Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/ToT7TtrpU8slf7C47m3QWvruFpw.roa
File: ToT7TtrpU8slf7C47m3QWvruFpw.roa (raw, json)
Hash identifier: wdp1olHHJDsbqMIwyNZtSLzpj40ZVhN3pLx79sjTVEk=
Subject key identifier: 4E:84:FB:4E:DA:E9:53:CB:25:7F:B0:B8:EE:6D:D0:5A:FA:EE:16:9C
Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Certificate serial: 018CCA033ACE6589129A076C65A9ECF8A6B9
Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/ToT7TtrpU8slf7C47m3QWvruFpw.roa
Signing time: Tue 02 Jan 2024 11:50:58 +0000
ROA not before: Tue 02 Jan 2024 11:50:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49434
IP address blocks: 37.44.237.0/24 maxlen: 24
37.44.236.0/24 maxlen: 24
185.142.55.0/24 maxlen: 24
185.142.54.0/24 maxlen: 24
193.178.0.0/24 maxlen: 24
193.177.162.0/24 maxlen: 24
193.177.0.0/24 maxlen: 24
2a0f:9240:1300::/40 maxlen: 40
2a0f:9240::/32 maxlen: 32
2a09:ca00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 20 Jan 2024 18:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:03:3a:ce:65:89:12:9a:07:6c:65:a9:ec:f8:a6:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d
Validity
Not Before: Jan 2 11:50:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e84fb4edae953cb257fb0b8ee6dd05afaee169c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:40:b5:fc:b7:36:9f:7e:84:c3:b2:88:fe:23:
ac:e5:9c:c4:96:ff:f7:84:be:ad:d1:c9:d2:24:fc:
5d:12:b5:ed:c1:d7:31:a6:38:4d:b8:cc:31:d6:fa:
b1:f4:4d:bd:c4:c5:00:78:88:0b:f3:8a:2b:67:76:
fe:c2:64:f0:9b:be:99:7d:2d:e6:5b:1f:c3:fa:d1:
7c:4b:7b:1d:75:3b:82:57:c7:ae:4d:22:51:18:5c:
5f:32:15:e8:89:8f:74:61:c0:17:82:4c:9a:11:b1:
c9:34:91:56:6f:36:50:03:19:d7:da:5a:3c:24:0e:
fa:eb:ca:77:07:8b:7f:a4:de:a5:ec:47:38:e8:e4:
45:6c:1c:2f:e9:fa:e8:c8:71:ce:f1:d5:0a:c6:82:
c5:69:43:49:88:69:75:1d:91:e3:b5:cb:73:0e:f5:
5a:08:59:20:e9:3c:da:6f:5a:ec:e0:a0:30:2f:d1:
d6:bd:3e:a5:26:6a:47:55:68:48:7e:17:7d:33:a5:
c2:32:7f:6c:09:09:06:62:e2:1b:a8:f7:f9:d4:71:
ad:c2:29:75:4b:86:11:cc:98:58:5f:04:05:3e:14:
fb:b3:82:c9:d8:b8:53:51:df:7e:fa:b5:e9:a6:52:
89:27:1b:25:af:11:18:b8:6f:53:3c:bb:db:f3:d0:
e6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:84:FB:4E:DA:E9:53:CB:25:7F:B0:B8:EE:6D:D0:5A:FA:EE:16:9C
X509v3 Authority Key Identifier:
keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/ToT7TtrpU8slf7C47m3QWvruFpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.236.0/23
185.142.54.0/23
193.177.0.0/24
193.177.162.0/24
193.178.0.0/24
IPv6:
2a09:ca00::/29
2a0f:9240::/32
Signature Algorithm: sha256WithRSAEncryption
70:68:07:b4:9b:dc:3d:25:f2:a4:7f:92:5f:8f:18:cf:a2:a3:
22:3c:19:10:c8:bd:6b:fb:6e:d4:b9:ab:c1:df:24:29:2e:19:
35:09:1d:d2:ef:59:32:e6:fd:e3:d1:82:cc:c8:21:39:76:c6:
8b:c2:84:d7:b6:c1:f2:f0:0c:89:42:92:0a:0c:c2:2c:bc:cd:
d5:c7:ed:9f:ee:54:e3:00:e8:40:47:1e:23:2c:67:3f:98:a6:
ff:16:b9:05:83:6d:bd:b7:ab:79:28:eb:90:fc:ba:0d:ed:e5:
17:eb:de:2a:21:a7:95:0f:b7:31:12:0d:11:15:ec:40:d9:b7:
9d:15:9d:62:39:c9:96:87:d6:e7:20:ab:7d:26:9a:d0:41:ba:
0b:45:5e:f8:06:3c:79:bc:80:45:1e:b0:e2:30:51:f9:99:42:
bc:91:07:e3:eb:73:7e:40:98:be:00:d3:27:e6:59:36:30:46:
46:ee:bb:15:34:3f:cc:08:15:ef:47:08:29:61:fb:aa:c2:df:
41:1f:77:cf:81:5d:20:5f:a2:8e:54:04:b1:e3:d7:9e:62:28:
9d:7c:2c:d7:d1:e6:79:9e:04:ab:5e:0d:e0:75:11:2d:47:c8:
0a:1b:04:49:34:e0:0f:06:f8:bf:0f:ec:da:72:02:17:12:6e:
91:73:e0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:46 2024 by rpki-client on console-ams.rpki-client.org