Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/aMdSpMJ0pBjXrthyrrzLUbAIhLM.roa
File: aMdSpMJ0pBjXrthyrrzLUbAIhLM.roa (raw, json)
Hash identifier: YIpBIP80Rw9XWEj7oR+evoUQdHVTaJPeDcgl41nVeHo=
Subject key identifier: 68:C7:52:A4:C2:74:A4:18:D7:AE:D8:72:AE:BC:CB:51:B0:08:84:B3
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 018B50BA1C6F90EA3946575719BD528BD94C
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/aMdSpMJ0pBjXrthyrrzLUbAIhLM.roa
Signing time: Sat 21 Oct 2023 05:34:16 +0000
ROA not before: Sat 21 Oct 2023 05:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31122
IP address blocks: 37.77.58.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:50:ba:1c:6f:90:ea:39:46:57:57:19:bd:52:8b:d9:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Oct 21 05:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68c752a4c274a418d7aed872aebccb51b00884b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9a:a2:7f:c2:fe:14:b7:8e:36:58:38:67:85:
03:6c:96:e3:9d:c4:7c:d1:fb:ca:4e:3b:89:93:bf:
86:ff:0a:7f:6c:64:a0:e0:eb:ba:6a:93:5d:91:70:
96:b9:3b:a7:4b:71:56:6a:1f:8f:91:d2:57:f9:8c:
14:d9:c8:2c:15:2b:c8:0e:e0:ce:a8:54:6e:ed:0f:
52:1e:38:aa:f8:3f:b6:3e:26:b4:99:1e:c3:05:f8:
1f:ad:b6:02:f1:78:48:33:5b:4f:43:0e:e0:ed:e7:
75:99:ca:fb:b8:f4:1d:fa:f3:7b:31:f0:8d:eb:b3:
26:d5:84:9d:76:6d:7c:a3:cb:e2:3a:1e:25:c8:d1:
5c:86:f4:59:8e:61:86:c7:b5:8e:87:76:1b:9f:ed:
fe:f4:8b:c1:e1:79:4e:ec:46:e3:ab:46:39:42:24:
0d:a3:df:44:30:a2:94:ee:65:c7:03:9a:ef:45:e0:
f9:b3:ec:0d:ae:c2:df:5e:a2:b5:20:f5:88:6d:b8:
20:05:55:03:42:eb:19:bc:db:60:c8:e0:16:71:b4:
27:e3:e6:02:14:3a:ef:a3:9e:99:de:4d:0c:4f:4f:
48:6a:47:dc:a5:51:53:94:af:24:08:a0:6c:a0:9d:
44:94:c0:52:22:9c:ba:93:73:53:c7:df:6d:fc:67:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C7:52:A4:C2:74:A4:18:D7:AE:D8:72:AE:BC:CB:51:B0:08:84:B3
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/aMdSpMJ0pBjXrthyrrzLUbAIhLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.58.0/23
Signature Algorithm: sha256WithRSAEncryption
52:dc:f3:80:85:d3:f2:d5:98:e4:08:77:2c:8c:b7:23:05:f0:
6f:f6:60:db:e5:48:eb:33:a8:27:b5:53:58:8f:e6:d6:7c:53:
ca:18:45:ea:9f:32:23:aa:a7:33:b9:18:46:23:7a:29:64:d8:
a1:11:8b:1b:56:2e:7f:b2:03:e1:f9:e3:98:a4:e6:ec:13:d6:
01:82:dd:81:e8:56:36:df:bf:90:d9:e7:18:62:eb:97:e4:74:
46:bd:ad:d0:77:c6:cd:cc:3d:9f:12:b7:24:03:b2:8d:66:d2:
3e:bd:70:8f:8a:a6:0f:08:8b:76:8e:d1:b9:4a:2c:22:21:0a:
e4:8b:bb:05:de:9a:0d:3d:42:6b:7b:1c:db:b1:75:af:7a:98:
5b:ac:34:6e:b8:fd:65:fb:00:10:66:fa:ef:d9:aa:0c:f1:09:
be:d6:ef:fc:fb:16:5d:b1:46:a5:d6:4b:17:be:24:2a:85:2e:
75:06:03:62:49:af:bc:1e:18:39:74:36:51:a1:d8:77:57:16:
8b:64:47:4b:6f:72:d6:c7:1f:80:c0:b4:35:22:eb:0f:c2:67:
c4:8d:e2:56:7a:f7:e3:a3:10:f6:81:09:20:5c:2f:a4:cb:b0:
c0:e4:df:7f:52:70:7a:0b:af:5f:55:8d:f3:db:dc:4e:19:de:
cc:4f:8f:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtQuhxvkOo5RldXGb1Si9lMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MGIyODNhMDUxMzk0MGQ1MjBhNjgwYjhiM2QxNGRiYzM2
Nzc3MGQwHhcNMjMxMDIxMDUzNDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGM3NTJhNGMyNzRhNDE4ZDdhZWQ4NzJhZWJjY2I1MWIwMDg4NGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpqif8L+FLeONlg4Z4UDbJbjncR8
0fvKTjuJk7+G/wp/bGSg4Ou6apNdkXCWuTunS3FWah+PkdJX+YwU2cgsFSvIDuDO
qFRu7Q9SHjiq+D+2Pia0mR7DBfgfrbYC8XhIM1tPQw7g7ed1mcr7uPQd+vN7MfCN
67Mm1YSddm18o8viOh4lyNFchvRZjmGGx7WOh3Ybn+3+9IvB4XlO7Ebjq0Y5QiQN
o99EMKKU7mXHA5rvReD5s+wNrsLfXqK1IPWIbbggBVUDQusZvNtgyOAWcbQn4+YC
FDrvo56Z3k0MT09IakfcpVFTlK8kCKBsoJ1ElMBSIpy6k3NTx99t/Gf3kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGjHUqTCdKQY167Ycq68y1GwCISzMB8GA1UdIwQY
MBaAFDgLKDoFE5QNUgpoC4s9FNvDZ3cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0Fzb09nVVRsQTFTQ21nTGl6MFUyOE5uZHcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9jMDhlMWUtZjViZC00YTFhLThhYmEt
Y2NmNjQ1NGJiMjRjLzEvYU1kU3BNSjBwQmpYcnRoeXJyekxVYkFJaExNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9jMDhlMWUtZjViZC00YTFhLThhYmEtY2NmNjQ1NGJiMjRj
LzEvT0Fzb09nVVRsQTFTQ21nTGl6MFUyOE5uZHcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBJU06MA0G
CSqGSIb3DQEBCwUAA4IBAQBS3POAhdPy1ZjkCHcsjLcjBfBv9mDb5UjrM6gntVNY
j+bWfFPKGEXqnzIjqqczuRhGI3opZNihEYsbVi5/sgPh+eOYpObsE9YBgt2B6FY2
37+Q2ecYYuuX5HRGva3Qd8bNzD2fErckA7KNZtI+vXCPiqYPCIt2jtG5SiwiIQrk
i7sF3poNPUJrexzbsXWvephbrDRuuP1l+wAQZvrv2aoM8Qm+1u/8+xZdsUal1ksX
viQqhS51BgNiSa+8Hhg5dDZRodh3VxaLZEdLb3LWxx+AwLQ1IusPwmfEjeJWevfj
oxD2gQkgXC+ky7DA5N9/UnB6C69fVY3z29xOGd7MT4+m
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org