Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/FhxM7BUzer8n6eon4MVq4eMVVJQ.roa
File: FhxM7BUzer8n6eon4MVq4eMVVJQ.roa (raw, json)
Hash identifier: voIno4y4+oMEM6sINUSxJ66i2G7vqN9E9+L5BFTEpFQ=
Subject key identifier: 16:1C:4C:EC:15:33:7A:BF:27:E9:EA:27:E0:C5:6A:E1:E3:15:54:94
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 0190BF50627EE8DCEC5D28E25C9056941CEF
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/FhxM7BUzer8n6eon4MVq4eMVVJQ.roa
Signing time: Wed 17 Jul 2024 06:10:34 +0000
ROA not before: Wed 17 Jul 2024 06:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35766
IP address blocks: 37.130.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 08:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:50:62:7e:e8:dc:ec:5d:28:e2:5c:90:56:94:1c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Jul 17 06:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=161c4cec15337abf27e9ea27e0c56ae1e3155494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:96:2e:00:01:84:42:59:0c:8d:a0:f3:31:a3:
6e:21:78:36:bb:fb:43:eb:45:ce:a3:3a:49:30:3f:
74:2d:bc:de:82:74:b0:24:cc:13:f2:d9:0d:e8:0d:
5e:70:93:90:15:bb:d4:c6:3c:46:0f:fb:94:5b:9a:
f1:8f:f0:29:d3:5a:4d:0a:c5:88:11:4d:94:ae:14:
5e:be:25:0f:4b:33:33:b2:f4:82:47:31:17:80:8f:
78:38:91:b0:bd:20:18:be:6b:b4:3e:fe:2f:13:94:
37:bd:30:67:3b:56:ca:c1:74:da:07:03:03:9f:7d:
1f:da:8e:dc:61:ac:10:d8:c7:2c:c3:62:eb:99:5b:
31:3f:9b:3e:77:74:f8:97:2f:4a:ff:4c:fb:5e:18:
37:5b:ad:2a:c3:45:3e:b5:47:b4:2a:65:76:59:d1:
0d:ef:4a:95:c5:cf:a9:27:65:33:db:01:b7:79:4f:
e6:7b:4f:f2:23:c3:bd:78:10:d6:2d:34:4c:80:16:
f4:d6:14:d3:71:2c:0b:12:bf:22:16:d8:66:53:34:
27:a9:c7:6e:13:47:2d:8a:cc:64:8e:4b:31:2a:77:
fc:c3:6b:07:e6:f0:3c:36:67:f2:c0:3b:da:dc:cf:
ff:50:6a:21:01:1c:c2:7e:2e:76:e5:17:b4:a2:00:
67:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1C:4C:EC:15:33:7A:BF:27:E9:EA:27:E0:C5:6A:E1:E3:15:54:94
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/FhxM7BUzer8n6eon4MVq4eMVVJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:0f:08:ad:8d:7a:4f:a2:44:3e:b3:20:40:10:d0:0a:7d:3d:
07:2a:c0:40:3f:09:07:87:e0:9a:f4:3f:b6:27:b4:72:c3:f2:
df:c1:6c:a6:fe:f6:8a:1f:5f:db:6d:12:81:e6:83:8a:07:49:
24:aa:14:5f:77:22:1f:3e:ed:c7:d6:66:3f:cf:d1:f6:bd:06:
7a:5a:2b:59:f2:57:dd:66:73:11:f7:63:9e:c5:79:b8:3e:ef:
90:3c:f1:98:c5:15:23:2e:18:cc:6a:05:44:28:42:17:16:0e:
85:b0:d9:97:1d:b8:fb:13:a7:73:86:80:6e:f5:7d:6a:56:ea:
08:fd:60:77:7a:b3:24:8b:81:03:d0:0d:47:2f:f3:52:9a:97:
68:2d:90:54:25:ab:72:50:b5:78:0e:42:84:79:e6:e0:35:02:
1f:14:0b:9b:6c:dc:27:a5:96:65:e7:4b:ce:0a:35:93:b6:c5:
ee:41:19:b4:b7:02:6f:7f:45:89:6f:0f:e9:6d:aa:1e:4d:ff:
f6:f9:55:5c:3e:ab:0a:24:1e:ae:b7:24:5d:b2:a7:1e:29:31:
4b:ca:73:9e:e7:bd:94:cd:06:0c:da:9a:18:be:4b:1b:f8:1d:
7d:94:64:70:13:f5:4f:f3:76:ad:d8:16:6f:49:71:e4:f7:3a:
85:a9:1b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:11:37 2024 by rpki-client on console-fra.rpki-client.org