Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/_dEetw8l8NNT4Sk8S95CnEz9whI.roa
File: _dEetw8l8NNT4Sk8S95CnEz9whI.roa (raw, json)
Hash identifier: uNXVad82WPF8SeuFYJ9zMnTpNZmnERSnEJJ8pG/il5M=
Subject key identifier: FD:D1:1E:B7:0F:25:F0:D3:53:E1:29:3C:4B:DE:42:9C:4C:FD:C2:12
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 018C2E89F414A17D60D9FC0FB88A80431879
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/_dEetw8l8NNT4Sk8S95CnEz9whI.roa
Signing time: Sun 03 Dec 2023 07:17:21 +0000
ROA not before: Sun 03 Dec 2023 07:17:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212685
IP address blocks: 37.114.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:2e:89:f4:14:a1:7d:60:d9:fc:0f:b8:8a:80:43:18:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Dec 3 07:17:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd11eb70f25f0d353e1293c4bde429c4cfdc212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:d4:ba:5b:aa:98:33:ec:cc:d0:7f:d7:89:
36:e3:d0:3d:fe:6b:db:bd:f9:74:7b:5b:14:ad:01:
d4:2e:70:54:ae:bf:62:a8:50:13:e7:fc:5f:b2:c4:
c2:bd:7e:97:4e:e9:67:01:63:0b:00:b6:9a:a8:11:
57:5e:aa:88:df:f5:d7:66:34:6e:44:1c:73:de:5b:
a9:2f:5d:01:d1:ce:3e:bc:c8:22:49:0a:a0:ec:b7:
62:37:d0:e1:75:db:5d:3a:87:b8:05:bd:be:2e:2c:
5e:ba:6f:b9:e4:7e:d0:2b:bb:41:2d:f3:72:44:4e:
40:f6:c9:dc:51:9b:1e:75:27:8f:77:1a:d7:6b:95:
19:3a:8b:84:be:e7:34:87:a6:19:09:e7:57:b0:d7:
9f:f1:32:8b:2e:24:50:1e:20:f4:f7:d1:3d:0b:fc:
39:1d:6d:0a:be:14:98:1e:8f:18:d7:1c:da:84:93:
1e:fc:3d:df:0b:41:84:46:ee:4a:46:71:64:e7:0b:
11:a5:be:e9:68:1a:8e:bd:5b:75:68:07:cc:d3:2a:
bc:dd:97:77:8f:3d:7e:44:05:fd:e8:d9:43:f3:40:
87:0c:11:46:80:cc:e0:fc:c3:27:05:34:24:73:bb:
6a:5f:60:19:e3:66:62:ac:12:57:b3:e6:35:dc:ce:
57:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D1:1E:B7:0F:25:F0:D3:53:E1:29:3C:4B:DE:42:9C:4C:FD:C2:12
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/_dEetw8l8NNT4Sk8S95CnEz9whI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.36.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d3:f3:02:0a:f9:ea:95:80:b1:82:10:73:a9:68:9f:b1:41:
ed:ce:35:b0:14:6b:fa:91:13:48:3a:54:2e:6b:e1:ab:f6:5c:
08:d6:46:95:1b:50:5e:1b:ec:30:c6:57:1f:dd:cd:24:11:fc:
b8:51:fa:be:4c:b0:c1:2f:87:c1:ab:d5:da:53:25:35:6a:a0:
f7:6e:37:21:61:58:18:34:95:c5:09:3a:62:57:d1:39:4a:d9:
85:ed:09:93:02:bd:2c:d7:aa:7b:e3:17:42:12:b0:16:2d:56:
1e:32:8c:80:bc:83:b5:78:5d:c9:71:78:6e:39:df:e4:26:0f:
a7:a8:b1:ca:97:fc:80:03:85:3b:a4:44:42:b7:a6:c5:bd:51:
a0:45:d6:f8:22:c2:7d:6e:db:2b:d2:29:ed:45:1b:86:d9:9f:
0d:37:39:d0:93:34:4e:09:28:5e:f4:b9:c6:e0:52:f0:31:8b:
21:bf:df:b8:3f:11:04:ef:85:51:49:b7:93:98:7d:d3:a4:5d:
2d:96:c4:1f:41:ac:69:1f:fd:0e:5f:70:f5:a8:6a:cd:bf:90:
a3:ba:1a:3a:88:18:26:e3:e4:55:c8:72:ed:8b:79:0c:31:5b:
64:dc:cb:9a:7a:10:17:78:bb:53:dd:81:dd:33:2f:0a:a5:6b:
ff:63:54:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org