Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/B2Qm_HvI0UTmtfeHTIifAozN1-s.roa
File: B2Qm_HvI0UTmtfeHTIifAozN1-s.roa (raw, json)
Hash identifier: /hCW57tuZNr/OMS5fCkics383RaAYQtpbyeCze9IaVA=
Subject key identifier: 07:64:26:FC:7B:C8:D1:44:E6:B5:F7:87:4C:88:9F:02:8C:CD:D7:EB
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 018B277A1B5CCC3265623AF2D2EDBF5371CC
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/B2Qm_HvI0UTmtfeHTIifAozN1-s.roa
Signing time: Fri 13 Oct 2023 05:19:55 +0000
ROA not before: Fri 13 Oct 2023 05:19:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213371
IP address blocks: 37.49.229.0/24 maxlen: 24
37.49.230.0/24 maxlen: 24
77.247.109.0/24 maxlen: 24
185.53.88.0/24 maxlen: 24
185.53.89.0/24 maxlen: 24
37.49.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 16:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:27:7a:1b:5c:cc:32:65:62:3a:f2:d2:ed:bf:53:71:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Oct 13 05:19:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=076426fc7bc8d144e6b5f7874c889f028ccdd7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:15:56:6a:53:b2:8a:e0:d7:c0:46:66:9e:91:
d0:89:b5:c4:c1:0c:6f:63:7b:08:64:2f:b4:15:3d:
1f:58:61:95:57:f5:d0:3b:c1:c0:8b:4a:ab:74:bc:
5b:8d:6d:b7:0a:9b:ec:d9:09:f7:da:dd:ef:1f:e3:
db:20:6b:d0:b7:f5:a6:9a:d2:6a:e1:6b:54:0c:18:
15:8f:0f:83:30:da:a8:b0:a8:a7:df:49:e9:f1:a6:
2a:b6:eb:4f:23:c2:23:ae:d9:02:1d:eb:fa:2c:72:
43:59:30:67:b3:e4:85:91:08:94:e9:ca:b7:10:23:
fd:bd:9a:3e:51:be:5f:83:cd:51:27:a9:e8:d5:58:
c5:cc:27:38:a2:71:7b:14:40:30:d7:b5:ad:57:9f:
a6:e3:51:7d:4a:8a:f3:36:e1:23:6b:0b:80:36:ec:
d7:88:1d:c5:6c:2b:96:45:fa:81:9b:3a:f3:a4:2e:
8e:18:bb:dc:b9:8b:4b:9c:d5:d9:69:fa:ad:74:a7:
d2:12:fb:d1:a4:06:4e:37:07:a1:6d:e1:f7:f8:75:
78:a2:02:50:fa:81:f5:5e:43:c1:4d:fd:4f:79:78:
7f:8f:93:b5:56:20:45:37:36:57:05:60:f2:8a:c1:
b4:99:66:f8:11:85:62:d6:cf:df:e1:a2:18:c6:11:
ed:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:64:26:FC:7B:C8:D1:44:E6:B5:F7:87:4C:88:9F:02:8C:CD:D7:EB
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/B2Qm_HvI0UTmtfeHTIifAozN1-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.224.0/24
37.49.229.0-37.49.230.255
77.247.109.0/24
185.53.88.0/23
Signature Algorithm: sha256WithRSAEncryption
80:98:de:43:da:32:e5:3c:be:f5:fd:26:cf:f3:eb:1a:97:92:
cf:a1:7b:55:f8:57:fe:6c:6e:56:a8:c2:36:7c:8f:2d:0d:9a:
08:29:b2:67:b7:95:74:ee:ac:e8:fe:50:0e:7c:e0:a3:a6:e1:
30:4a:aa:8c:7b:e7:d6:28:4c:25:f2:3c:a9:64:40:f5:be:13:
1b:f0:4b:21:33:56:a5:15:7b:7a:d8:8a:10:69:c8:21:63:8d:
8b:ed:75:0b:3a:31:9c:5f:6e:2d:04:1f:81:c3:13:63:69:2b:
eb:4b:0c:2c:ed:b1:21:3b:a2:b0:cb:cc:66:61:1f:79:a1:d0:
5e:f4:8e:02:7b:99:b3:de:d0:62:f5:62:96:7a:a8:42:ba:4f:
15:71:65:16:37:93:17:71:bf:a1:96:24:07:85:dd:d0:20:9a:
d7:3a:10:2e:a9:a6:17:f9:8e:a8:aa:ed:85:6f:19:53:ec:ae:
09:ab:e6:19:1d:99:26:85:1d:5f:e6:01:19:e4:95:34:86:47:
ab:11:f6:31:56:d3:61:56:9e:7b:1e:bb:47:6e:2d:08:fc:de:
e3:8b:7c:29:43:a9:38:a7:42:d9:9c:93:87:19:4c:8b:d7:e4:
60:f7:87:ff:62:41:24:ec:1d:e3:67:ac:41:da:f7:42:bc:08:
f0:d7:05:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:39 2024 by rpki-client on console-fra.rpki-client.org