Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/a3zy3gVDpMbbG26Ru2HdN3bcVqQ.roa
File: a3zy3gVDpMbbG26Ru2HdN3bcVqQ.roa (raw, json)
Hash identifier: evPkAwcf96cbHkLwl/7zn8/wcHe7pEfPR6UK3Dm6I/w=
Subject key identifier: 6B:7C:F2:DE:05:43:A4:C6:DB:1B:6E:91:BB:61:DD:37:76:DC:56:A4
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 01856BA59D619749C03542E14D4E46FCF7E2
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/a3zy3gVDpMbbG26Ru2HdN3bcVqQ.roa
Signing time: Sun 01 Jan 2023 04:44:53 +0000
ROA not before: Sun 01 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61349
IP address blocks: 37.46.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:a5:9d:61:97:49:c0:35:42:e1:4d:4e:46:fc:f7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jan 1 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b7cf2de0543a4c6db1b6e91bb61dd3776dc56a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9a:2b:3c:ac:7b:23:90:ea:1a:16:bd:e6:1b:
5d:18:6b:45:46:78:c9:3d:2b:53:82:86:77:a7:15:
72:fb:38:73:25:83:a9:26:65:d1:6d:63:14:e2:e6:
70:7f:29:51:0a:79:e1:2f:b5:eb:5f:3d:f5:52:54:
22:79:f7:e0:fb:72:52:24:12:d0:1a:b4:26:17:fb:
1f:ac:3a:ec:66:22:6b:2d:9d:fc:19:23:ea:fb:40:
5e:9a:ce:62:68:51:8f:38:62:b1:ce:00:61:a6:66:
5f:df:a7:10:7a:28:fa:d1:e3:1d:61:d2:18:96:fb:
69:fc:42:72:92:0f:14:5a:59:8a:33:41:0f:85:97:
6c:fd:37:d2:93:04:d1:97:4f:e6:50:ff:a0:b2:26:
78:a7:b8:5f:db:17:43:18:b8:3b:be:36:8d:cb:fc:
28:96:9d:f7:29:dc:c2:e4:bc:35:44:95:84:9f:44:
c4:56:69:6c:a3:a0:82:b3:47:24:03:17:bc:2c:5a:
a8:3f:74:d1:88:64:37:6d:23:5e:d1:65:d4:38:97:
67:d1:de:79:b2:e3:a9:5d:02:51:4d:ed:2f:96:8b:
9e:08:12:f3:45:6d:cb:fa:63:71:55:33:5d:d6:39:
dd:8d:78:ab:57:5c:ea:cb:c9:94:70:b9:05:c3:d8:
59:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:7C:F2:DE:05:43:A4:C6:DB:1B:6E:91:BB:61:DD:37:76:DC:56:A4
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/a3zy3gVDpMbbG26Ru2HdN3bcVqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.198.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:26:16:94:57:d1:c1:53:32:c6:56:27:dd:d7:05:e2:29:f9:
76:a8:0d:1c:54:61:e1:8a:9a:20:7d:a6:dd:6e:cd:dd:5e:31:
70:2c:ae:36:8d:f6:eb:4e:46:00:91:33:35:79:f0:ed:e2:aa:
62:dc:54:e6:9d:b1:a0:a8:ff:33:e1:39:b8:ac:c7:44:ec:f5:
0d:1b:ba:69:31:98:c8:4a:8d:0c:1e:f1:0f:dd:95:da:30:05:
44:e4:1c:6b:91:c8:b6:51:42:f1:6d:4b:6f:88:4c:3f:74:21:
09:b1:bc:d9:69:88:ec:5f:73:66:8e:57:41:5a:35:a0:3c:b3:
e4:fc:4f:4a:fa:01:6f:7b:77:36:be:bc:d5:b4:5f:d3:10:df:
09:df:95:f2:18:02:c4:e4:72:31:11:11:d9:bd:05:a3:32:79:
62:0f:69:0e:21:2b:d0:55:7e:8e:9c:72:bb:0e:3f:b6:58:7f:
f8:bd:ea:ad:5f:df:d7:bd:52:a7:3c:89:73:77:08:59:8b:25:
44:76:a8:11:81:bf:35:54:09:88:98:32:0d:7b:5c:2c:57:3b:
48:b5:68:55:0a:9c:99:c8:70:ee:fb:db:04:56:ee:d1:68:4f:
61:9f:35:26:56:c0:50:22:3b:6c:ba:82:43:7b:1e:2b:73:65:
af:ac:b6:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrpZ1hl0nANULhTU5G/PfiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4
YWJmZDIwHhcNMjMwMTAxMDQ0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjdjZjJkZTA1NDNhNGM2ZGIxYjZlOTFiYjYxZGQzNzc2ZGM1NmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiporPKx7I5DqGha95htdGGtFRnjJ
PStTgoZ3pxVy+zhzJYOpJmXRbWMU4uZwfylRCnnhL7XrXz31UlQieffg+3JSJBLQ
GrQmF/sfrDrsZiJrLZ38GSPq+0Bems5iaFGPOGKxzgBhpmZf36cQeij60eMdYdIY
lvtp/EJykg8UWlmKM0EPhZds/TfSkwTRl0/mUP+gsiZ4p7hf2xdDGLg7vjaNy/wo
lp33KdzC5Lw1RJWEn0TEVmlso6CCs0ckAxe8LFqoP3TRiGQ3bSNe0WXUOJdn0d55
suOpXQJRTe0vloueCBLzRW3L+mNxVTNd1jndjXirV1zqy8mUcLkFw9hZ7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGt88t4FQ6TG2xtukbth3Td23FakMB8GA1UdIwQY
MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt
NTJmOTdiMjc3ZDFmLzEvYTN6eTNnVkRwTWJiRzI2UnUySGROM2JjVnFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm
LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJS7GMA0G
CSqGSIb3DQEBCwUAA4IBAQBdJhaUV9HBUzLGVifd1wXiKfl2qA0cVGHhipogfabd
bs3dXjFwLK42jfbrTkYAkTM1efDt4qpi3FTmnbGgqP8z4Tm4rMdE7PUNG7ppMZjI
So0MHvEP3ZXaMAVE5Bxrkci2UULxbUtviEw/dCEJsbzZaYjsX3NmjldBWjWgPLPk
/E9K+gFve3c2vrzVtF/TEN8J35XyGALE5HIxERHZvQWjMnliD2kOISvQVX6OnHK7
Dj+2WH/4veqtX9/XvVKnPIlzdwhZiyVEdqgRgb81VAmImDINe1wsVztItWhVCpyZ
yHDu+9sEVu7RaE9hnzUmVsBQIjtsuoJDex4rc2WvrLZk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org