Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/7f0d3c-bbd9-4fee-b60b-c465d8902c1b/1/memG3KNZf4dzNl8yBacJgAN5QS4.roa
File: memG3KNZf4dzNl8yBacJgAN5QS4.roa (raw, json)
Hash identifier: 0Gcddcs/dVk3D8cewbs5oB7pDfYkyQtKKKaxDnmOc7Q=
Subject key identifier: 99:E9:86:DC:A3:59:7F:87:73:36:5F:32:05:A7:09:80:03:79:41:2E
Certificate issuer: /CN=c5e172872eb7bef0965df13b0fc5d65e75370a19
Certificate serial: 018AEFE7CB8E4FA5B0C5F301F604A4D4DB55
Authority key identifier: C5:E1:72:87:2E:B7:BE:F0:96:5D:F1:3B:0F:C5:D6:5E:75:37:0A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xeFyhy63vvCWXfE7D8XWXnU3Chk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/7f0d3c-bbd9-4fee-b60b-c465d8902c1b/1/memG3KNZf4dzNl8yBacJgAN5QS4.roa
Signing time: Mon 02 Oct 2023 10:20:59 +0000
ROA not before: Mon 02 Oct 2023 10:20:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 37.77.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:e7:cb:8e:4f:a5:b0:c5:f3:01:f6:04:a4:d4:db:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5e172872eb7bef0965df13b0fc5d65e75370a19
Validity
Not Before: Oct 2 10:20:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99e986dca3597f8773365f3205a709800379412e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:74:f2:4e:e4:cc:8b:d3:83:5b:6f:b2:29:a1:
bf:62:0d:ac:c1:75:3a:3b:4b:42:86:ff:fa:f1:23:
ca:98:7e:4c:7b:80:39:19:cf:6d:e4:80:fe:db:09:
83:8d:02:63:19:df:8c:68:c3:11:f7:26:9c:48:dc:
0f:dc:b3:0a:b2:b1:7b:1a:61:2a:05:46:97:b9:3a:
49:41:fd:ad:fc:be:df:5a:a0:98:e7:9f:8c:36:38:
d0:d3:7e:65:7b:41:b0:49:bf:7a:fe:da:b2:2b:f9:
94:7e:84:cc:45:b3:12:d0:82:d7:a3:67:30:e8:37:
af:74:bd:c9:1e:f7:9a:f5:24:dc:e6:f4:e7:99:d9:
39:01:d7:0a:e9:cc:12:c1:af:01:b1:62:50:92:49:
4d:93:72:71:16:8c:af:6f:e1:8d:94:a2:d8:0c:4d:
69:e9:46:8a:11:e1:5c:67:bb:df:08:05:54:b3:91:
a7:78:d5:f2:ab:4b:63:62:57:d3:f9:2c:f5:1f:f4:
b0:df:c6:df:33:bc:e8:76:08:0f:84:d0:0e:f6:01:
be:8b:0a:eb:97:ca:a3:92:b8:16:ff:10:3f:1f:1b:
3b:6e:a4:37:70:f1:b5:8d:e9:5e:02:a0:5e:15:80:
fd:64:69:9b:23:2f:68:03:40:c8:f8:5b:0a:80:e2:
8f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E9:86:DC:A3:59:7F:87:73:36:5F:32:05:A7:09:80:03:79:41:2E
X509v3 Authority Key Identifier:
keyid:C5:E1:72:87:2E:B7:BE:F0:96:5D:F1:3B:0F:C5:D6:5E:75:37:0A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xeFyhy63vvCWXfE7D8XWXnU3Chk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/7f0d3c-bbd9-4fee-b60b-c465d8902c1b/1/memG3KNZf4dzNl8yBacJgAN5QS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/7f0d3c-bbd9-4fee-b60b-c465d8902c1b/1/xeFyhy63vvCWXfE7D8XWXnU3Chk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.201.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d6:bc:8d:b8:70:26:19:60:0c:c4:11:9c:d8:e1:02:d8:60:
bc:4e:f1:1c:bf:25:38:34:19:dd:d6:07:94:37:a0:1f:31:6a:
50:0a:3f:5f:66:3c:4b:fe:1f:74:f2:40:1e:31:82:48:93:12:
10:ae:09:d9:19:20:99:ac:6a:21:7e:15:ad:4b:e8:29:4c:45:
63:eb:2b:4a:e1:51:ad:ab:fe:ec:eb:f0:73:09:17:f3:a3:d7:
b7:2b:9b:29:0d:51:bf:03:23:ef:e1:8d:9a:a5:a8:95:0f:30:
9d:3f:d2:ac:02:a7:52:1c:8a:53:1e:f0:e0:89:62:ed:84:0e:
38:22:3f:e3:d4:36:0f:78:9f:11:fb:cb:a8:b6:02:a4:bd:5a:
b1:01:56:2d:9e:1c:e5:90:22:09:33:45:a7:6f:47:87:fb:34:
74:00:91:53:f5:e4:37:77:39:2c:be:6d:a9:85:f0:74:dc:d6:
f3:e9:21:3f:90:a7:d1:fd:cf:c6:7a:c2:d6:74:b1:bf:16:28:
6d:6e:e4:a6:da:2c:23:68:63:26:ba:96:f3:fb:d8:d2:f8:90:
2d:92:8a:4a:81:9b:24:59:14:e5:6a:24:a7:b9:36:81:13:94:
f2:5e:35:26:d4:6d:41:8b:8e:ec:7e:80:8e:03:26:6d:22:83:
54:86:47:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:21 2024 by rpki-client on console-ams.rpki-client.org