Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/C-xxDaoD4ChqC0RT2jLrAYL1_SM.roa
File: C-xxDaoD4ChqC0RT2jLrAYL1_SM.roa (raw, json)
Hash identifier: MmEjr3bMdSuE3daSMo/6MmtnzemyOujBluhV4PMHgKg=
Subject key identifier: 0B:EC:71:0D:AA:03:E0:28:6A:0B:44:53:DA:32:EB:01:82:F5:FD:23
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 01856FCBBE76F649A920D0CAECC6D459B945
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/C-xxDaoD4ChqC0RT2jLrAYL1_SM.roa
Signing time: Mon 02 Jan 2023 00:05:01 +0000
ROA not before: Mon 02 Jan 2023 00:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8540
IP address blocks: 81.94.55.0/24 maxlen: 24
37.186.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:be:76:f6:49:a9:20:d0:ca:ec:c6:d4:59:b9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jan 2 00:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bec710daa03e0286a0b4453da32eb0182f5fd23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cb:14:df:62:d5:d7:2b:a6:e3:ae:ea:5d:78:
22:3f:5a:79:97:5c:55:e1:29:a8:45:3c:dd:fb:f8:
b2:32:9a:eb:9e:02:fa:a0:82:56:b5:84:cb:e1:ff:
a2:1b:ae:3d:eb:5f:3a:41:0e:4c:0c:01:8e:d4:ea:
77:58:10:da:f6:e8:58:0d:8e:06:99:51:16:88:7b:
55:ba:11:06:5d:c8:d8:21:74:6b:d0:3d:8a:35:7a:
f5:f7:27:06:4f:c0:ff:bf:cc:c0:03:00:84:0b:f4:
9b:96:62:32:23:95:f1:b9:56:ee:aa:35:8e:a8:08:
16:6e:b4:4d:13:fc:c4:81:59:73:0d:dc:b8:46:b8:
d9:9c:a6:96:40:fd:3d:e9:cf:5c:e2:7b:18:b2:56:
d6:a4:7f:b6:cd:77:24:a5:e5:36:fc:0e:69:1d:8c:
ea:47:89:85:80:7f:b9:55:d0:22:ce:be:9b:88:2a:
cc:f1:f7:23:d1:29:17:57:a9:57:3d:2e:2e:7e:a9:
1f:77:6d:cc:68:84:86:35:83:ef:9f:2e:87:3c:2b:
b4:c6:79:41:fb:a7:5b:e5:b4:59:08:f0:21:eb:57:
b2:fb:aa:c7:76:ea:3d:13:e0:dc:47:f1:37:53:0f:
92:2c:ba:37:51:06:f3:8b:67:e8:4a:41:a6:95:81:
27:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:EC:71:0D:AA:03:E0:28:6A:0B:44:53:DA:32:EB:01:82:F5:FD:23
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/C-xxDaoD4ChqC0RT2jLrAYL1_SM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.5.0/24
81.94.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ca:4d:4d:84:6b:50:65:99:f6:e2:b6:ce:65:fc:7b:0a:93:
67:83:f7:08:d7:e9:8d:ac:e2:6f:b2:c7:28:fa:89:5c:16:8f:
d7:80:b4:04:7d:63:8f:37:7e:14:fe:ba:72:69:9f:7d:f8:10:
ee:94:78:1e:34:bd:b6:59:62:e3:84:53:95:55:af:4f:02:04:
3e:31:ea:97:b9:e8:d2:2a:2e:de:82:dd:89:51:f2:1f:a8:43:
9c:d9:d1:54:e8:9e:4c:bf:13:58:59:bf:b5:8e:90:d3:6c:87:
ef:19:b4:45:4c:2e:28:63:b0:39:b2:71:58:1e:82:71:d1:3d:
98:5a:89:66:f5:27:cc:1d:ea:5e:f8:b8:03:b4:69:6d:ab:7c:
5b:6e:89:f7:bf:46:8a:8e:2b:20:ab:2c:af:55:f4:29:ed:48:
67:c4:98:8b:3a:f2:50:af:98:1a:be:e8:56:d9:82:fd:b5:f9:
51:66:44:f3:44:14:37:90:b3:ab:ce:d2:ed:eb:a0:12:80:0e:
15:50:d3:8f:09:6e:d2:39:5e:f3:4b:c4:c4:4b:0b:e1:d0:c1:
1a:e6:8f:a1:d1:ae:44:28:e1:06:74:2c:20:0b:b4:97:41:69:
fb:32:4e:1e:be:64:bb:95:86:00:2d:17:bb:79:76:aa:84:fa:
6e:c8:d6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:37 2024 by rpki-client on console-fra.rpki-client.org