Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8yp3mkWNSiiUkqp6AkJjvoZZCr8.roa
File: 8yp3mkWNSiiUkqp6AkJjvoZZCr8.roa (raw, json)
Hash identifier: xa5biauYHAhljGwC21nr+VS2mEftJ3tRBVibkvgpYJA=
Subject key identifier: F3:2A:77:9A:45:8D:4A:28:94:92:AA:7A:02:42:63:BE:86:59:0A:BF
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 0191B782B72B5C66B2D4121D60251EB44188
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8yp3mkWNSiiUkqp6AkJjvoZZCr8.roa
Signing time: Tue 03 Sep 2024 10:51:22 +0000
ROA not before: Tue 03 Sep 2024 10:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58087
IP address blocks: 37.114.46.0/24 maxlen: 24
37.114.50.0/24 maxlen: 24
37.114.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 14:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b7:82:b7:2b:5c:66:b2:d4:12:1d:60:25:1e:b4:41:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Sep 3 10:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f32a779a458d4a289492aa7a024263be86590abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:81:50:36:36:06:77:d0:9c:6f:01:27:d9:6e:
f5:4a:a0:06:d8:30:a1:88:ce:7f:02:0a:90:a1:7d:
be:01:b0:4e:3f:e3:5b:b7:19:b0:31:4e:b5:f0:f8:
49:9d:3d:c1:45:79:86:f4:af:77:08:bf:91:be:27:
97:93:f6:8a:21:af:e2:a5:42:d2:e4:6e:3b:a7:28:
d7:65:57:14:e1:7b:2f:fc:c1:9c:e2:7a:86:f3:97:
99:b0:2f:1c:96:93:f1:e3:55:f1:c3:af:94:39:cf:
b6:5a:a7:f5:29:91:01:24:7c:f4:ee:0f:c2:3d:ab:
0d:12:a7:43:c6:e8:66:16:56:2e:71:1a:4f:87:c5:
fc:bd:30:cf:58:ef:ca:5a:94:bd:39:0d:2e:95:35:
cb:c0:de:0f:da:32:29:34:a8:7b:98:8d:14:c9:12:
0d:e0:2b:d0:59:3c:75:29:c9:be:ec:41:b7:52:e4:
14:e3:bd:6c:24:c2:14:7f:90:d7:e9:b5:4b:63:93:
9a:d7:19:c1:c0:c1:f6:67:87:0b:10:11:66:45:fb:
14:c2:0e:c6:7e:e2:59:81:e4:b5:0c:14:6d:68:80:
0a:1d:87:61:80:ef:cc:09:68:46:9f:44:e0:5f:7c:
7d:5b:a8:52:99:9a:b3:66:13:0c:5c:79:a1:25:dc:
31:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2A:77:9A:45:8D:4A:28:94:92:AA:7A:02:42:63:BE:86:59:0A:BF
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/8yp3mkWNSiiUkqp6AkJjvoZZCr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.46.0/24
37.114.50.0/24
37.114.63.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a1:90:cd:54:e4:12:cd:ff:d6:0e:9d:30:6c:2f:dd:d4:5d:
62:5c:67:b5:79:5a:1d:69:bb:ad:c3:6e:43:15:c1:12:ae:b2:
94:8f:7e:c8:a7:6d:c3:a4:58:e6:0c:31:f8:4e:f6:62:44:55:
84:fb:79:57:9c:93:6e:45:cb:ff:ae:19:f3:3b:40:9b:66:e6:
22:e0:3c:de:f4:a1:ba:ad:cf:9f:3f:0f:30:e7:f2:fb:ca:8e:
96:ce:3a:58:79:79:95:59:46:66:26:83:88:98:54:d0:7d:1e:
ac:ca:45:ef:a5:8b:6c:15:a1:43:b7:2d:92:c3:ea:36:c2:21:
29:cd:90:e3:a3:f4:95:bc:fc:cb:c7:1c:bf:ec:34:e6:43:57:
a3:86:b3:df:82:72:78:02:2e:a7:ef:b8:17:78:ca:9d:e4:94:
a4:e5:b5:76:32:cb:8e:79:ef:9b:c4:70:b1:f6:dd:35:ec:f9:
40:a3:c9:a6:7c:ed:f5:96:35:61:d0:6d:d5:6b:7e:37:4a:e1:
0f:70:eb:b1:a8:0c:6c:93:c0:87:28:09:62:29:0a:49:bc:3d:
e8:29:a8:d1:92:b0:5c:77:82:39:4d:3a:a1:93:2f:bc:ec:34:
e8:d3:66:3e:a7:69:8a:28:bb:e6:3f:66:57:12:0d:66:d2:e4:
59:9c:0f:bb
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZG3grcrXGay1BIdYCUetEGIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NjU5M2I3NDdlNzZhNTY0OTI1MTFiYjM2MTJlNGQ1ZTRj
YmU3ZWMwHhcNMjQwOTAzMTA1MTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzJhNzc5YTQ1OGQ0YTI4OTQ5MmFhN2EwMjQyNjNiZTg2NTkwYWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoFQNjYGd9CcbwEn2W71SqAG2DCh
iM5/AgqQoX2+AbBOP+NbtxmwMU618PhJnT3BRXmG9K93CL+RvieXk/aKIa/ipULS
5G47pyjXZVcU4Xsv/MGc4nqG85eZsC8clpPx41Xxw6+UOc+2Wqf1KZEBJHz07g/C
PasNEqdDxuhmFlYucRpPh8X8vTDPWO/KWpS9OQ0ulTXLwN4P2jIpNKh7mI0UyRIN
4CvQWTx1Kcm+7EG3UuQU471sJMIUf5DX6bVLY5Oa1xnBwMH2Z4cLEBFmRfsUwg7G
fuJZgeS1DBRtaIAKHYdhgO/MCWhGn0TgX3x9W6hSmZqzZhMMXHmhJdwxzwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPMqd5pFjUoolJKqegJCY76GWQq/MB8GA1UdIwQY
MBaAFCllk7dH52pWSSURuzYS5NXky+fsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMt
MWI3Y2JiMDhkNzNmLzEvOHlwM21rV05TaWlVa3FwNkFrSmp2b1paQ3I4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9jNThiZGMtMTRlNy00OTljLTlkOWMtMWI3Y2JiMDhkNzNm
LzEvS1dXVHQwZm5hbFpKSlJHN05oTGsxZVRMNS13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAJXIuAwQA
JXIyAwQAJXI/MA0GCSqGSIb3DQEBCwUAA4IBAQCroZDNVOQSzf/WDp0wbC/d1F1i
XGe1eVodabutw25DFcESrrKUj37Ip23DpFjmDDH4TvZiRFWE+3lXnJNuRcv/rhnz
O0CbZuYi4Dze9KG6rc+fPw8w5/L7yo6WzjpYeXmVWUZmJoOImFTQfR6sykXvpYts
FaFDty2Sw+o2wiEpzZDjo/SVvPzLxxy/7DTmQ1ejhrPfgnJ4Ai6n77gXeMqd5JSk
5bV2MsuOee+bxHCx9t017PlAo8mmfO31ljVh0G3Va343SuEPcOuxqAxsk8CHKAli
KQpJvD3oKajRkrBcd4I5TTqhky+87DTo02Y+p2mKKLvmP2ZXEg1m0uRZnA+7
-----END CERTIFICATE-----
Generated at Thu Sep 5 16:46:35 2024 by rpki-client on console-fra.rpki-client.org