Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/i8dQIYwsx3uSU2MFv9lzYvrlZ0I.roa
File: i8dQIYwsx3uSU2MFv9lzYvrlZ0I.roa (raw, json)
Hash identifier: Zu81YQ5NdyoPK9RnHtFgtY5GI7dODuhHlsgxpXT6Wx4=
Subject key identifier: 8B:C7:50:21:8C:2C:C7:7B:92:53:63:05:BF:D9:73:62:FA:E5:67:42
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 018CF398B6512CF80A248AFD994CE609DB8E
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/i8dQIYwsx3uSU2MFv9lzYvrlZ0I.roa
Signing time: Wed 10 Jan 2024 13:38:40 +0000
ROA not before: Wed 10 Jan 2024 13:38:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210636
IP address blocks: 37.77.58.0/24 maxlen: 24
37.77.56.0/24 maxlen: 24
37.77.59.0/24 maxlen: 24
37.77.62.0/24 maxlen: 24
37.77.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 07:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:98:b6:51:2c:f8:0a:24:8a:fd:99:4c:e6:09:db:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 10 13:38:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8bc750218c2cc77b92536305bfd97362fae56742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:83:a4:b1:57:42:26:b4:f6:39:d8:0a:b7:c6:
c4:21:18:25:36:ba:b2:29:4d:72:07:38:96:d7:ee:
be:c6:5a:c6:2e:08:c7:8a:fc:e9:b6:b9:d8:c5:5b:
0e:14:f9:8a:89:d4:7d:03:be:e3:a5:3e:fe:9e:0a:
45:8c:63:9c:e0:9f:1e:82:49:90:b5:5d:5b:fb:b5:
8c:5c:a1:d0:c5:4f:af:f6:cf:b7:cb:43:20:87:ec:
cc:e6:a6:11:19:63:76:5e:0f:08:87:fa:47:8a:d1:
eb:b7:b0:1a:3b:92:c5:af:6f:36:6c:f4:ad:10:c4:
4c:11:98:cc:4b:42:90:52:cb:1e:61:70:36:eb:41:
3f:e3:b8:c2:35:4d:fa:5d:26:25:67:4d:70:e6:3c:
a6:c8:11:b5:d4:b4:8e:97:1d:08:c3:70:cd:96:b1:
c1:65:53:ab:60:5e:aa:0a:8c:79:6e:bf:83:64:60:
2b:5a:19:b3:a6:6e:24:25:93:42:69:e1:20:d1:ef:
51:9c:27:2b:9c:a5:0b:2a:2c:75:c5:5e:8b:53:b0:
63:c3:d9:67:48:8f:da:2b:9c:0a:f7:7e:c8:ac:17:
a6:f8:68:7f:9a:9a:0c:e8:ff:9b:ca:b5:ad:06:f9:
69:14:82:5b:a8:c6:f9:cc:6d:cd:49:d6:6a:ae:db:
42:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C7:50:21:8C:2C:C7:7B:92:53:63:05:BF:D9:73:62:FA:E5:67:42
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/i8dQIYwsx3uSU2MFv9lzYvrlZ0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.56.0/24
37.77.58.0-37.77.60.255
37.77.62.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0d:c0:14:c4:fb:01:87:c9:c0:bc:82:c0:4d:be:e1:ef:cb:
8c:dd:89:ce:49:a0:a5:d3:74:c4:73:40:61:7d:de:f5:44:b8:
9d:df:1a:d0:a0:ab:e1:56:cb:0a:29:8f:57:5f:36:b2:f7:38:
b1:17:b9:26:a3:69:9a:e7:da:e7:62:d5:ae:bc:49:5c:35:0d:
02:34:e1:4f:f9:7d:5e:10:5b:02:34:9b:0e:80:ed:36:13:c8:
8e:6d:aa:23:5e:5e:c8:41:23:8f:eb:ff:1a:73:21:31:e5:5b:
6d:68:e9:5b:92:bb:21:64:f5:f4:76:fe:93:af:a6:ac:1b:80:
ec:84:22:45:18:39:53:a7:ee:ea:32:0e:aa:43:e1:a2:de:89:
ab:80:56:56:d4:a4:32:d5:59:b6:7a:0f:a9:2b:b8:0c:6f:44:
03:60:37:fd:0d:1d:8e:cc:da:b7:c3:59:f0:00:da:b9:5a:15:
ef:fc:0b:e4:bb:b9:dc:62:50:c8:09:96:f9:17:b7:06:44:36:
2f:20:e4:5d:a3:44:26:38:14:23:4f:8a:78:a6:5a:ef:f6:4f:
1c:c0:94:c3:bb:f7:d6:82:d9:2c:aa:24:8a:fe:5f:55:ef:0e:
dd:2a:1f:a8:27:52:93:bb:0a:e1:d6:6a:15:4d:17:e0:c8:27:
94:15:09:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:24 2024 by rpki-client on console-ams.rpki-client.org