Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/zJOhJJtrKVfneUgOarJ-kj5lwgk.roa
File: zJOhJJtrKVfneUgOarJ-kj5lwgk.roa (raw, json)
Hash identifier: qV/2pUTVil25wzkCXvlGieIfriVX4bYABNFgz4xBCm8=
Subject key identifier: CC:93:A1:24:9B:6B:29:57:E7:79:48:0E:6A:B2:7E:92:3E:65:C2:09
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01856E01C595B090E0136C9929A813FB2849
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/zJOhJJtrKVfneUgOarJ-kj5lwgk.roa
Signing time: Sun 01 Jan 2023 15:44:47 +0000
ROA not before: Sun 01 Jan 2023 15:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210522
IP address blocks: 37.114.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:c5:95:b0:90:e0:13:6c:99:29:a8:13:fb:28:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 15:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc93a1249b6b2957e779480e6ab27e923e65c209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:85:0c:42:e2:73:41:b0:48:ca:cd:06:86:a7:
14:e8:9c:38:8b:83:19:17:8b:fc:68:7b:00:49:bf:
e7:d9:e7:fd:6d:de:11:b7:02:7b:78:50:ca:3a:28:
11:2e:11:8c:c0:ee:95:8b:17:12:ea:61:98:6a:b2:
f7:48:b5:ed:1a:c8:1b:30:3a:c0:7a:20:a9:91:bb:
5d:48:53:da:ea:e0:ac:a3:59:f6:25:ff:92:8a:b6:
18:07:df:35:24:f7:06:e4:d9:1b:e4:f9:b8:6d:28:
36:1c:e3:ec:9d:03:ec:c1:7c:14:32:90:04:e8:60:
e0:56:2d:c2:3a:70:76:24:de:f2:34:9e:ef:d8:a2:
bc:75:88:08:a0:19:4d:12:c0:35:a1:29:55:14:9e:
8d:7b:d3:40:de:e8:80:8a:ab:3f:fe:86:9f:c5:fc:
05:78:1e:e8:c6:f8:d7:db:a9:a5:45:af:1d:0a:95:
d7:53:75:e8:69:9a:33:39:7c:9b:6e:b9:05:b9:29:
f6:41:78:d0:9e:1b:61:1b:ed:c2:0d:34:1d:8d:46:
0c:eb:d0:30:2c:4c:12:97:cb:47:05:72:60:9b:93:
e5:bd:11:8b:8f:5f:85:dc:e8:1d:96:1c:a8:3a:cf:
63:87:96:86:43:0b:fe:67:f4:c2:de:6f:9f:22:97:
c0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:93:A1:24:9B:6B:29:57:E7:79:48:0E:6A:B2:7E:92:3E:65:C2:09
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/zJOhJJtrKVfneUgOarJ-kj5lwgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.41.0/24
Signature Algorithm: sha256WithRSAEncryption
37:37:4c:3f:a8:73:72:68:1e:9e:83:80:8c:ce:be:bd:96:ad:
43:3e:d1:84:39:67:4c:68:07:7c:dd:e7:2a:dc:e4:50:52:fc:
0a:01:87:79:a0:80:2a:45:03:35:fd:1c:a6:aa:39:b0:25:97:
55:9b:93:1f:f6:18:bb:92:f1:f6:d9:95:57:9b:18:a2:d7:96:
ce:0e:04:9f:86:0b:46:6e:2d:37:d2:96:51:d3:d7:c9:78:4a:
34:46:7e:3d:fb:b8:ee:98:7e:fe:9f:54:e6:8f:90:16:af:5b:
9d:9e:ad:ed:ea:e4:ce:58:d8:d8:97:d0:c7:93:24:9d:28:fe:
c0:59:23:d3:eb:9d:88:63:1f:71:02:f1:76:6f:0e:d9:9f:51:
84:ce:b1:b7:22:93:80:7c:a1:a1:d5:be:c9:08:76:e9:59:15:
4e:92:fa:fb:2f:02:1b:8a:b2:52:b2:49:14:f5:9d:67:c8:7d:
c0:e0:e0:40:ec:b7:ef:44:46:b6:11:13:67:bd:dd:25:29:30:
78:37:c2:fd:7c:92:9d:c7:2c:aa:5f:23:de:02:a3:4b:b7:12:
72:75:58:d9:15:79:25:fb:5a:7a:41:f2:8c:a5:bd:b3:2f:14:
52:fe:42:55:69:cf:b8:cc:e5:73:01:38:1c:d8:a6:cc:a2:44:
b7:08:9a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:42 2024 by rpki-client on console-fra.rpki-client.org