6:74:a0:31:52:b1:ae:
28:71:44:0b:e3:61:b0:12:f7:f1:1c:0a:3f:93:f7:9a:3b:a7:
10:b6:e6:43:a8:d9:91:14:9f:f5:a0:c0:49:39:e8:38:6e:3a:
f4:05:02:65:5f:28:51:12:40:ad:2e:32:5a:92:3a:c0:1e:62:
c8:68:5d:67:71:15:63:21:d4:3b:b1:66:2c:10:f8:af:ba:b7:
f1:34:2b:5b:4b:10:78:8f:7e:c2:d8:6d:66:b3:13:61:a2:58:
8d:b7:eb:5d:1d:0b:e8:81:32:e6:e1:6a:a6:8e:46:2d:57:07:
6d:32:e3:e5:59:b7:86:0e:bf:d9:73:20:39:0b:8c:f0:46:e9:
f6:09:95:e0:d9:a4:58:22:a2:da:be:bd:1b:20:4b:90:bb:13:
e2:91:25:bb:53:62:c5:86:f1:6b:1b:ce:40:19:23:4e:29:56:
78:45:6a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:49 2024 by rpki-client on console-fra.rpki-client.org