Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/o1PRUNO4V4dhQ8N_rO7ngNKjuCo.roa
File: o1PRUNO4V4dhQ8N_rO7ngNKjuCo.roa (raw, json)
Hash identifier: r2h8fcZp3yR7T7TdLdH7G9LwTYikcaJg4xut4NswqqE=
Subject key identifier: A3:53:D1:50:D3:B8:57:87:61:43:C3:7F:AC:EE:E7:80:D2:A3:B8:2A
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01C6116D950C4EA3EB9EA98EC5932D
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/o1PRUNO4V4dhQ8N_rO7ngNKjuCo.roa
Signing time: Sun 01 Jan 2023 15:44:48 +0000
ROA not before: Sun 01 Jan 2023 15:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 37.114.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 11:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:c6:11:6d:95:0c:4e:a3:eb:9e:a9:8e:c5:93:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a353d150d3b857876143c37faceee780d2a3b82a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:f9:5b:cd:fc:d6:aa:9c:e5:19:1c:3b:23:
e0:35:36:0c:15:bf:96:f8:6a:1b:b9:1b:42:7c:a6:
0a:ab:49:4a:19:5e:74:de:81:40:ca:34:db:51:ba:
e4:42:ac:7c:60:4f:95:df:60:88:49:d8:3c:12:dc:
65:05:29:5c:a6:40:82:f4:09:3c:ad:f2:df:35:cc:
97:08:86:33:00:eb:4a:19:f2:25:a3:76:66:d2:11:
92:d4:9a:9e:52:f6:10:2c:45:2c:61:67:7a:e2:0c:
d0:25:eb:cf:bb:13:b3:e7:1f:31:aa:da:cc:40:9d:
66:be:5f:58:ef:47:a9:9c:f4:b0:8d:df:60:9d:fe:
2a:2a:6b:78:88:98:9d:5a:75:3b:5c:1c:33:2e:fc:
46:53:81:c5:6a:55:90:f7:10:b8:39:06:66:b7:67:
8d:00:61:bb:c7:5a:85:0b:17:2a:58:ae:73:0e:10:
a8:9a:77:84:18:42:17:36:e8:28:3b:36:62:d1:3c:
a1:21:d2:bb:f4:f6:a9:e1:31:d2:12:fb:fd:b8:39:
41:0d:f7:df:5c:c8:14:cc:6b:3c:dc:f8:15:d5:b2:
ff:a6:fc:c7:b2:9b:52:c6:40:d5:9c:5a:07:11:f5:
e9:b5:fa:fe:86:1b:b2:29:ed:fc:0b:95:3e:48:8c:
1b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:53:D1:50:D3:B8:57:87:61:43:C3:7F:AC:EE:E7:80:D2:A3:B8:2A
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/o1PRUNO4V4dhQ8N_rO7ngNKjuCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:4c:bf:65:e6:52:51:2d:c8:e6:86:fc:46:7c:8b:fe:44:fc:
35:5d:be:8b:23:02:0f:92:15:95:e3:4e:3a:b0:62:f4:a1:2c:
79:9e:09:63:5a:c7:27:7c:6d:33:e4:e3:02:1d:64:fc:2a:2f:
73:9b:93:92:a3:bb:3d:aa:80:39:07:3f:e4:aa:02:8c:fa:23:
b2:9b:88:1d:4c:69:1b:5c:29:e1:26:f3:ff:41:3b:9d:0d:2e:
71:29:6f:60:98:73:96:3c:97:ca:06:75:64:a2:22:7b:47:f1:
ea:03:1a:4d:f9:65:3a:d0:3a:49:91:3d:66:82:f1:77:87:90:
29:0e:49:c7:42:24:52:8a:c7:83:3d:56:71:96:30:d7:e8:14:
ba:1b:8f:47:1e:78:76:45:29:15:fd:6c:57:a1:86:32:3a:6e:
57:5c:8e:72:d7:31:18:84:8c:e0:6c:28:28:a6:9e:19:7a:f0:
7a:3e:e3:b5:f1:c5:65:a3:77:45:88:11:5d:bd:e3:1f:4e:30:
87:c0:47:a7:31:e6:d8:a7:14:ac:32:e0:83:34:e9:1c:dc:bc:
52:5f:62:4a:2e:14:aa:db:d6:71:4a:a8:04:e8:bd:a0:c8:a8:
c9:3e:8d:04:4a:d1:7c:12:87:ec:75:9f:1f:c0:8b:a3:df:93:
21:e0:34:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org