Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/aUlwdv9xU7bl01A0EjGu0BeTvPg.roa
File: aUlwdv9xU7bl01A0EjGu0BeTvPg.roa (raw, json)
Hash identifier: RsH5ZKua9rIgoktAHUam6iKIXoyXKkuWQ3CNpxG2PMc=
Subject key identifier: 69:49:70:76:FF:71:53:B6:E5:D3:50:34:12:31:AE:D0:17:93:BC:F8
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 018B153E3144049615CC57A69C5461F5678D
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/aUlwdv9xU7bl01A0EjGu0BeTvPg.roa
Signing time: Mon 09 Oct 2023 16:21:19 +0000
ROA not before: Mon 09 Oct 2023 16:21:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207252
IP address blocks: 37.114.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:15:3e:31:44:04:96:15:cc:57:a6:9c:54:61:f5:67:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Oct 9 16:21:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69497076ff7153b6e5d350341231aed01793bcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:45:c2:c4:39:78:8d:c5:f2:77:4c:a4:ba:2a:
04:da:3e:b3:2f:8f:f9:ce:d9:28:e8:80:e9:10:dc:
b3:a2:70:78:f9:be:8b:2a:e8:88:79:00:c0:14:b6:
c1:ed:2e:e0:8c:f0:3d:57:e8:19:11:21:aa:46:7b:
b3:bd:5e:f7:6d:e5:99:f1:e7:18:59:41:83:7c:49:
37:d7:9f:e6:da:1e:d0:59:f0:bd:b1:3c:50:2a:6f:
46:2b:27:c2:92:61:3e:55:7d:45:d7:08:f2:ca:f4:
6f:00:e5:fa:b1:72:2c:af:aa:7a:ba:fd:a1:df:38:
00:38:9a:b1:58:25:a3:0e:75:54:41:e8:8f:18:fb:
1f:ad:97:c1:05:12:a6:0d:10:51:8c:a5:a7:d1:24:
72:71:18:99:52:cf:1c:85:b7:f0:07:8f:6f:a3:39:
f2:df:8b:14:57:9e:c1:35:30:31:a9:4e:6c:86:c7:
23:c8:85:b4:2d:10:ce:15:c7:ce:e8:1d:71:8d:88:
88:d4:63:44:7b:a0:4c:f4:b0:54:83:e1:ca:a9:ce:
30:bc:d5:bd:dc:c9:5c:4d:9d:be:61:cc:7e:2f:8d:
6b:77:5e:89:2b:63:d7:d7:7c:f8:46:34:25:3a:a9:
c9:5d:db:af:99:24:d2:7a:8b:e1:76:5d:32:a3:82:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:49:70:76:FF:71:53:B6:E5:D3:50:34:12:31:AE:D0:17:93:BC:F8
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/aUlwdv9xU7bl01A0EjGu0BeTvPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.40.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:30:d3:74:f5:33:7a:6d:5a:5f:8e:5b:82:c9:7c:12:10:47:
bf:10:5b:42:95:54:8a:5d:09:7b:89:da:4f:8b:b5:84:57:0c:
a2:b3:af:2f:6b:e8:6d:e7:d1:d1:a8:18:db:7b:e7:5d:e3:42:
12:e0:14:b0:31:4c:0f:4b:1f:8b:8b:9a:a9:11:ac:bf:a1:62:
3d:9f:04:fe:25:cc:d7:5f:66:a2:6d:d6:f8:ac:80:c9:b4:f5:
aa:e0:0c:9f:f8:a6:dc:ce:6b:bc:7f:34:26:ef:81:96:7c:ee:
12:48:2a:0b:87:d6:ec:04:9b:98:f9:04:a1:f8:37:29:91:12:
24:f6:e6:4b:76:3a:62:47:14:cf:62:ee:c0:4b:00:60:3c:d9:
79:75:8c:a7:85:b7:ef:ff:96:52:83:36:5f:86:e1:f3:3d:17:
c0:69:01:b2:47:fa:9c:b6:a0:ee:fd:56:bb:67:b3:b9:ae:ec:
46:cc:23:cf:bb:9f:52:53:af:c1:21:8e:95:24:e1:5b:df:5c:
c0:f8:06:75:4b:7d:e6:a7:39:d5:ec:7d:d6:68:4a:5b:a3:63:
02:bb:69:f3:f2:e9:84:51:6d:78:1a:b5:4c:b2:ee:66:ae:46:
04:5c:0b:42:55:79:04:ef:80:45:82:93:cd:1d:6e:98:6a:01:
ef:1a:61:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org