Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5yuIY60h7uy-yETfRnq-kAFElPw.roa
File: 5yuIY60h7uy-yETfRnq-kAFElPw.roa (raw, json)
Hash identifier: 1C2BMKzeEC7+D/hl27xYtGFwbXG9sUDypNo/Xfzo0rk=
Subject key identifier: E7:2B:88:63:AD:21:EE:EC:BE:C8:44:DF:46:7A:BE:90:01:44:94:FC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A07D9715429A97E9071C4E1E1FF467DAF
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5yuIY60h7uy-yETfRnq-kAFElPw.roa
Signing time: Fri 18 Aug 2023 08:53:25 +0000
ROA not before: Fri 18 Aug 2023 08:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197715
IP address blocks: 37.153.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:d9:71:54:29:a9:7e:90:71:c4:e1:e1:ff:46:7d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 18 08:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e72b8863ad21eeecbec844df467abe90014494fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:66:ab:ac:c6:86:56:9c:9c:34:bb:f1:ab:0d:
f7:3c:ca:77:c8:6b:4b:59:92:f7:de:68:b8:dd:cc:
8e:35:e6:0f:a6:5c:de:ba:d8:37:8a:e4:b3:2e:e7:
b2:6d:74:08:ef:f9:6d:8f:ff:cb:b9:4b:81:ff:7d:
75:24:21:79:94:80:34:75:d5:21:56:01:c6:9a:2a:
73:7c:14:1a:62:bf:3b:b0:de:d2:08:20:96:0c:e0:
fa:96:b7:8d:19:63:c8:46:d1:ce:69:71:f2:dc:8c:
2f:ea:5b:09:12:e6:6a:f1:67:a1:89:a5:29:23:8d:
fa:0f:b8:8a:a2:56:77:3e:e5:67:d0:49:1c:6a:b3:
0d:1e:ae:ec:14:8a:62:88:bf:01:82:97:65:1b:26:
9d:5f:3d:98:d3:ff:0c:23:75:23:18:25:92:a0:80:
69:66:81:67:52:95:71:01:73:f5:7a:5b:be:46:2f:
54:76:5e:f8:29:c7:18:e2:12:23:de:d9:a5:a0:6d:
0f:e1:91:e8:d6:d3:b8:53:db:7d:86:d7:4a:b9:20:
6e:7a:46:0c:14:f3:2b:39:b2:5a:c8:d6:a3:18:7f:
4c:e8:f5:fc:7f:b0:42:a4:4b:52:c4:07:d0:68:b2:
54:2f:1f:87:40:ac:cf:d9:aa:33:21:8a:d5:f3:ab:
fc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2B:88:63:AD:21:EE:EC:BE:C8:44:DF:46:7A:BE:90:01:44:94:FC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/5yuIY60h7uy-yETfRnq-kAFElPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
Signature Algorithm: sha256WithRSAEncryption
25:9a:30:7e:fb:5c:38:ac:f3:25:1a:5f:01:03:9a:64:b7:dd:
b0:e6:6e:17:ce:53:74:2b:d6:15:6c:ae:1b:fd:8d:0d:84:27:
db:b3:d8:22:b8:6c:c7:29:91:33:1c:d8:2c:13:93:a4:49:6b:
0e:5e:2b:9c:e9:d2:0f:26:2a:31:6e:f2:ee:a9:a9:52:04:1d:
71:23:49:f5:f6:bb:9e:1f:30:ff:13:a0:b3:60:fc:73:91:81:
af:94:b5:1b:78:20:35:3e:eb:35:82:af:a5:a0:11:78:82:bf:
f0:3c:bd:33:90:df:3a:ae:bc:1c:b5:e1:76:2e:44:79:ce:cd:
12:68:a0:f1:9b:7f:9e:83:e2:aa:db:fb:1e:90:a7:70:8f:9a:
f8:67:69:65:f4:83:f7:c2:bc:8c:1b:26:70:a2:04:45:9a:42:
8e:28:de:ea:32:12:ee:8b:b6:75:d7:b2:69:6b:38:c5:0b:f7:
c8:47:cc:bc:fa:62:9f:90:25:e6:ab:d8:d4:f1:06:03:fa:3b:
04:55:56:ad:5b:a1:e9:e3:f6:c7:88:0a:6a:65:1c:35:b2:05:
56:10:6a:f4:16:b8:06:7c:e9:c8:5f:0a:9a:18:2b:0b:23:ac:
10:c9:bc:96:d7:31:92:9f:62:85:d0:5f:12:82:64:65:52:62:
bf:de:f2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org