Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/k72jcsbyPhRuMFC6zzaaT9jy9dU.roa
File: k72jcsbyPhRuMFC6zzaaT9jy9dU.roa (raw, json)
Hash identifier: iqXGXc3tUJeoGWuNdtbIkX//TND64QQyThWLxWkovPM=
Subject key identifier: 93:BD:A3:72:C6:F2:3E:14:6E:30:50:BA:CF:36:9A:4F:D8:F2:F5:D5
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 018E079F682ACCD3356590C375300B40EAF6
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/k72jcsbyPhRuMFC6zzaaT9jy9dU.roa
Signing time: Mon 04 Mar 2024 04:01:11 +0000
ROA not before: Mon 04 Mar 2024 04:01:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213035
IP address blocks: 37.0.12.0/24 maxlen: 24
37.0.13.0/24 maxlen: 24
85.202.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 14:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:07:9f:68:2a:cc:d3:35:65:90:c3:75:30:0b:40:ea:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Mar 4 04:01:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93bda372c6f23e146e3050bacf369a4fd8f2f5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f2:0a:1b:d9:65:69:b5:89:e7:2a:16:b1:0c:
4e:7c:09:d3:59:c9:7a:33:d7:4f:20:3c:ce:29:93:
d2:f9:47:bb:a6:92:c4:a1:63:d2:1c:87:13:f3:34:
2c:02:4d:fd:bb:87:5f:56:c2:53:b4:fa:2f:c4:f6:
b5:1c:57:14:74:bf:6d:ba:ee:0b:b5:31:98:64:a2:
61:ff:c3:72:8e:e2:c0:7c:28:6a:db:55:09:24:c5:
6c:a4:5e:9b:45:8c:d6:40:41:e3:a8:e5:21:22:91:
bd:47:ea:94:8e:ac:27:4a:5b:cc:7d:54:6c:37:92:
e9:9c:c0:94:7a:83:da:ac:6c:10:d7:bc:a4:98:d0:
52:65:90:69:59:ff:f5:21:c7:b3:a1:b8:e0:c0:b2:
41:9f:a3:7d:4b:b9:f9:9b:61:77:c0:98:44:a5:a2:
90:e2:65:80:5b:d2:c0:54:42:fa:8c:54:1b:5d:68:
5f:22:a4:c2:36:81:cc:37:fe:71:2f:f8:12:db:ff:
3c:a1:5d:57:54:32:83:5f:ee:99:98:6f:ad:df:47:
95:50:12:33:8b:d3:ad:86:2b:4b:94:de:71:19:db:
91:dd:da:88:33:98:0e:ea:f0:13:b5:28:d1:ae:be:
25:fb:9c:99:60:8e:42:fb:51:eb:41:14:0f:a2:f8:
16:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BD:A3:72:C6:F2:3E:14:6E:30:50:BA:CF:36:9A:4F:D8:F2:F5:D5
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/k72jcsbyPhRuMFC6zzaaT9jy9dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.12.0/23
85.202.170.0/23
Signature Algorithm: sha256WithRSAEncryption
13:82:3a:b8:b0:fb:41:c3:f1:5a:76:2b:5c:1c:4a:bd:81:eb:
bf:0a:05:03:e7:61:a5:42:36:be:de:f4:ea:6f:88:7c:a2:87:
0b:59:9a:96:db:4d:64:95:71:72:7b:65:32:82:3f:80:61:e7:
07:d7:a9:6c:4e:19:b7:8d:02:5c:23:9d:9f:9d:bc:1d:9e:c0:
87:06:85:cd:e1:01:ac:28:1a:90:6c:5a:05:61:d7:21:02:4a:
7c:b6:29:cf:79:82:f3:55:cf:3a:5f:cf:58:ee:66:cf:7f:c8:
e5:77:ac:4b:3d:30:97:30:0a:cf:03:3f:0c:c3:f1:03:e6:8b:
c1:50:09:5c:a3:ad:41:96:54:11:ca:b1:96:48:7f:46:ca:dd:
f8:dc:5a:1d:29:48:87:bc:3e:77:9f:9e:2c:c2:d5:79:a2:a3:
06:ce:5d:13:ef:18:f1:6d:b1:f1:45:5a:23:20:5f:d4:3b:bf:
1b:b4:3a:22:f1:b1:d9:b5:2c:aa:70:c8:be:e4:c9:ae:ad:61:
7d:ba:17:1c:81:6e:77:48:3f:7e:50:83:37:7b:61:04:b8:55:
92:b0:8b:ad:72:91:76:bb:36:f5:a3:1c:c0:ce:3b:cb:e9:c1:
e4:e1:1e:1c:35:a8:a4:84:ab:87:e1:71:4c:4d:b2:13:73:32:
42:33:a9:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org