Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/UjZTMgPQXadrgiL7Szop9L-oE48.roa
File: UjZTMgPQXadrgiL7Szop9L-oE48.roa (raw, json)
Hash identifier: kTW/vgITiwf+lcjr/0QnpvQpjQK7/fOXASKlHsjJvlU=
Subject key identifier: 52:36:53:32:03:D0:5D:A7:6B:82:22:FB:4B:3A:29:F4:BF:A8:13:8F
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01941FFA3EE22C18346E5D3EEE1330D4CF8B
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/UjZTMgPQXadrgiL7Szop9L-oE48.roa
Signing time: Wed 01 Jan 2025 03:48:01 +0000
ROA not before: Wed 01 Jan 2025 03:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215783
IP address blocks: 37.114.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Feb 2025 11:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:3e:e2:2c:18:34:6e:5d:3e:ee:13:30:d4:cf:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 03:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5236533203d05da76b8222fb4b3a29f4bfa8138f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:81:5a:35:4b:05:d9:42:8d:c9:c2:e6:96:61:
98:b7:f4:be:3b:25:e8:97:be:bb:52:25:4d:33:32:
b7:37:5a:3c:88:02:35:4c:f6:65:cb:b7:d7:15:19:
4c:a6:f9:fa:2b:b1:d5:ea:8d:ca:b8:f3:07:aa:e8:
da:0e:35:41:4c:f6:8a:ce:29:b4:8f:90:89:ec:95:
68:c4:e3:f8:80:3f:22:6c:62:9c:06:7b:87:21:3e:
62:21:e6:1c:0a:d5:42:67:59:2e:62:14:f8:4a:40:
a0:cd:ea:ec:df:ca:15:6e:56:cf:74:b7:52:ae:23:
bb:ac:ab:3c:ed:5f:af:53:0d:45:e8:8d:d7:fb:98:
9e:1c:36:72:8e:ad:df:56:d8:e7:f2:5e:99:16:dc:
f1:10:03:ee:94:9b:b5:03:bb:55:54:58:9f:7e:9b:
86:27:39:42:73:ef:36:1c:62:43:24:02:9c:61:b8:
26:1d:ce:03:25:3f:21:b3:77:f5:c4:ca:e8:32:0f:
74:d6:12:44:41:4b:6a:86:05:d4:1a:36:a6:23:16:
7f:44:5f:41:ac:bb:43:9b:aa:13:93:fa:3a:74:b1:
5b:03:39:90:81:f2:23:67:e6:63:12:d2:79:b2:73:
e7:7f:e2:1b:89:b8:9a:67:8a:11:d8:53:29:94:1a:
f6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:36:53:32:03:D0:5D:A7:6B:82:22:FB:4B:3A:29:F4:BF:A8:13:8F
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/UjZTMgPQXadrgiL7Szop9L-oE48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.36.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c6:d9:ff:c2:c5:62:11:5c:9c:51:8a:7d:db:04:6f:09:b0:
ff:d2:97:71:e7:89:d8:4c:8b:f3:2d:c8:1e:c6:07:a5:ac:c1:
be:43:41:3f:08:29:63:fc:24:68:32:fc:3a:10:b5:7f:b6:0d:
06:46:f8:36:d8:b2:93:c3:61:61:37:de:66:1d:9f:86:3f:b9:
c6:4e:4b:f6:91:9b:f4:69:fb:8f:e0:88:4a:ae:37:15:49:f3:
80:92:c4:9e:6e:37:7a:6b:1d:65:78:69:c4:0f:e3:85:c5:a6:
7e:f0:4a:dc:c7:c5:12:3b:04:27:62:7c:b2:65:ca:23:ae:8f:
7f:54:6e:31:e0:12:5f:bf:82:3c:89:cd:ad:fc:22:23:4c:31:
2d:3b:f1:82:56:72:b9:82:2e:69:64:8f:e6:29:be:f3:33:db:
87:f2:21:df:72:6a:dc:9e:e6:d1:6b:0c:57:38:85:a0:be:9a:
a5:d1:63:df:66:10:72:53:c1:34:93:d2:4c:25:61:53:45:81:
97:8e:fe:13:91:87:d2:8c:53:81:00:8b:de:8b:f5:e0:59:b0:
b3:70:1c:8f:2b:e7:d0:34:d3:d3:96:ff:94:b6:31:b7:1e:4f:
0c:6e:37:3d:9d:94:73:77:b1:23:ae:18:ea:bc:9b:64:6b:ce:
95:77:d1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:31:55 2025 by rpki-client