Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oxpJuOCHiCUq0xW-iHxFcUGUzFQ.roa
File: oxpJuOCHiCUq0xW-iHxFcUGUzFQ.roa (raw, json)
Hash identifier: LRZVqYF/2AMdTEeBZ+mzPE78d6gPxqSsf9iNBm41w2I=
Subject key identifier: A3:1A:49:B8:E0:87:88:25:2A:D3:15:BE:88:7C:45:71:41:94:CC:54
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EBDAE7B9AED7AA6190E4C5193418F245B
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oxpJuOCHiCUq0xW-iHxFcUGUzFQ.roa
Signing time: Mon 08 Apr 2024 12:28:32 +0000
ROA not before: Mon 08 Apr 2024 12:28:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43201
IP address blocks: 37.72.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 09:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bd:ae:7b:9a:ed:7a:a6:19:0e:4c:51:93:41:8f:24:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 8 12:28:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a31a49b8e08788252ad315be887c45714194cc54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e6:81:e1:a9:41:bc:e6:3f:f9:4f:92:a4:1a:
88:c7:41:b3:58:7b:d0:25:da:8b:cd:27:86:dd:dd:
f1:c8:57:69:e6:c2:17:8d:f3:a5:b1:d7:73:a0:32:
50:25:8c:e8:00:bf:d8:21:00:1d:1d:95:75:2f:bc:
4a:fb:02:68:01:2a:bf:1a:ad:98:30:10:80:3a:9b:
5e:5b:0b:a3:9d:2e:7e:b6:fe:5d:88:02:98:ac:99:
69:1e:84:a2:1a:89:73:2a:b3:36:d1:15:94:e9:64:
b1:1b:6e:98:27:15:0f:ca:ef:0a:5a:92:c4:6e:26:
9b:6e:6f:cc:48:c4:3f:7f:9e:84:39:a3:6e:4f:7e:
cf:e9:7c:58:72:aa:49:70:61:27:45:f8:84:42:20:
72:33:4f:b2:51:d1:64:70:4a:a5:ed:b2:ec:86:29:
1c:06:2c:d8:3d:8c:61:61:87:05:34:b3:6b:67:9e:
36:62:9a:0c:e6:7d:ce:6a:28:51:87:f0:e0:2f:ed:
54:03:52:d2:84:5f:6c:bc:37:22:c0:c9:b9:3d:d5:
42:64:2d:a7:6c:ff:71:b0:9b:86:ca:12:70:2e:e3:
cd:a8:65:09:a3:c2:69:9f:82:e2:b0:e4:78:8f:04:
e9:19:7c:b2:8a:a8:0c:2d:0d:61:5e:98:f3:ef:f2:
b0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1A:49:B8:E0:87:88:25:2A:D3:15:BE:88:7C:45:71:41:94:CC:54
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oxpJuOCHiCUq0xW-iHxFcUGUzFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.131.0/24
Signature Algorithm: sha256WithRSAEncryption
01:3d:1a:11:a3:8a:ab:50:ca:ac:e3:f2:87:9d:3b:b8:de:56:
d2:1f:35:29:87:5a:30:91:6c:b5:09:71:4e:cb:5c:cc:b4:d1:
2c:b7:02:34:ae:fe:fd:15:04:2e:42:86:9d:7e:4a:90:80:16:
14:55:86:14:e6:a4:90:db:f9:6e:9a:2b:12:f4:47:16:42:44:
2a:81:32:2f:f4:35:73:d6:00:90:53:14:6d:ab:0f:e7:15:e5:
10:77:92:cf:58:db:ce:13:18:92:de:93:81:ab:69:68:f2:a3:
39:5c:5e:29:fd:2e:14:ce:44:e8:53:d6:4e:a2:6d:f1:f1:3b:
65:5e:be:0a:27:c0:5f:fe:cf:98:9f:5e:3a:3b:fd:49:6c:8a:
79:4c:28:20:28:de:37:77:ad:18:21:7e:93:ee:cc:ef:43:f4:
1a:98:ab:11:55:01:db:2b:3c:c9:7e:68:e5:a1:e9:46:e2:a1:
bf:ce:00:da:e6:6b:05:76:78:36:42:a6:02:1f:09:fb:91:ab:
78:9c:f3:48:29:ef:d4:b9:b6:74:dd:35:85:a1:75:70:53:4e:
a5:a1:18:47:a2:79:82:17:6f:5b:92:89:05:b1:ba:c1:c2:d3:
8c:51:d9:56:d1:21:67:fc:e5:b2:82:18:12:02:e8:bf:12:96:
04:b9:75:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY69rnua7XqmGQ5MUZNBjyRbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwNDA4MTIyODMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzFhNDliOGUwODc4ODI1MmFkMzE1YmU4ODdjNDU3MTQxOTRjYzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeaB4alBvOY/+U+SpBqIx0GzWHvQ
JdqLzSeG3d3xyFdp5sIXjfOlsddzoDJQJYzoAL/YIQAdHZV1L7xK+wJoASq/Gq2Y
MBCAOpteWwujnS5+tv5diAKYrJlpHoSiGolzKrM20RWU6WSxG26YJxUPyu8KWpLE
biabbm/MSMQ/f56EOaNuT37P6XxYcqpJcGEnRfiEQiByM0+yUdFkcEql7bLshikc
BizYPYxhYYcFNLNrZ542YpoM5n3OaihRh/DgL+1UA1LShF9svDciwMm5PdVCZC2n
bP9xsJuGyhJwLuPNqGUJo8Jpn4LisOR4jwTpGXyyiqgMLQ1hXpjz7/Kw2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKMaSbjgh4glKtMVvoh8RXFBlMxUMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvb3hwSnVPQ0hpQ1VxMHhXLWlIeEZjVUdVekZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJUiDMA0G
CSqGSIb3DQEBCwUAA4IBAQABPRoRo4qrUMqs4/KHnTu43lbSHzUph1owkWy1CXFO
y1zMtNEstwI0rv79FQQuQoadfkqQgBYUVYYU5qSQ2/lumisS9EcWQkQqgTIv9DVz
1gCQUxRtqw/nFeUQd5LPWNvOExiS3pOBq2lo8qM5XF4p/S4UzkToU9ZOom3x8Ttl
Xr4KJ8Bf/s+Yn146O/1JbIp5TCggKN43d60YIX6T7szvQ/QamKsRVQHbKzzJfmjl
oelG4qG/zgDa5msFdng2QqYCHwn7kat4nPNIKe/UubZ03TWFoXVwU06loRhHonmC
F29bkokFsbrBwtOMUdlW0SFn/OWyghgSAui/EpYEuXV7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org