Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/SYt8EOHk5BcECuyruzhoi3F0ff8.roa
File: SYt8EOHk5BcECuyruzhoi3F0ff8.roa (raw, json)
Hash identifier: OJLjKZH0hqmK/+wfGs4zXPCiLrphk2zsTKz1sYiukak=
Subject key identifier: 49:8B:7C:10:E1:E4:E4:17:04:0A:EC:AB:BB:38:68:8B:71:74:7D:FF
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018ED1D0851CB710AD70A274269B061EFAD0
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/SYt8EOHk5BcECuyruzhoi3F0ff8.roa
Signing time: Fri 12 Apr 2024 10:18:07 +0000
ROA not before: Fri 12 Apr 2024 10:18:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147293
IP address blocks: 37.128.254.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 00:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d1:d0:85:1c:b7:10:ad:70:a2:74:26:9b:06:1e:fa:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Apr 12 10:18:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=498b7c10e1e4e417040aecabbb38688b71747dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:22:c7:23:5b:96:f2:a6:7b:1e:6b:c4:29:
b2:d0:04:5d:cc:5c:1d:91:9e:7e:bc:ce:73:f3:5e:
1f:2e:77:79:b6:f2:47:3c:80:b0:14:4a:01:e8:74:
b4:6c:82:fc:f2:49:06:f9:31:67:3d:ba:cd:ff:78:
0f:a4:6e:d7:ad:2e:fa:3d:62:d0:81:64:eb:92:aa:
45:1b:f2:b0:fb:16:8b:cc:7b:85:d8:32:ab:7a:8f:
db:87:58:34:cb:b8:43:33:e4:5c:e7:a0:9e:3c:6a:
a9:1d:c5:24:30:29:62:75:fb:63:17:6d:6d:0f:1e:
13:50:51:fa:40:d5:60:ad:ca:8f:49:0a:85:5b:fa:
f0:f1:83:01:e4:45:36:4f:be:0d:15:fd:b6:95:76:
b6:7e:30:84:22:cf:06:02:19:3c:56:f7:9a:a3:61:
80:cf:94:f3:b0:2c:27:ec:05:08:3b:e0:e0:4e:66:
cd:39:19:98:0c:5f:5e:f3:e0:94:03:4a:2d:f4:2a:
4e:11:12:7b:af:cf:2f:64:a8:ef:46:fd:2c:50:15:
06:27:84:dc:1f:95:81:21:cb:3f:04:30:f4:ff:7e:
41:7c:76:4d:97:16:7e:e9:63:be:c2:b9:5e:fe:ed:
7b:88:d2:98:62:64:d4:cc:1f:b6:a9:cf:1d:6c:61:
38:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8B:7C:10:E1:E4:E4:17:04:0A:EC:AB:BB:38:68:8B:71:74:7D:FF
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/SYt8EOHk5BcECuyruzhoi3F0ff8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.254.0/23
Signature Algorithm: sha256WithRSAEncryption
93:16:2b:64:d6:2a:7b:7b:12:69:f9:75:85:95:d9:e9:40:11:
7f:ca:4f:ec:15:10:4b:23:4e:70:53:ea:2a:52:1d:18:72:66:
de:c6:d4:ed:55:62:5b:85:53:e7:7b:95:00:e7:e1:2f:e7:67:
91:9e:91:b7:c0:a2:b5:90:de:72:b2:b1:9b:7e:a1:2a:44:73:
13:96:07:ff:8c:37:4b:62:d2:e7:80:bc:08:82:39:ad:7f:d5:
84:65:95:02:ad:e3:43:8f:e4:43:f8:05:b8:1f:31:cf:b7:a5:
2e:25:02:51:58:7b:fb:bb:9e:cc:bd:2f:95:65:45:b0:1d:be:
13:2b:9b:22:3c:b7:40:78:59:7c:e9:90:a0:75:39:af:8b:39:
06:01:f0:9b:04:76:47:19:73:d8:83:4c:75:aa:37:d1:7c:c3:
d8:85:bd:d1:dd:49:12:39:46:23:49:26:8c:2d:c1:da:f6:a6:
96:e2:f4:03:24:f2:61:19:ed:38:19:50:b7:99:d4:af:d2:c9:
fa:df:bd:62:4b:3e:ea:18:b5:76:62:f5:6f:89:65:5a:38:63:
93:de:35:b0:7a:a4:c6:22:41:7a:d3:07:5e:9e:57:f4:af:5b:
f3:74:ea:a7:d3:53:eb:ac:99:5e:02:17:33:a1:a8:02:80:28:
00:8c:8c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:33 2025 by rpki-client