Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0s8IuEM5l10ukP3Gi8loUt0FIo0.roa
File: 0s8IuEM5l10ukP3Gi8loUt0FIo0.roa (raw, json)
Hash identifier: MW4bwC3oG+DtiPkFicDEJxVVWIDmMPVFSFwKsAd1oaw=
Subject key identifier: D2:CF:08:B8:43:39:97:5D:2E:90:FD:C6:8B:C9:68:52:DD:05:22:8D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01866476DEC2B041E8A54F01216E5FEEB348
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0s8IuEM5l10ukP3Gi8loUt0FIo0.roa
Signing time: Sat 18 Feb 2023 12:19:17 +0000
ROA not before: Sat 18 Feb 2023 12:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 37.156.5.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 15:07:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:64:76:de:c2:b0:41:e8:a5:4f:01:21:6e:5f:ee:b3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 18 12:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2cf08b84339975d2e90fdc68bc96852dd05228d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:48:3d:2a:12:8f:9e:d5:d0:ff:cc:d0:33:ec:
7c:d6:d0:ff:a2:19:72:eb:b8:f9:23:b6:7a:5f:9f:
4b:ed:57:06:f0:56:b1:bb:b3:0c:3a:e7:bc:79:56:
ee:ba:a5:da:16:bc:82:cd:80:2f:9f:03:f3:3b:73:
90:87:88:ad:57:73:4f:dc:3f:49:22:f2:1c:6b:67:
18:14:de:06:bf:50:51:a0:ae:84:92:56:a1:d8:a2:
5e:09:b6:e6:0a:f8:80:15:44:fd:b4:66:28:e1:33:
54:e8:bb:51:a0:34:65:c8:d5:1c:e7:98:9b:e0:e4:
de:d0:d2:90:95:f3:71:8b:c5:09:55:05:d2:21:5e:
f9:f2:76:28:b0:ee:54:bc:5f:52:dc:69:08:f4:60:
0e:e3:ef:b7:72:ea:50:78:9b:20:c7:ea:c1:ef:b3:
bb:d2:e1:3a:11:1e:b4:bb:32:96:aa:de:57:40:fb:
9f:eb:8a:14:c4:b7:03:4b:19:97:8e:ab:1c:18:3a:
38:03:de:fa:d4:e8:65:36:70:1f:05:67:f6:b6:de:
8c:6d:b2:3b:ae:99:a0:b3:07:de:28:35:59:a8:34:
e6:2d:c8:c2:1d:9e:a0:e5:5f:0e:09:4f:38:2d:f0:
a6:6a:81:da:15:b1:06:98:b4:ed:4a:f9:f7:0b:6c:
4b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CF:08:B8:43:39:97:5D:2E:90:FD:C6:8B:C9:68:52:DD:05:22:8D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0s8IuEM5l10ukP3Gi8loUt0FIo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.5.0/24
77.81.65.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a5:3a:a1:7c:4a:79:b9:aa:f5:4a:df:a3:e1:c6:53:8e:38:
1b:d3:bc:0c:af:23:a2:b0:ca:db:1a:9a:93:82:d0:d2:fe:bd:
27:0b:ea:7d:22:74:b7:a0:58:07:c2:20:ca:42:67:84:e2:84:
6e:44:7f:31:a2:b9:04:38:e8:de:4e:27:af:3c:66:d2:66:d6:
7a:f4:15:99:b8:8e:db:03:d0:39:2c:ce:c6:57:ce:3c:c3:c3:
bf:73:91:53:e4:20:8e:dc:5e:6c:8c:07:03:dc:9d:31:26:8a:
38:3b:f0:90:6f:0f:5d:61:f5:04:3f:0d:ef:61:16:45:92:26:
22:5e:96:49:93:62:61:a9:3e:3a:9f:61:75:b7:2a:8f:0d:af:
41:22:0a:cc:2d:bd:59:24:39:08:c2:a3:52:99:e3:ee:d2:29:
dd:36:bb:37:5e:c1:53:25:00:ef:15:18:1f:49:de:53:a1:95:
3c:fe:59:43:0a:54:33:58:90:97:e9:4b:1f:17:e9:2f:0e:f6:
99:1a:bf:c6:bb:3c:81:4d:34:1c:61:d8:f8:dc:0c:17:2d:30:
a4:c3:c4:63:8a:6c:b5:43:80:9d:12:e1:e0:9e:98:1c:a0:b0:
c3:92:b8:c5:89:d7:b5:0e:b0:1c:13:fd:ff:26:16:e2:af:e2:
18:8c:b5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org