Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/9tA-U-_KhVAuyFrObFiytbB4mqE.roa
File: 9tA-U-_KhVAuyFrObFiytbB4mqE.roa (raw, json)
Hash identifier: DzeYak8Tlf/V7UOwIHAZ2F6s1aR/zwrc09h6/3B9dow=
Subject key identifier: F6:D0:3E:53:EF:CA:85:50:2E:C8:5A:CE:6C:58:B2:B5:B0:78:9A:A1
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01BBD44B56B4B7D3FA2847DF23AD49
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/9tA-U-_KhVAuyFrObFiytbB4mqE.roa
Signing time: Sun 01 Jan 2023 15:44:45 +0000
ROA not before: Sun 01 Jan 2023 15:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12586
IP address blocks: 37.114.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:bb:d4:4b:56:b4:b7:d3:fa:28:47:df:23:ad:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6d03e53efca85502ec85ace6c58b2b5b0789aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c7:f9:f1:9d:d3:47:a3:db:e8:e6:01:c4:f4:
36:81:3f:aa:5f:ef:8a:78:ca:d0:7c:58:be:50:f6:
68:61:54:1a:ab:53:58:56:de:61:b5:7c:14:08:74:
06:a0:d2:c6:3b:92:d6:c1:b2:c5:e4:81:05:ef:3c:
d6:be:c9:97:aa:14:47:f3:1c:c9:6c:13:32:01:ff:
7c:65:ed:ce:e8:34:2c:09:66:01:6a:86:f7:be:b4:
1c:73:c8:5f:82:37:f4:06:b8:bb:7c:01:c9:8b:77:
b4:7d:3a:52:64:71:ea:79:aa:98:6e:96:cf:55:47:
2b:69:3d:7f:6e:e6:c1:d2:45:82:78:b0:bd:eb:8c:
c4:5f:ab:9e:e9:8b:ad:e5:8c:83:cc:c1:38:3c:31:
b0:21:06:56:3e:d3:03:7e:ee:a6:60:92:23:29:24:
af:fc:ca:f0:62:ce:d2:d4:73:80:56:30:93:09:ac:
a9:6c:1c:46:77:24:73:da:79:db:a2:a5:9a:35:db:
aa:42:fe:d8:9e:0c:f0:cb:df:ac:26:90:69:be:d6:
df:0b:32:19:b7:78:4b:72:32:f9:1e:44:71:fd:1e:
3f:c4:24:59:54:b2:a7:3b:de:3d:07:12:38:e5:25:
0c:a3:2c:7d:65:fd:ed:e0:f9:28:24:57:23:43:77:
a2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D0:3E:53:EF:CA:85:50:2E:C8:5A:CE:6C:58:B2:B5:B0:78:9A:A1
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/9tA-U-_KhVAuyFrObFiytbB4mqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.57.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:be:a8:71:4f:e5:e9:2c:62:19:f5:d5:18:5e:e7:1c:b4:d6:
94:11:21:14:2e:6c:b9:ec:7b:bc:93:e5:08:b2:fd:3a:b7:c6:
5f:1c:34:bc:fa:46:46:2a:9e:71:4b:a7:e1:7c:d7:34:03:26:
f4:ab:78:fd:49:bf:b8:30:35:f3:73:00:61:e5:14:53:96:04:
b1:d8:10:24:f7:90:f5:34:66:aa:8c:ca:b6:2d:51:72:c1:35:
c5:e2:e4:79:30:8a:6c:72:fa:98:90:4e:ea:c3:9e:bc:1f:f6:
20:da:00:87:40:26:5a:11:57:20:34:14:f7:5e:0d:a9:ba:0a:
9a:0a:7c:aa:a0:40:08:29:16:56:69:ce:7b:37:4f:0f:c4:25:
6e:52:58:e6:ca:61:f5:d6:cb:7b:e3:94:d7:45:d8:14:ab:d9:
94:71:c1:74:2e:c5:75:70:75:0a:0b:1c:2a:a4:c0:4b:08:43:
6c:31:37:06:62:3e:45:ab:3b:58:9b:18:54:34:cb:cf:41:23:
ec:c1:80:10:8b:a0:9c:0e:0a:ec:9b:60:6f:d4:29:d2:3f:be:
0b:75:20:6a:a9:54:2f:e9:a1:cb:bc:34:37:26:2b:71:e3:72:
b8:da:ee:f2:61:7a:0c:a9:ec:5b:85:f1:a0:50:ea:fe:eb:81:
64:05:c6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org