Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/29hgnDrDXgDkxma5BlX6hvTqnts.roa
File: 29hgnDrDXgDkxma5BlX6hvTqnts.roa (raw, json)
Hash identifier: P8+7pwpVNgRKt5P+LRcOgepUBKCgimBBro3R7yD8awg=
Subject key identifier: DB:D8:60:9C:3A:C3:5E:00:E4:C6:66:B9:06:55:FA:86:F4:EA:9E:DB
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018ABCF8815FB787EFF57D86D96A39A24997
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/29hgnDrDXgDkxma5BlX6hvTqnts.roa
Signing time: Fri 22 Sep 2023 12:58:37 +0000
ROA not before: Fri 22 Sep 2023 12:58:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216262
IP address blocks: 37.156.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:f8:81:5f:b7:87:ef:f5:7d:86:d9:6a:39:a2:49:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 22 12:58:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbd8609c3ac35e00e4c666b90655fa86f4ea9edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:ff:bf:22:fc:bb:57:1c:e3:ba:0e:ec:9e:
a0:be:bc:7b:c3:88:2e:e3:81:52:ee:e2:ca:d0:d8:
db:60:ef:63:6a:2b:55:4e:ed:44:73:ad:ee:12:b4:
49:13:4b:c8:a5:3d:57:a1:19:a1:66:7c:fa:30:4f:
a8:75:54:73:01:57:18:41:0f:98:6b:df:22:ad:14:
3e:94:54:58:2c:43:bc:15:4d:76:92:08:cf:b0:68:
50:9b:b5:ab:49:0d:d8:17:fc:9c:1f:65:21:28:0d:
24:16:63:58:da:2a:42:14:87:b0:c3:e1:9a:70:2c:
8e:03:00:25:cc:ad:47:26:79:51:87:c6:ec:19:68:
01:84:de:46:ff:a0:ef:2c:de:98:8f:42:50:e1:1b:
ae:77:da:ba:e2:98:27:81:a3:78:4d:53:21:8f:3e:
62:b3:50:d0:d2:6d:5a:bb:e2:3f:e0:3b:e8:7e:fe:
9c:35:a3:67:dd:1a:c6:43:dd:8c:30:6a:fd:26:f0:
7c:18:f8:67:3b:a1:7f:8d:3f:7d:8e:73:76:84:2e:
f5:a3:8c:22:da:ba:11:ca:1c:4a:46:a2:93:98:76:
6e:74:b3:35:e6:6e:d0:3c:c8:62:48:8d:27:16:76:
0e:ea:ca:02:58:ca:3e:2c:14:4c:7a:c2:07:86:03:
f5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D8:60:9C:3A:C3:5E:00:E4:C6:66:B9:06:55:FA:86:F4:EA:9E:DB
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/29hgnDrDXgDkxma5BlX6hvTqnts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.5.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a0:78:08:01:94:f9:76:2a:3d:50:28:4b:9e:8e:68:c6:32:
72:c0:49:1f:6e:79:7b:f2:e9:ab:48:5c:3d:02:ad:17:e3:9f:
fb:1a:10:9c:ca:fe:28:0c:93:55:c9:1a:73:76:ce:17:3f:3d:
08:51:9e:f8:7f:27:ae:16:07:03:a2:b3:b0:20:1e:f6:19:b5:
2e:e2:54:cb:99:32:d5:5e:b1:bf:b1:29:45:6d:cf:1d:e9:93:
f8:89:b5:5a:f1:2e:35:75:4d:d3:1b:8b:e3:15:27:b3:18:47:
43:7a:d4:57:c5:8c:eb:06:63:86:2f:8b:fc:06:48:5b:9d:2f:
f5:2d:fd:03:fd:7e:6b:95:08:43:47:47:db:9e:8f:8c:47:78:
a5:f2:f7:68:04:00:9f:62:d1:8d:1c:72:a3:97:ce:b7:4a:27:
6c:34:45:ab:0d:70:49:90:a5:98:f7:57:7c:60:89:c0:b5:13:
87:60:04:af:e2:f9:32:eb:89:37:87:b1:76:51:6e:96:e8:5c:
5c:6f:42:79:25:91:77:b5:4f:83:27:29:25:bc:5b:41:e9:ab:
04:6f:e3:ea:f9:41:06:67:b9:34:c8:94:2f:57:ad:8f:33:9f:
ae:29:07:fb:f9:4e:d3:e6:57:3d:5d:34:32:4c:66:a2:15:6d:
cb:8d:3c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org