Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/A9wuS-zST02Xo8SqLkExPPWaljU.roa
File: A9wuS-zST02Xo8SqLkExPPWaljU.roa (raw, json)
Hash identifier: EK0PTtqPnBbt+mj7zmEEgIauTxqYcJ8LY3BQFtOY9wI=
Subject key identifier: 03:DC:2E:4B:EC:D2:4F:4D:97:A3:C4:AA:2E:41:31:3C:F5:9A:96:35
Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Certificate serial: 01856DA65805618BCD7433A21024AE4AA0FF
Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/A9wuS-zST02Xo8SqLkExPPWaljU.roa
Signing time: Sun 01 Jan 2023 14:04:55 +0000
ROA not before: Sun 01 Jan 2023 14:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64439
IP address blocks: 37.60.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:58:05:61:8b:cd:74:33:a2:10:24:ae:4a:a0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Validity
Not Before: Jan 1 14:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03dc2e4becd24f4d97a3c4aa2e41313cf59a9635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:51:9b:76:12:82:ab:96:06:b3:8d:68:50:
44:11:35:fd:6d:99:7d:44:dc:93:d5:8d:36:7f:17:
eb:d4:cd:d1:60:fb:bb:7e:6a:05:b9:26:90:e2:dd:
ff:79:ac:3f:d7:c3:46:99:2c:d1:17:45:83:7d:5d:
9e:20:13:9f:27:0f:38:57:ff:6a:4c:ca:e4:55:9a:
fb:91:9c:09:96:a1:42:c3:5f:94:4b:3e:de:a4:84:
c1:3f:0b:23:73:c8:af:90:cf:5d:d9:56:75:db:b1:
98:0a:cd:12:0c:a8:43:f6:5b:0c:43:df:10:56:89:
0f:dd:0c:3e:ce:8b:3c:9a:4a:61:85:f4:e8:8d:10:
5c:63:a7:c7:e5:4d:63:f2:31:c5:3f:e8:6e:dc:4a:
c3:59:8a:8f:56:c7:fe:3a:be:63:e3:16:26:ed:be:
bb:2c:e3:23:01:6a:09:ee:ce:9b:8c:81:c0:aa:6e:
29:7d:31:ea:1d:46:07:7b:ec:fa:98:6d:3a:41:12:
04:e6:c6:b2:b1:a9:cf:0e:a9:0f:55:5f:e2:41:c6:
a7:12:a0:b2:ab:ad:38:64:a8:72:0f:22:1f:12:69:
90:4a:3d:2a:f3:34:a6:a1:63:06:cd:5d:35:41:a8:
8f:d5:2c:f8:1c:2e:8c:83:f1:38:4e:e6:e4:5f:9d:
ec:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DC:2E:4B:EC:D2:4F:4D:97:A3:C4:AA:2E:41:31:3C:F5:9A:96:35
X509v3 Authority Key Identifier:
keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/A9wuS-zST02Xo8SqLkExPPWaljU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.177.0/24
Signature Algorithm: sha256WithRSAEncryption
33:71:74:f4:45:5f:4a:c2:80:71:fe:02:e2:c0:e4:1d:3d:0f:
14:76:84:7d:3a:81:41:14:76:96:77:e6:1c:fc:b2:5a:5e:13:
c8:c0:47:aa:f6:a6:e5:69:d2:5e:23:00:ba:9b:3a:67:93:13:
c4:bc:5e:f8:66:0d:90:bf:7d:71:b6:5d:2a:e0:7a:e4:63:f4:
00:f4:7a:7a:c9:9d:f8:c1:bf:ca:bc:aa:74:25:a5:a1:17:6f:
35:72:f7:e0:6c:11:81:4c:2b:d3:09:12:27:68:a6:bc:3a:b2:
69:25:c8:4a:2f:2e:18:3b:47:d6:60:ce:ad:6f:72:b9:a1:fd:
c1:c9:fe:b5:da:04:3a:d7:e1:82:1a:a9:21:a8:ec:19:1f:44:
7a:bb:d9:7f:3c:aa:77:6e:75:38:a1:56:97:25:c7:38:f0:f3:
1e:b2:8d:cb:78:8a:49:4d:53:98:2b:6c:0d:d3:c3:67:11:8f:
73:c5:40:4e:95:85:8d:e0:b0:f8:98:95:c3:60:13:27:9a:52:
ce:88:f0:7b:5b:d9:1b:80:28:6f:9e:72:4c:4d:1c:8d:76:a3:
85:ac:66:fd:3e:c9:df:71:3c:15:2e:72:34:50:4d:0f:45:50:
19:dd:ec:18:d7:b4:1b:be:4e:b0:e2:2d:79:38:69:62:10:a4:
ec:c9:d1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:36 2024 by rpki-client on console-ams.rpki-client.org