Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o2HEWcvs3nwpKcRb46p89ES8XW0.roa
File: o2HEWcvs3nwpKcRb46p89ES8XW0.roa (raw, json)
Hash identifier: FKbj7paorJKzt9G/PKA6+Mlycv96Bks3jAN/yGC639A=
Subject key identifier: A3:61:C4:59:CB:EC:DE:7C:29:29:C4:5B:E3:AA:7C:F4:44:BC:5D:6D
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC801FFA7839509715CED7645619B7B93
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o2HEWcvs3nwpKcRb46p89ES8XW0.roa
Signing time: Tue 02 Jan 2024 02:30:23 +0000
ROA not before: Tue 02 Jan 2024 02:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13056
IP address blocks: 37.76.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Tue 16 Apr 2024 11:47:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:ff:a7:83:95:09:71:5c:ed:76:45:61:9b:7b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a361c459cbecde7c2929c45be3aa7cf444bc5d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:82:c2:33:11:cb:b7:9a:dc:8a:f7:05:7f:
a0:e1:26:ba:ca:27:ad:9a:9d:ab:fc:4c:87:07:60:
04:15:73:08:ec:2b:28:ab:b1:df:2d:b6:16:38:5c:
62:d2:39:94:1f:30:a9:d1:31:78:a9:45:40:d8:1b:
65:bf:06:62:93:00:85:93:2a:f0:12:a0:7a:e7:98:
eb:c3:3a:bf:32:96:6a:ef:28:53:fd:8a:86:cc:0a:
ec:f9:59:c2:42:e9:02:7c:6f:43:e8:1f:20:77:f2:
54:24:63:c1:93:f2:34:ed:16:46:70:71:8e:8a:e3:
c6:97:0f:d7:68:16:b7:76:4f:38:df:5f:0a:cf:71:
04:ae:45:ab:fe:5b:37:89:98:b3:ae:4c:81:fa:46:
66:25:19:a5:9b:88:5f:64:76:b4:fa:0a:04:cc:b7:
6c:b7:27:9a:47:d3:6f:0f:6f:60:0a:f6:3d:2f:e3:
79:d6:8a:65:b8:b7:f9:b6:9c:eb:3a:3d:a3:a8:9e:
22:81:f8:5d:12:6c:7c:d8:49:11:e6:f4:d0:e9:62:
bd:a2:df:d7:fd:78:b6:c6:05:81:2d:86:a0:d6:32:
8c:84:f4:f5:e9:c4:6f:b8:73:64:4f:ab:53:1f:38:
1b:b4:0c:af:76:8b:45:7e:c7:83:c7:d5:a0:d3:4b:
d2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:61:C4:59:CB:EC:DE:7C:29:29:C4:5B:E3:AA:7C:F4:44:BC:5D:6D
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/o2HEWcvs3nwpKcRb46p89ES8XW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.76.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:45:d0:7b:05:fc:30:dd:74:5e:fc:3a:58:b7:eb:54:e7:7d:
30:80:9e:0b:56:b4:1f:8f:43:f8:1b:c5:0f:ba:51:6e:c2:6b:
fa:49:52:7f:ff:36:ff:c8:40:bf:39:9e:a7:44:08:6b:3d:c2:
62:b5:3e:62:3e:ad:7c:21:a0:87:8d:00:70:ac:04:58:de:7f:
a1:d2:83:6e:c9:70:f5:87:6e:cc:94:33:11:52:7a:8c:bf:f0:
61:35:f4:f4:53:61:eb:cc:09:a4:f4:9d:07:00:a7:81:7d:8f:
de:d8:b2:fe:43:95:b9:21:bc:2f:62:5f:28:84:3e:db:1d:5c:
62:5b:7d:97:78:10:cf:f8:fc:77:46:43:09:a6:23:13:fb:4f:
7d:4e:f3:21:c1:45:1d:53:be:79:e7:a0:61:e3:47:98:6e:8c:
fb:30:4e:ac:72:a5:e5:a2:ea:a5:c9:fb:06:9f:33:0a:b7:b8:
0e:d5:2d:d4:b3:c3:22:02:b6:48:e2:c5:8d:2f:a3:62:01:61:
2b:5b:f8:56:dc:04:32:46:47:47:33:d9:79:97:55:2f:92:a4:
0c:82:3d:da:41:ba:9a:ac:5a:cc:bd:e1:c0:2a:1d:78:21:04:
1f:d2:45:f4:6c:ef:aa:27:be:f5:1e:da:7f:be:a4:96:2b:50:
9a:1f:c9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org