Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yTdIaE6x1WObp_vhxb5EF7X-P2c.roa
File: yTdIaE6x1WObp_vhxb5EF7X-P2c.roa (raw, json)
Hash identifier: 0KCTCpPcrJ90k7I6rX0gANByubNFTLyS8Zs8JYHnCac=
Subject key identifier: C9:37:48:68:4E:B1:D5:63:9B:A7:FB:E1:C5:BE:44:17:B5:FE:3F:67
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCE0E2275E692E868B22EF4AE116AD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yTdIaE6x1WObp_vhxb5EF7X-P2c.roa
Signing time: Tue 02 Jan 2024 06:29:27 +0000
ROA not before: Tue 02 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 37.221.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 14:17:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:e0:e2:27:5e:69:2e:86:8b:22:ef:4a:e1:16:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c93748684eb1d5639ba7fbe1c5be4417b5fe3f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e3:5e:47:66:58:98:85:2c:49:15:ef:94:a1:
ed:f7:83:88:6b:f9:5d:4d:26:c8:17:28:ae:a1:59:
5f:e0:6a:8f:65:bc:1d:ce:81:3c:ac:79:62:2a:f7:
99:d3:43:73:fd:81:93:c3:a9:ac:73:77:5a:3b:51:
d0:78:8e:95:51:77:f4:ef:42:97:35:98:3d:04:ea:
59:94:d7:ac:b5:6d:ca:d1:78:cb:fe:2e:c1:f7:85:
00:7b:23:5b:1c:63:a9:13:5f:1c:1d:10:dc:1a:6f:
53:07:c4:88:8b:45:c1:f2:70:f9:4d:2b:df:90:fd:
19:b7:91:b8:2f:26:ad:3a:f5:e7:98:74:e8:ec:d9:
43:23:55:22:e6:98:f9:79:28:e1:35:e3:68:1e:50:
8b:b3:46:b0:44:37:df:3e:a1:dc:b5:d6:eb:91:b9:
b0:12:1f:78:29:3e:5b:e9:20:e6:f1:5d:6b:ee:ec:
20:1d:a9:65:c7:db:d1:19:2b:15:9e:17:70:1e:6b:
cc:01:2b:5f:05:3b:e1:46:37:4c:44:35:4a:a0:ae:
49:16:65:11:b2:d3:66:d1:3b:8e:e6:da:e6:74:d4:
6e:ab:94:1d:78:ba:88:25:91:af:6c:e3:27:db:ef:
0b:cd:87:72:38:71:85:e3:86:c6:8b:c9:19:02:5d:
98:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:37:48:68:4E:B1:D5:63:9B:A7:FB:E1:C5:BE:44:17:B5:FE:3F:67
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yTdIaE6x1WObp_vhxb5EF7X-P2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:f2:b3:2d:fb:55:13:53:7a:1d:7c:22:d7:6e:fd:31:fd:55:
73:b1:ba:7e:3a:5c:3b:2c:e2:02:b4:50:13:fa:0b:d5:88:49:
9a:37:03:a5:34:93:5d:2c:be:1e:0b:25:84:a4:80:aa:89:27:
7e:85:73:90:66:6e:6f:c9:a9:2d:d6:95:ee:6c:b9:cb:4f:eb:
7e:9f:74:b0:f1:50:e6:4e:c9:ce:01:d4:8a:0b:50:fe:d6:5d:
09:e5:11:b7:c7:2d:e3:39:3b:83:8b:a3:30:b3:15:aa:8b:6b:
15:18:b5:cc:5a:fb:25:5d:ab:49:6d:7c:c1:2d:8e:a7:9d:17:
1c:d3:ae:31:74:b9:90:9a:bd:92:e2:d2:14:97:c0:69:36:86:
e8:3f:57:93:69:7b:5a:6d:46:d4:62:19:dc:47:9a:3b:ba:2e:
2e:af:a0:56:4c:a2:30:d1:a2:cc:bf:07:2a:b7:48:91:23:d7:
4e:0e:b8:8a:94:cf:8f:b0:02:69:ab:36:71:00:e1:0b:65:66:
71:df:c6:e9:ef:ba:b1:3a:c6:60:a5:70:4b:2c:e0:73:89:82:
2c:7c:b0:c9:c1:cc:c4:b9:f0:b1:6d:3a:21:8c:f7:09:17:26:
47:e2:7b:68:fd:1a:d3:8d:f2:dd:fa:a1:76:02:0f:c5:b9:b0:
b3:a9:ac:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 18:46:46 2024 by rpki-client on console-ams.rpki-client.org