Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/sIVYxiwotrvgFrhQcZ7Lm2pa6l4.roa
File: sIVYxiwotrvgFrhQcZ7Lm2pa6l4.roa (raw, json)
Hash identifier: Ur/Vh98KZuxTP9Yg/cYOXHJv5CyjMSgVuiy2IBuX05k=
Subject key identifier: B0:85:58:C6:2C:28:B6:BB:E0:16:B8:50:71:9E:CB:9B:6A:5A:EA:5E
Certificate issuer: /CN=bdb7aac7c493bc8aa7ec7059d3ec76bbfc2f23d8
Certificate serial: 01856DF88A0986E40CA644BC2419043F58FF
Authority key identifier: BD:B7:AA:C7:C4:93:BC:8A:A7:EC:70:59:D3:EC:76:BB:FC:2F:23:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbeqx8STvIqn7HBZ0-x2u_wvI9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/sIVYxiwotrvgFrhQcZ7Lm2pa6l4.roa
Signing time: Sun 01 Jan 2023 15:34:42 +0000
ROA not before: Sun 01 Jan 2023 15:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57907
IP address blocks: 212.162.156.0/22 maxlen: 22
37.152.48.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 18 Jul 2023 17:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:f8:8a:09:86:e4:0c:a6:44:bc:24:19:04:3f:58:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb7aac7c493bc8aa7ec7059d3ec76bbfc2f23d8
Validity
Not Before: Jan 1 15:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08558c62c28b6bbe016b850719ecb9b6a5aea5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b4:ae:87:5f:32:6a:f1:fc:60:71:aa:98:22:
6c:f2:b5:2e:cf:5a:d8:24:10:21:2e:a1:55:34:07:
27:35:c2:99:05:7b:a0:49:88:19:41:a8:d6:61:20:
04:11:22:f2:03:69:1a:c8:96:1d:1d:0e:f8:02:3b:
37:7b:9e:22:55:01:fa:4c:35:b5:32:1e:a0:93:86:
cf:47:2e:ff:73:bf:da:16:72:11:e5:3f:42:33:c2:
56:c1:82:f4:68:e0:43:ac:67:82:dc:56:6e:e1:54:
fb:5c:81:7f:89:8a:38:a7:70:49:53:70:01:64:d7:
c2:21:72:e8:25:30:e3:fa:3f:51:4a:09:11:d1:f5:
cc:95:86:2f:aa:57:ef:54:2f:bd:94:02:39:7c:45:
de:65:fe:1b:53:7d:2d:2c:b6:54:fb:fd:2f:22:2a:
d2:08:05:44:ef:21:ca:dc:c7:70:87:8e:3b:43:5e:
50:b5:d9:cd:82:1c:b2:fa:08:2f:77:93:c2:e7:31:
ba:04:16:bf:cf:c9:07:7e:e5:52:53:20:0c:cf:34:
bf:1f:42:9f:6f:e3:30:74:e7:c4:5f:12:be:23:d3:
20:e5:2b:5a:93:97:18:26:27:04:93:28:21:de:ef:
f3:1e:00:b4:f9:4b:24:0a:ba:18:9d:31:0e:96:43:
86:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:85:58:C6:2C:28:B6:BB:E0:16:B8:50:71:9E:CB:9B:6A:5A:EA:5E
X509v3 Authority Key Identifier:
keyid:BD:B7:AA:C7:C4:93:BC:8A:A7:EC:70:59:D3:EC:76:BB:FC:2F:23:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbeqx8STvIqn7HBZ0-x2u_wvI9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/sIVYxiwotrvgFrhQcZ7Lm2pa6l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/vbeqx8STvIqn7HBZ0-x2u_wvI9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.48.0/21
212.162.156.0/22
Signature Algorithm: sha256WithRSAEncryption
22:ce:20:fc:4b:b0:46:8c:df:4e:90:5b:76:38:90:7e:f6:ae:
62:33:54:54:ab:7f:26:30:c4:81:ed:0d:dd:c1:1d:e9:3f:18:
fd:71:80:40:80:71:f9:0c:2e:3e:fa:aa:57:d6:e6:b9:7c:29:
55:04:54:9d:c8:68:ae:da:22:cd:ae:6a:69:c1:42:af:b6:74:
35:f2:ee:c4:49:cc:bd:3f:94:e5:0e:89:6a:44:43:69:42:52:
c3:11:f8:9d:69:a8:44:b2:50:4b:d7:c5:da:a3:8e:df:12:2f:
94:62:f5:9a:c2:e2:44:10:45:6a:d1:43:2a:95:7a:47:ea:0e:
a0:aa:bf:28:04:ba:4f:b8:b8:6e:54:80:9a:51:c7:9a:17:b7:
8e:9e:e0:62:71:3d:39:3f:58:27:3a:52:41:f4:8b:49:6c:83:
36:26:29:32:24:ec:7e:3d:d8:fc:03:69:69:d7:25:1c:6b:d1:
72:e7:82:8a:a8:b7:86:aa:1c:ff:1f:39:06:85:61:3d:92:f8:
e7:5a:f9:27:f4:fb:19:ba:52:2d:6b:dc:4c:e6:10:21:44:28:
3e:e6:11:1c:3a:62:fd:6c:bc:dd:95:56:41:e5:bf:e5:fe:0b:
b9:b6:ad:0d:e0:90:6e:53:17:62:cc:a1:a2:81:2a:06:59:00:
2e:d0:e0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:14 2024 by rpki-client on console-ams.rpki-client.org