Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/UJTmAd6MKkAfUQdJYFkwxDMkiws.roa
File: UJTmAd6MKkAfUQdJYFkwxDMkiws.roa (raw, json)
Hash identifier: vo7VhohXers75ryED8yQM8kXLwEQ0SmHY43uc/DN75Y=
Subject key identifier: 50:94:E6:01:DE:8C:2A:40:1F:51:07:49:60:59:30:C4:33:24:8B:0B
Certificate issuer: /CN=7669943165d59f25265fb97cb77a6c7cbf8b5077
Certificate serial: 01870EF36C03BA5BD6765373453DC2913AFC
Authority key identifier: 76:69:94:31:65:D5:9F:25:26:5F:B9:7C:B7:7A:6C:7C:BF:8B:50:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmmUMWXVnyUmX7l8t3psfL-LUHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/UJTmAd6MKkAfUQdJYFkwxDMkiws.roa
Signing time: Thu 23 Mar 2023 14:50:46 +0000
ROA not before: Thu 23 Mar 2023 14:50:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 37.72.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:f3:6c:03:ba:5b:d6:76:53:73:45:3d:c2:91:3a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7669943165d59f25265fb97cb77a6c7cbf8b5077
Validity
Not Before: Mar 23 14:50:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5094e601de8c2a401f510749605930c433248b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e5:6f:ed:c9:66:80:06:69:5f:b6:50:ed:c3:
48:65:da:e9:e2:62:60:5c:a5:7c:49:06:2f:2b:6c:
d3:f7:e7:e7:0c:aa:81:33:e9:b5:c2:66:88:f0:5f:
39:18:7f:08:99:35:3a:ce:d0:f3:4a:d4:a5:1c:68:
72:fc:19:82:c9:3f:d5:49:14:74:53:1d:8b:31:b6:
fa:c9:12:8a:80:2a:d8:d2:ee:32:1c:d7:0a:3f:47:
d9:cf:dc:e8:84:51:61:47:d7:47:18:e5:37:09:4b:
6b:f1:2a:87:87:0b:e7:49:b3:0e:1c:96:30:1d:93:
8e:a9:0c:3c:71:52:d1:7a:b6:bc:6b:4e:3c:69:0e:
7e:5e:da:76:7d:7b:ec:31:d3:53:71:53:00:85:33:
4e:b4:58:d4:41:ec:da:44:ec:43:be:82:4e:17:cf:
d8:ef:ef:3d:b2:1b:d1:1c:e9:96:75:1a:e9:62:47:
5e:87:b4:49:c1:ad:0c:b2:c7:03:56:ea:a5:b5:02:
09:b3:4c:b0:dd:a1:04:10:57:ca:5d:a0:6b:d5:b8:
56:00:85:17:ba:dd:19:a2:54:b5:00:07:d3:65:93:
07:41:51:fc:90:b8:8c:c4:59:75:47:b4:fa:ee:5a:
03:f4:b2:93:17:4a:be:93:0d:a4:bd:6c:2c:ea:71:
a6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:94:E6:01:DE:8C:2A:40:1F:51:07:49:60:59:30:C4:33:24:8B:0B
X509v3 Authority Key Identifier:
keyid:76:69:94:31:65:D5:9F:25:26:5F:B9:7C:B7:7A:6C:7C:BF:8B:50:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmmUMWXVnyUmX7l8t3psfL-LUHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/UJTmAd6MKkAfUQdJYFkwxDMkiws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/dmmUMWXVnyUmX7l8t3psfL-LUHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.135.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:ab:96:50:33:80:91:d9:14:88:6f:10:5a:4e:05:ec:df:c4:
c7:fd:9f:68:31:f6:54:18:ec:35:fe:96:6d:b3:3e:80:ba:08:
dd:5a:2a:61:e2:c6:b4:ca:c1:1c:75:83:8a:62:3d:96:77:f8:
af:12:3a:b8:0d:d4:13:19:5a:9e:67:ba:df:46:50:62:fb:ed:
a9:d1:66:d1:ab:05:c3:7b:48:c8:36:cc:eb:9a:1b:27:a1:81:
73:06:13:c9:0b:2a:9c:1c:cc:f0:3c:c1:94:64:af:89:8b:12:
e1:fb:6f:e1:bb:53:65:9b:bb:35:b9:c7:82:1c:15:7c:2b:87:
af:9b:18:a0:91:e2:3b:69:bc:02:2b:8c:2b:66:0c:26:8b:d1:
5a:e2:a7:2d:08:3d:69:b3:b8:bb:6f:27:83:61:fe:83:b7:fb:
fe:04:c0:e5:0c:c1:ee:0a:9c:cf:3a:aa:39:92:90:10:75:fc:
d5:16:26:a0:0c:60:dd:b1:41:82:68:bd:5a:65:f6:64:83:90:
8d:d2:87:3c:e1:dd:c1:8d:83:bf:14:60:19:24:c7:cd:f3:cb:
d8:40:3d:54:74:a7:3a:d0:a0:38:e9:93:58:70:14:25:57:b0:
13:f8:f1:09:b6:eb:65:67:1c:48:84:5a:c4:21:85:41:ab:77:
fd:90:80:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 24 08:10:04 2023 by rpki-client on console-ams.rpki-client.org