Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RAC3PaL0UvK37xU2GmU5ImG-gkg.roa
File: RAC3PaL0UvK37xU2GmU5ImG-gkg.roa (raw, json)
Hash identifier: 1i5sGOnhZ50pbw/kvIwcUucTSK2RA0v0zD1zgQVK58E=
Subject key identifier: 44:00:B7:3D:A2:F4:52:F2:B7:EF:15:36:1A:65:39:22:61:BE:82:48
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018EF4A08BD642EB4D6AC72404D36EC9B43B
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RAC3PaL0UvK37xU2GmU5ImG-gkg.roa
Signing time: Fri 19 Apr 2024 04:32:26 +0000
ROA not before: Fri 19 Apr 2024 04:32:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29532
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 08:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f4:a0:8b:d6:42:eb:4d:6a:c7:24:04:d3:6e:c9:b4:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Apr 19 04:32:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4400b73da2f452f2b7ef15361a65392261be8248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9a:56:f0:fd:53:6b:28:7e:57:47:b8:ba:1e:
3a:84:ca:5b:43:c3:43:17:e7:fd:25:21:6b:5d:ea:
ea:b4:af:5e:62:28:a9:e1:66:80:27:01:32:db:ff:
d4:cf:59:b9:68:83:85:f4:3a:5a:b9:ae:04:f6:4d:
ba:b1:a4:9a:2f:0e:c3:aa:eb:b2:0e:0b:a5:10:59:
8a:b7:7a:45:5a:8e:2f:d8:a3:44:88:e3:e5:2b:99:
a2:09:0c:ac:8d:1e:53:a2:4a:a4:13:23:bd:b2:ba:
63:0e:a2:e0:ca:ca:47:d2:6f:23:13:a4:1e:18:47:
48:3e:31:30:02:61:44:ea:35:98:d0:a0:09:1c:69:
57:83:de:55:e1:ed:fa:35:11:2e:17:2b:12:21:14:
72:41:3a:6c:71:fc:ad:18:57:a4:30:27:39:02:8b:
80:cb:87:1b:6f:34:ad:b7:71:20:c8:fb:ac:8e:80:
ee:e7:a8:c4:ee:39:91:ac:0f:46:d0:8a:ff:60:18:
5c:0f:e2:22:31:b4:7f:2b:78:0e:1c:a3:d6:51:1c:
39:e4:28:b3:0a:0d:36:52:c7:fa:f3:59:43:24:43:
66:eb:7d:32:2f:de:c2:b0:f7:c5:6e:41:15:5b:0b:
f8:1b:b3:64:16:6f:f3:d4:2b:c7:8c:e1:5a:bb:39:
e3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:00:B7:3D:A2:F4:52:F2:B7:EF:15:36:1A:65:39:22:61:BE:82:48
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RAC3PaL0UvK37xU2GmU5ImG-gkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:2e:f5:27:b0:37:38:dd:9d:94:6f:0f:bc:b0:49:07:21:ce:
5c:ab:5b:0e:e0:d6:11:cb:b6:ed:42:f2:7d:44:50:01:73:07:
ad:7e:07:90:df:39:81:be:14:35:91:c8:7a:97:b3:6e:56:74:
2a:8d:37:7e:db:aa:2c:b2:cb:f2:0a:3e:b9:02:29:37:a4:5d:
c1:fe:f1:5c:be:6b:e3:ef:77:dd:60:fa:03:16:d9:96:bb:ac:
81:22:47:58:94:95:6a:2b:44:59:b3:3c:15:d6:86:03:a1:0f:
78:66:b7:a8:91:e1:cd:9d:15:7f:df:31:3e:cc:e2:eb:d2:35:
72:78:3d:70:54:da:cc:7f:83:9e:f4:82:60:e6:42:76:99:e5:
c5:a3:b2:26:dd:22:f5:28:cb:19:e1:9b:5a:26:de:d1:32:29:
77:47:2a:6a:c3:c3:7a:6d:81:84:36:33:f2:af:c6:6f:a6:5f:
a8:62:4b:f9:f3:31:84:df:5f:4c:fd:43:4b:06:b6:a1:c9:53:
12:4d:d5:3b:fd:8e:bd:3f:ef:b9:11:54:6a:48:74:68:88:95:
88:51:fb:e2:7d:15:09:d7:23:28:44:50:28:2e:b9:22:17:b5:
93:f7:d4:bf:80:7c:f1:1d:80:4e:f9:eb:39:e0:5d:f8:bb:e4:
74:e8:8c:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY70oIvWQutNasckBNNuybQ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjQwNDE5MDQzMjI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDAwYjczZGEyZjQ1MmYyYjdlZjE1MzYxYTY1MzkyMjYxYmU4MjQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJpW8P1Tayh+V0e4uh46hMpbQ8ND
F+f9JSFrXerqtK9eYiip4WaAJwEy2//Uz1m5aIOF9Dpaua4E9k26saSaLw7Dquuy
DgulEFmKt3pFWo4v2KNEiOPlK5miCQysjR5TokqkEyO9srpjDqLgyspH0m8jE6Qe
GEdIPjEwAmFE6jWY0KAJHGlXg95V4e36NREuFysSIRRyQTpscfytGFekMCc5AouA
y4cbbzStt3EgyPusjoDu56jE7jmRrA9G0Ir/YBhcD+IiMbR/K3gOHKPWURw55Ciz
Cg02Usf681lDJENm630yL97CsPfFbkEVWwv4G7NkFm/z1CvHjOFauznj7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEQAtz2i9FLyt+8VNhplOSJhvoJIMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvUkFDM1BhTDBVdkszN3hVMkdtVTVJbUctZ2tnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVsMA0G
CSqGSIb3DQEBCwUAA4IBAQBNLvUnsDc43Z2Ubw+8sEkHIc5cq1sO4NYRy7btQvJ9
RFABcwetfgeQ3zmBvhQ1kch6l7NuVnQqjTd+26osssvyCj65Aik3pF3B/vFcvmvj
73fdYPoDFtmWu6yBIkdYlJVqK0RZszwV1oYDoQ94ZreokeHNnRV/3zE+zOLr0jVy
eD1wVNrMf4Oe9IJg5kJ2meXFo7Im3SL1KMsZ4ZtaJt7RMil3Rypqw8N6bYGENjPy
r8Zvpl+oYkv58zGE319M/UNLBrahyVMSTdU7/Y69P++5EVRqSHRoiJWIUfvifRUJ
1yMoRFAoLrkiF7WT99S/gHzxHYBO+es54F34u+R06IzX
-----END CERTIFICATE-----
Generated at Sun May 19 09:37:30 2024 by rpki-client on console-ams.rpki-client.org