Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/fGxOyYG5Q93SlklFC1iAjhaloRY.roa
File: fGxOyYG5Q93SlklFC1iAjhaloRY.roa (raw, json)
Hash identifier: Wluh2HrlAgtOEYjlBEc7sVgoQtMaXD5mlL+AS7yOZug=
Subject key identifier: 7C:6C:4E:C9:81:B9:43:DD:D2:96:49:45:0B:58:80:8E:16:A5:A1:16
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DD1E8C52A4E5EF1755F01049D31595EC9
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/fGxOyYG5Q93SlklFC1iAjhaloRY.roa
Signing time: Thu 22 Feb 2024 17:41:49 +0000
ROA not before: Thu 22 Feb 2024 17:41:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 37.77.147.0/24 maxlen: 24
37.140.221.0/24 maxlen: 24
45.90.197.0/24 maxlen: 24
193.109.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 18:35:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d1:e8:c5:2a:4e:5e:f1:75:5f:01:04:9d:31:59:5e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 22 17:41:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c6c4ec981b943ddd29649450b58808e16a5a116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:42:00:7f:37:65:96:70:7e:ff:3e:e7:68:1a:
50:c0:fa:0c:91:4f:8a:7f:aa:f0:c5:8a:91:ce:ea:
72:33:07:db:9f:8d:64:fd:6b:da:54:1a:bf:b3:0b:
93:48:e4:c5:5a:ba:c2:36:8c:65:8a:9d:51:a4:81:
85:64:fa:35:06:cc:d8:36:fb:87:d2:9a:9a:53:0b:
d2:17:d5:85:f8:0f:4e:c8:70:63:05:a4:d6:c1:13:
43:e7:ca:e5:73:fd:a5:52:31:fe:e1:e3:10:7d:f4:
db:4a:9e:cd:c9:a5:5b:91:a4:3d:df:1b:7a:68:56:
20:cc:a1:54:19:11:9b:f7:2f:bd:fa:65:02:33:86:
71:36:c4:36:37:1a:c4:6c:5a:f9:f1:b2:59:05:0f:
56:e8:98:9e:aa:2a:a8:e5:18:1a:e2:8b:9a:62:a1:
ad:1c:d5:59:4a:ab:e5:e2:08:e2:cc:3e:20:01:59:
d9:39:f0:05:bc:0a:53:77:42:d4:83:00:c3:eb:3e:
87:2e:56:91:7a:7e:ba:36:07:1c:09:be:e0:4b:9b:
0c:51:22:52:05:92:1f:27:28:8a:a3:94:0a:56:bd:
b6:fb:22:ae:29:5c:f7:fa:a8:48:94:2e:d7:b0:2e:
5f:50:c1:e1:0a:af:ff:c1:35:a8:4c:e5:1c:9b:b5:
83:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6C:4E:C9:81:B9:43:DD:D2:96:49:45:0B:58:80:8E:16:A5:A1:16
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/fGxOyYG5Q93SlklFC1iAjhaloRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.147.0/24
37.140.221.0/24
45.90.197.0/24
193.109.213.0/24
Signature Algorithm: sha256WithRSAEncryption
04:aa:55:c7:03:13:dd:7b:c5:01:1e:96:47:f4:c3:77:4d:21:
91:ea:f3:4b:40:e8:03:2c:ed:b2:aa:62:51:fc:59:bf:59:f8:
44:c4:39:57:31:d5:42:f1:de:0b:0b:6d:bf:63:e9:70:bf:3a:
b4:c6:76:7d:1c:47:03:13:88:b3:17:ff:33:e9:f5:31:1c:ba:
e8:78:0a:14:27:c6:9e:07:f3:8a:98:9d:31:46:e9:6a:61:0d:
f8:4f:a6:03:b5:68:3c:14:e7:c5:0a:8c:aa:56:69:4d:0b:84:
7e:31:2e:9f:5f:d3:92:5b:4a:27:72:bd:09:da:44:9c:b7:82:
25:46:70:cd:1d:25:c6:47:d4:a9:cd:09:13:51:ba:39:05:90:
b1:7d:c1:79:73:df:44:95:4f:93:b0:df:ba:a4:9d:3a:17:7c:
3b:22:72:af:15:2e:fa:26:0f:12:17:b2:49:7d:45:a6:0a:d7:
ad:7a:46:a2:4f:30:f3:64:0e:b7:4b:d5:b5:82:3c:51:c8:e8:
f2:43:87:2c:b3:c0:6d:bb:4a:21:1e:56:b2:87:40:ac:8a:28:
ad:eb:db:c7:d7:8a:e1:67:56:d8:68:3d:32:11:52:22:7d:54:
41:f4:ae:6c:02:1e:46:02:fb:a1:17:38:e5:93:3c:91:6d:a3:
ce:cd:45:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org