Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gwz3ejqRG26pkO5UyUz3dRR6ntY.roa
File: gwz3ejqRG26pkO5UyUz3dRR6ntY.roa (raw, json)
Hash identifier: 2aG4fnk2DXQLK6d3bGR/fMiSPGUVY8nWeXvDqXKRjxA=
Subject key identifier: 83:0C:F7:7A:3A:91:1B:6E:A9:90:EE:54:C9:4C:F7:75:14:7A:9E:D6
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DC2804498537FF33DD1F06160DEC132C6
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gwz3ejqRG26pkO5UyUz3dRR6ntY.roa
Signing time: Mon 19 Feb 2024 17:53:22 +0000
ROA not before: Mon 19 Feb 2024 17:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 37.77.147.0/24 maxlen: 24
193.109.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 16:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c2:80:44:98:53:7f:f3:3d:d1:f0:61:60:de:c1:32:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 19 17:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=830cf77a3a911b6ea990ee54c94cf775147a9ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:55:27:ba:4b:26:42:e2:04:46:e5:63:5f:c7:
17:86:3f:15:66:d1:d5:ba:05:10:90:27:ee:7f:f7:
e8:51:1a:c3:a8:51:04:c4:90:c1:5e:3b:07:9f:8e:
a6:a3:55:51:c2:51:59:30:c5:62:2f:c8:91:eb:b2:
b1:00:60:6e:ea:cc:0f:ad:78:cb:9d:ee:3a:06:f7:
4e:59:db:9b:36:b8:24:ce:d7:d5:1c:ce:81:20:66:
fd:49:5b:40:d2:5e:5e:a4:ff:1c:81:6e:77:13:1a:
2d:32:3c:dc:31:c8:6a:e6:d1:e2:44:8d:2d:0d:83:
29:73:71:01:23:23:25:4c:9e:dd:ad:03:f1:bf:22:
63:9d:b7:b2:8b:d1:0c:0e:49:c9:6b:cf:c6:b7:c1:
bc:50:28:46:66:46:5e:b8:eb:89:e3:14:2a:94:ed:
7e:b7:b4:82:a6:1b:59:72:4c:8b:22:72:ae:0e:74:
52:24:15:d8:a5:9c:23:b7:37:1d:53:c0:12:bf:c2:
5c:82:a6:35:33:97:e3:29:92:0b:76:57:cd:8b:03:
cb:61:c8:6e:fb:1d:51:2a:87:6a:b9:c9:11:6f:1b:
b1:88:b4:df:3b:3e:23:f7:eb:a3:e9:0e:0c:96:be:
85:c1:47:95:92:40:7c:1a:f5:21:1c:a8:d2:87:49:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0C:F7:7A:3A:91:1B:6E:A9:90:EE:54:C9:4C:F7:75:14:7A:9E:D6
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/gwz3ejqRG26pkO5UyUz3dRR6ntY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.147.0/24
193.109.213.0/24
Signature Algorithm: sha256WithRSAEncryption
45:a4:c8:b6:ab:63:33:d1:82:3d:81:4f:4c:b9:68:dd:96:a1:
22:b7:fc:b4:c8:fa:c1:71:9e:95:d8:19:5d:60:a3:52:61:ce:
76:35:29:14:95:6f:bc:36:dd:1d:40:02:52:20:0d:85:d6:44:
1e:53:f8:ca:13:a7:07:32:11:c0:63:fd:6f:7f:e0:a5:01:61:
57:68:6d:73:72:d9:93:fd:21:c7:70:94:e6:38:ba:d1:4d:de:
72:da:e6:1b:1b:29:e4:59:4f:c4:55:9b:d9:e5:95:4c:4f:f0:
85:f0:5c:83:b5:50:2c:9b:2d:7b:6f:d4:96:1b:4d:c8:f9:7a:
6c:c4:4d:74:51:18:51:29:e5:9c:8d:d0:a6:2a:94:88:e6:56:
24:b2:b5:c1:10:66:d3:19:f7:3c:60:d0:b3:17:2b:ea:bb:7c:
43:fb:5b:62:00:52:2b:86:c2:5e:2c:c3:41:2c:b8:6d:60:b9:
2f:59:5a:8d:0c:99:66:09:b5:63:af:65:9f:66:31:d1:6f:a2:
7b:73:4b:d0:cc:71:60:a2:8a:6f:df:fb:b2:0a:83:80:8b:76:
4f:50:17:e4:7a:01:85:aa:7c:59:46:d3:7f:f8:ba:45:78:13:
46:e4:8a:e1:68:72:a1:4e:d0:94:b6:21:fd:b5:cf:7f:49:87:
bc:c4:b5:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org