Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeb84a-7e75-48f5-ba38-0cb218e5e707/1/02vQRxUawFMaJHJNa_RsQwU-PhQ.roa
File: 02vQRxUawFMaJHJNa_RsQwU-PhQ.roa (raw, json)
Hash identifier: 1YAy5OA3F6qy7JHqfc6OjRefk7C+oppl+Ux5B2UkMLo=
Subject key identifier: D3:6B:D0:47:15:1A:C0:53:1A:24:72:4D:6B:F4:6C:43:05:3E:3E:14
Certificate issuer: /CN=8f6c424cfe92703100d50a2832253744dd756452
Certificate serial: 01856C1371F1C93093F027E57C0AF9AAC223
Authority key identifier: 8F:6C:42:4C:FE:92:70:31:00:D5:0A:28:32:25:37:44:DD:75:64:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j2xCTP6ScDEA1QooMiU3RN11ZFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeb84a-7e75-48f5-ba38-0cb218e5e707/1/02vQRxUawFMaJHJNa_RsQwU-PhQ.roa
Signing time: Sun 01 Jan 2023 06:44:51 +0000
ROA not before: Sun 01 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210588
IP address blocks: 37.200.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:71:f1:c9:30:93:f0:27:e5:7c:0a:f9:aa:c2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f6c424cfe92703100d50a2832253744dd756452
Validity
Not Before: Jan 1 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d36bd047151ac0531a24724d6bf46c43053e3e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:3f:8b:a4:d6:87:c0:05:30:d9:02:27:87:
f1:1d:2b:b2:c9:89:bf:44:53:9f:cc:d2:75:c5:b2:
07:62:56:16:f6:71:77:ed:2b:e9:19:11:02:47:26:
40:6b:4d:3e:fc:47:c0:e9:1f:88:43:c2:43:c4:20:
f3:ed:9d:22:3c:e3:d0:65:71:5b:73:3e:2c:1c:58:
63:47:d8:8a:24:fb:35:86:b9:16:f9:1e:ea:b1:ce:
ca:aa:ba:8c:c1:8d:0d:5c:c9:7f:06:b6:59:95:ee:
04:3f:f2:cb:16:47:64:3a:aa:3e:0d:55:47:c3:71:
d1:f0:23:a6:56:96:8f:c9:25:8b:de:86:6e:51:17:
03:07:76:f5:04:7c:16:3a:87:c0:78:96:47:b9:98:
24:68:2a:33:e1:f5:fd:41:f9:95:b0:30:56:d6:0a:
6f:14:95:4d:b2:3a:1d:31:f3:c2:7a:47:82:08:d5:
12:a5:a6:6d:c1:97:57:bc:a3:c6:c8:4e:bc:fd:da:
48:b2:20:14:4d:b7:54:23:a8:4a:31:60:50:eb:65:
9d:19:68:8a:33:e6:5f:c9:c2:5b:51:a9:8a:fb:08:
10:e4:0a:cc:92:67:1b:2c:4a:7b:cd:a5:24:7f:03:
7d:62:1b:66:76:5e:37:54:b9:ab:99:f4:96:fd:24:
5f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6B:D0:47:15:1A:C0:53:1A:24:72:4D:6B:F4:6C:43:05:3E:3E:14
X509v3 Authority Key Identifier:
keyid:8F:6C:42:4C:FE:92:70:31:00:D5:0A:28:32:25:37:44:DD:75:64:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j2xCTP6ScDEA1QooMiU3RN11ZFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeb84a-7e75-48f5-ba38-0cb218e5e707/1/02vQRxUawFMaJHJNa_RsQwU-PhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeb84a-7e75-48f5-ba38-0cb218e5e707/1/j2xCTP6ScDEA1QooMiU3RN11ZFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.200.87.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:de:37:1a:e2:19:e2:37:c2:56:c9:cb:43:68:3b:35:ba:10:
2d:b3:90:ab:d6:fa:0f:c2:32:4f:b7:a2:2b:35:aa:0a:fd:8c:
06:5a:57:b7:ff:04:52:b9:44:dd:61:99:de:2f:d4:b8:3e:73:
af:99:f8:1c:5a:85:0e:a6:4e:8f:7d:a5:18:b5:c1:db:1c:e1:
1a:08:cc:6b:15:34:e6:ab:ab:5e:55:16:3e:7a:0a:98:4c:bb:
4c:41:4f:52:1c:99:2c:c6:56:9f:41:34:6d:e6:6c:85:7a:30:
e1:6a:df:39:3b:16:64:99:6e:fa:77:47:2e:52:55:3a:a5:84:
a5:af:fa:9c:69:39:a5:57:32:16:04:78:74:29:33:70:3a:71:
e3:be:a7:24:75:1e:2f:25:70:06:0c:63:06:34:45:75:11:6f:
0c:6a:8b:7f:e5:4e:ec:07:70:36:eb:6e:aa:bd:64:fc:a4:b4:
5e:cc:36:7e:59:f5:9c:c3:4d:24:18:f5:33:f3:e5:b3:02:e6:
da:c5:72:a1:33:f9:33:36:83:00:0b:94:cc:a8:3d:16:b5:9a:
5e:e6:f3:23:3c:a6:49:a2:0d:03:83:66:81:93:90:0c:16:23:
d2:13:76:69:6a:cd:3b:f7:68:77:30:0b:ab:18:54:ed:94:7e:
68:c0:fb:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:55 2024 by rpki-client on console-fra.rpki-client.org