Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/msXuYuyx2M-SJv6m5q5Kjzu2s_Q.roa
File: msXuYuyx2M-SJv6m5q5Kjzu2s_Q.roa (raw, json)
Hash identifier: sDQewxqq5G1IKtpwE1oW7qQIgrCUv0X2vuQrfg2xm7Q=
Subject key identifier: 9A:C5:EE:62:EC:B1:D8:CF:92:26:FE:A6:E6:AE:4A:8F:3B:B6:B3:F4
Certificate issuer: /CN=63444210ea08ac529878d51917e3b30054d620d1
Certificate serial: 019267A87EC11A2BCBAAF89C0A92CD1621AF
Authority key identifier: 63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/msXuYuyx2M-SJv6m5q5Kjzu2s_Q.roa
Signing time: Mon 07 Oct 2024 15:45:48 +0000
ROA not before: Mon 07 Oct 2024 15:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14681
IP address blocks: 2.37.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 11:14:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:a8:7e:c1:1a:2b:cb:aa:f8:9c:0a:92:cd:16:21:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63444210ea08ac529878d51917e3b30054d620d1
Validity
Not Before: Oct 7 15:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ac5ee62ecb1d8cf9226fea6e6ae4a8f3bb6b3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:09:86:78:11:01:bb:75:41:9a:1e:07:0c:
25:de:ff:91:2e:d7:02:81:f8:a1:f0:57:e5:a3:69:
3d:1a:53:37:f3:2d:4b:2d:83:36:5f:27:69:c2:07:
65:88:ca:05:fb:e9:03:14:98:2f:4e:1c:d4:67:7f:
c4:47:0d:30:a4:16:e4:0a:8e:89:45:ef:ed:0a:03:
c1:b5:5a:93:c8:d9:dd:29:50:96:41:61:60:a7:a7:
fb:69:9d:77:f5:77:e4:fc:00:60:b0:35:1f:01:e0:
6a:a8:2d:7f:ce:bd:f6:b7:f9:13:99:d5:23:bc:48:
aa:5b:ba:6d:4c:0e:f1:1e:ac:4a:19:b1:fc:22:d5:
b2:51:2e:e6:49:df:47:24:12:57:6b:8b:b7:ea:45:
01:ac:cb:56:ca:4a:8d:94:f7:ff:a7:61:e0:3c:df:
ec:22:53:43:9b:81:3f:dd:4e:fc:e1:83:42:89:a8:
ee:f3:12:08:1d:07:bd:52:3c:ad:db:ef:1a:dc:bb:
76:2d:63:64:33:c0:95:ca:d1:5a:c2:8c:34:ae:53:
b7:b4:b1:0d:27:35:22:74:9b:c0:75:eb:d4:09:a7:
6f:3d:c7:8b:9e:db:3b:7b:17:74:b4:cc:60:44:32:
98:5a:92:1b:c6:bd:37:4f:0e:00:16:7a:b0:5a:ce:
cd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C5:EE:62:EC:B1:D8:CF:92:26:FE:A6:E6:AE:4A:8F:3B:B6:B3:F4
X509v3 Authority Key Identifier:
keyid:63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/msXuYuyx2M-SJv6m5q5Kjzu2s_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.37.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:58:c2:df:c2:a3:b3:2d:a4:bc:8c:03:c2:7c:6c:b4:85:b8:
29:99:4f:dc:bb:cd:49:ae:34:ee:30:ca:3a:32:94:be:9b:d5:
13:17:45:70:18:2a:f6:08:94:f5:ab:2d:00:21:15:b0:36:d9:
39:ca:fa:1a:cb:d7:fc:a4:ce:1e:fe:6b:e7:62:fc:4f:e5:1f:
75:f4:aa:52:c7:55:88:44:0e:fc:ce:6c:a5:a0:f4:1d:f2:cd:
e3:91:94:b4:b2:0d:19:f1:1e:23:9f:0e:0f:32:ac:97:10:36:
62:17:65:f2:8a:6c:fb:42:48:39:20:3e:31:c7:52:6e:97:30:
d1:53:1a:56:f5:0e:67:f2:1d:68:e8:5b:23:16:5d:8b:d4:65:
0e:65:cc:69:fb:ef:c4:1b:7d:09:75:40:fd:51:8e:f7:b7:30:
d3:1d:94:fb:95:cc:ea:9d:14:11:fe:c6:e0:32:28:dd:a5:0f:
8f:06:a0:bc:bc:fb:cc:e2:89:2c:91:e2:b6:b4:ec:63:37:7d:
a7:06:61:55:3a:9d:b7:a9:a1:39:8b:7f:71:81:89:16:e3:76:
6c:63:5c:38:62:0e:c6:dd:ab:ea:0e:6c:a6:e8:1f:68:16:8d:
66:c3:30:ac:10:8f:b1:60:92:7a:e5:5a:d3:4f:25:be:5c:bf:
20:d6:a2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 13:28:29 2024 by rpki-client on console-ams.rpki-client.org