Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/LWtcmdd8at5tpzxoMiRWmDKZ5HA.roa
File: LWtcmdd8at5tpzxoMiRWmDKZ5HA.roa (raw, json)
Hash identifier: f4TEe4KbDr/KsVkBRIMsY0eROdFSjma6bvoidist3Ic=
Subject key identifier: 2D:6B:5C:99:D7:7C:6A:DE:6D:A7:3C:68:32:24:56:98:32:99:E4:70
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018CCA2A341D77A3D33A8B0D6541023496F0
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/LWtcmdd8at5tpzxoMiRWmDKZ5HA.roa
Signing time: Tue 02 Jan 2024 12:33:32 +0000
ROA not before: Tue 02 Jan 2024 12:33:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 37.128.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Apr 2024 02:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:34:1d:77:a3:d3:3a:8b:0d:65:41:02:34:96:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Jan 2 12:33:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d6b5c99d77c6ade6da73c68322456983299e470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:17:d1:71:83:04:43:70:13:cb:d9:ce:0e:52:
76:eb:e4:f1:6f:dd:76:70:ac:6a:f7:e2:71:9b:91:
6f:eb:fb:01:d4:e5:9d:ca:34:12:86:dc:1a:fa:19:
06:07:d7:fd:5b:50:57:3f:20:ba:87:a7:6e:b0:00:
aa:0b:31:ce:24:d9:66:04:c1:36:04:91:a9:9d:42:
1d:4d:39:10:22:f9:21:04:1e:41:e9:76:01:6b:63:
9d:28:89:40:2f:e3:fc:17:94:18:41:e1:cb:f5:87:
2e:35:22:41:2b:0d:fb:25:af:0c:01:1c:5d:15:1b:
86:cf:73:0c:ab:3e:6a:40:c8:2f:60:b0:93:fa:85:
ca:43:cf:d9:36:6d:4e:31:90:ee:c5:c5:b0:6a:97:
cb:b5:49:20:52:c1:3b:44:46:40:f0:45:a5:54:2b:
ab:8b:c7:95:a3:18:87:9a:2a:68:49:e5:14:c1:a5:
43:96:62:2e:fd:34:5a:a0:ee:4c:8b:cb:0e:64:f0:
1a:8d:95:57:bb:b5:62:f8:98:30:5d:23:d2:d3:d7:
1a:61:b4:9a:91:f6:1f:91:c8:b1:63:3a:e7:e2:6a:
0a:3c:de:a2:22:0e:33:cf:85:81:b4:89:6d:a6:20:
aa:7b:e0:b5:c1:38:3f:c9:fb:d0:b5:36:c1:8e:d9:
cb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6B:5C:99:D7:7C:6A:DE:6D:A7:3C:68:32:24:56:98:32:99:E4:70
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/LWtcmdd8at5tpzxoMiRWmDKZ5HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.254.0/23
Signature Algorithm: sha256WithRSAEncryption
57:0e:ea:73:d5:ab:7c:ff:fa:fa:46:3a:88:16:53:cd:c0:f0:
5f:57:de:3f:f1:b8:d0:a5:56:13:41:de:f1:56:37:2a:86:fb:
f6:df:32:fe:c5:78:18:0b:61:e5:ca:26:de:64:48:82:cd:da:
9f:3f:37:b0:9b:0d:b2:e4:d5:62:38:b3:d6:54:db:e0:5d:51:
4b:75:a2:39:a7:a1:d5:e6:72:ff:f0:c4:db:1b:f8:f6:80:4c:
90:f9:c9:b1:b6:12:25:ef:21:37:7d:8f:67:80:9b:37:07:37:
2f:53:32:a4:fb:23:39:aa:a8:5f:ee:c0:75:1a:ab:90:a7:ce:
0d:45:5e:1b:67:b4:ca:d3:d2:cb:54:1c:ab:ad:5c:bb:a4:63:
8c:87:db:72:a7:d1:30:4a:e8:43:e6:a6:5e:78:30:8e:e1:2a:
84:ef:0f:46:fc:a6:ef:16:ac:7d:98:c6:0d:6d:1f:b9:45:f1:
73:b4:a0:75:eb:5b:0c:0c:57:84:7f:ce:e7:36:e2:c9:20:60:
72:c9:53:99:5a:18:4c:1a:d8:00:aa:59:72:57:ff:ee:7b:29:
fc:f6:d3:e8:c3:ef:9f:16:bb:86:08:a6:43:ae:23:2d:1d:bd:
94:dd:47:c6:dd:a8:4d:a1:eb:d9:70:ca:7a:91:ae:31:d8:47:
c8:02:de:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:25 2025 by rpki-client