Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jM2Hv-e5QCEAYlqliSUTf0w5dHQ.roa
File: jM2Hv-e5QCEAYlqliSUTf0w5dHQ.roa (raw, json)
Hash identifier: fazO2/F99jlrr3wZFSgGCE4jgnH2bcBu/atnh3JyVNM=
Subject key identifier: 8C:CD:87:BF:E7:B9:40:21:00:62:5A:A5:89:25:13:7F:4C:39:74:74
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018572470F102709CCDD10D418DFB871A113
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jM2Hv-e5QCEAYlqliSUTf0w5dHQ.roa
Signing time: Mon 02 Jan 2023 11:38:57 +0000
ROA not before: Mon 02 Jan 2023 11:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57010
IP address blocks: 37.139.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:0f:10:27:09:cc:dd:10:d4:18:df:b8:71:a1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ccd87bfe7b9402100625aa58925137f4c397474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:dd:9e:39:4d:6a:24:88:4d:36:db:89:78:56:
49:85:2d:a9:90:4e:d2:85:26:07:87:d4:2c:c4:75:
9e:49:a2:5b:84:4a:e5:b5:c4:46:bc:a1:83:29:eb:
f4:41:e2:53:05:ed:14:9a:7e:92:dd:17:72:2c:b6:
bc:62:45:61:9a:f2:07:a1:e7:91:53:c9:fa:a8:7f:
9e:89:41:39:57:6e:4f:a1:95:36:f5:9d:cd:72:43:
31:b2:84:4f:1e:75:bc:4b:4e:db:79:67:1d:94:2b:
f7:e4:82:1c:ba:05:e5:3e:8a:66:04:08:51:23:70:
fb:cd:18:b3:9b:88:27:02:4f:16:64:08:0c:5c:74:
bd:92:e2:3e:15:01:25:6b:76:21:9b:6e:33:55:10:
e6:65:05:97:4b:f6:f8:d3:47:bc:96:ff:f5:3c:09:
cb:60:57:5e:a4:98:3e:59:79:12:02:6b:e4:e2:c0:
23:47:08:24:b8:ee:b2:f9:a0:77:f5:43:46:d9:1d:
34:e6:66:35:c0:ee:4e:e9:da:b3:c5:78:6a:6c:83:
06:56:38:67:33:96:a7:98:c8:57:6b:74:c1:da:8b:
05:a8:0b:af:70:09:b8:5d:05:62:13:e0:b1:ca:79:
87:5b:7c:dd:5c:1c:04:e0:49:15:df:f1:68:a7:e7:
60:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CD:87:BF:E7:B9:40:21:00:62:5A:A5:89:25:13:7F:4C:39:74:74
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/jM2Hv-e5QCEAYlqliSUTf0w5dHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.47.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:33:28:6b:f1:fc:14:21:6c:22:18:de:04:c4:43:3f:fd:ef:
18:c5:7a:84:25:5b:b5:5e:37:8e:45:b8:41:cc:00:ca:b3:ac:
92:2e:35:93:61:26:81:b9:79:29:0b:4a:75:5a:28:fb:93:83:
83:b5:c7:b1:e2:cd:98:fc:7b:82:f2:4d:ca:93:31:bd:62:eb:
57:ab:c3:09:82:c8:c5:2b:ef:cd:42:d0:bf:9c:e7:4b:a5:d6:
97:f6:91:5d:ce:08:34:2d:aa:61:39:58:6c:c4:3f:78:10:4a:
ba:19:c8:70:7f:9c:c6:31:58:6d:99:91:4f:fc:96:ff:d9:c5:
64:c5:30:8d:5f:2e:bd:d6:5a:f1:5f:a1:f8:91:2c:6d:0e:16:
c1:17:1a:d8:70:a6:74:8c:84:65:f4:50:1c:dd:21:e0:3e:c2:
27:34:b4:ca:58:69:6d:99:09:73:4a:22:8d:39:14:d8:23:79:
e0:10:90:52:4d:33:95:fb:62:61:c1:e8:47:6a:37:1e:60:2a:
d1:5e:6d:8a:4c:22:eb:f0:53:2b:91:1f:c6:69:e0:1e:0b:2c:
10:ad:96:a7:0f:ad:37:71:ba:06:22:4c:33:20:57:7f:62:05:
b0:ae:1a:e3:22:d4:d5:8f:37:cd:86:7e:72:19:48:d8:42:a6:
a8:44:e8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org