Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/YQdNTApMwyp142uXkIFvARnNaec.roa
File: YQdNTApMwyp142uXkIFvARnNaec.roa (raw, json)
Hash identifier: tn2ptqV4i9pAuva9LiLgs/Ncxc+85Wt0WPnZ9sKFz+Q=
Subject key identifier: 61:07:4D:4C:0A:4C:C3:2A:75:E3:6B:97:90:81:6F:01:19:CD:69:E7
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01C0F7C263F8BF7A794E2E80CD655B
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/YQdNTApMwyp142uXkIFvARnNaec.roa
Signing time: Sun 01 Jan 2023 15:44:46 +0000
ROA not before: Sun 01 Jan 2023 15:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48314
IP address blocks: 37.114.61.0/24 maxlen: 24
2a00:ccc1:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Jan 2023 15:56:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:c0:f7:c2:63:f8:bf:7a:79:4e:2e:80:cd:65:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61074d4c0a4cc32a75e36b9790816f0119cd69e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:99:a6:af:14:a8:b7:78:7d:56:0a:26:ed:a4:
21:ab:3f:92:b4:fd:4d:5a:35:62:bf:20:1a:6f:2f:
bf:67:d8:d5:07:38:82:6a:f2:2b:5e:0c:44:e4:1c:
54:a7:61:68:d5:7f:a9:cb:44:84:62:2d:b0:f8:95:
f0:0b:f5:ae:8a:51:fa:ef:9e:64:c3:c4:8a:b1:0d:
f5:07:9f:aa:0c:dd:a0:3b:3e:e0:15:2e:70:70:85:
c2:a2:b8:70:b3:2c:4e:b0:5f:cb:89:1f:d6:66:0c:
31:13:d4:5a:17:50:32:cf:48:d1:70:ec:a2:2f:c3:
96:67:61:26:93:4e:3c:3d:df:dc:5d:1a:3c:a9:a9:
e6:00:a2:aa:a0:18:4a:24:4a:60:01:03:b6:db:01:
2b:fc:0b:bc:b8:c7:94:4b:f3:57:4d:64:0b:58:8b:
c4:e5:1d:78:46:14:55:b2:81:95:f6:6e:ed:b0:35:
8a:11:d1:25:b6:03:65:dd:08:38:34:76:42:54:ed:
c3:13:83:cc:d1:06:28:a7:60:fb:ce:89:1f:78:8c:
b0:2f:c5:61:6a:b7:b1:29:f7:26:17:be:25:b7:08:
97:9b:44:9d:89:cf:b7:88:d0:31:0e:f4:4f:3d:b6:
be:0c:0e:f0:04:a9:17:c2:28:ba:52:84:26:7f:3c:
4d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:07:4D:4C:0A:4C:C3:2A:75:E3:6B:97:90:81:6F:01:19:CD:69:E7
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/YQdNTApMwyp142uXkIFvARnNaec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.61.0/24
IPv6:
2a00:ccc1:5::/48
Signature Algorithm: sha256WithRSAEncryption
aa:99:79:5f:87:f8:32:47:dd:60:45:fd:02:a0:48:48:cb:9c:
5f:4d:c1:d6:c4:03:68:0d:94:f8:6f:a9:67:8e:17:f7:d2:1f:
bc:f5:5a:ac:de:44:8d:60:cb:4e:2f:9a:60:fb:f1:a2:b3:f4:
15:ec:0b:d5:05:91:f2:e9:a5:d3:5a:a3:ff:81:9d:97:d0:0a:
1d:33:00:c8:c9:82:1f:40:55:ca:03:74:0b:20:03:88:31:53:
ca:1a:88:1d:91:79:42:50:21:a9:ec:0b:90:b7:ef:94:dc:84:
b6:1f:31:cb:62:6e:eb:4e:73:e4:7a:30:73:49:da:32:92:99:
64:cd:58:63:78:50:c8:dd:a7:d5:21:4f:6c:77:9a:75:c8:d0:
34:e1:f8:8c:6c:8b:bc:ca:f4:74:5a:a4:ad:71:99:27:1a:cd:
17:45:5d:00:1b:ea:a3:ee:e3:cc:b8:30:cd:b5:30:29:c9:a6:
3b:19:0e:44:9c:e7:0f:fe:1b:18:16:6b:dc:da:bf:9f:cf:80:
36:8c:62:8d:c0:8f:a9:e3:8a:c4:fe:2a:c8:92:33:fb:de:57:
1e:71:55:b3:14:a9:da:ca:63:ad:2e:c6:74:1d:54:2e:ca:84:
e8:c2:08:7e:32:0e:93:0a:74:b4:c1:bf:e7:8a:db:b7:e4:d4:
98:93:55:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org