Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6G82vX7yLFkzysZH9jjvCsiJRqM.roa
File: 6G82vX7yLFkzysZH9jjvCsiJRqM.roa (raw, json)
Hash identifier: TA3GFZxX5v0swlV02YbeZLuSEN/4gx8e9+ABJ9tY9XY=
Subject key identifier: E8:6F:36:BD:7E:F2:2C:59:33:CA:C6:47:F6:38:EF:0A:C8:89:46:A3
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0185BE9D9C0F07DC3498F7AE6B9B3041A7B9
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6G82vX7yLFkzysZH9jjvCsiJRqM.roa
Signing time: Tue 17 Jan 2023 07:24:38 +0000
ROA not before: Tue 17 Jan 2023 07:24:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46573
IP address blocks: 37.153.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 04:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:9d:9c:0f:07:dc:34:98:f7:ae:6b:9b:30:41:a7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 17 07:24:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e86f36bd7ef22c5933cac647f638ef0ac88946a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:df:3f:a7:2f:e1:4c:f9:a6:58:f3:6a:8e:
bc:b4:1a:df:ee:3e:fa:88:1b:47:2d:5d:6a:bd:af:
d7:43:7b:84:e7:a1:c9:9c:d5:fe:e0:a0:3d:6e:07:
95:f5:5f:5f:93:f1:a5:c5:80:74:c9:06:e3:be:58:
39:d9:1e:59:8f:22:fd:a2:87:dc:85:6c:77:ec:cc:
c6:2a:03:18:de:9a:e7:32:a4:6d:63:33:27:ca:98:
14:6b:24:e6:4c:9f:dc:fc:27:e9:40:20:f3:17:ff:
44:d9:6b:c7:04:25:f1:5b:8d:a3:16:27:07:79:12:
c0:80:a1:cf:3e:e6:65:91:2d:18:17:bb:3c:c5:54:
56:b1:cf:51:c6:9f:0a:69:25:4f:e5:fe:29:93:7d:
4a:a5:42:c3:9b:17:ca:09:ec:39:23:70:cb:b3:a1:
f1:70:dc:39:2b:87:c7:ec:4f:0b:2b:09:af:2d:4b:
90:76:3e:76:89:79:00:e7:90:48:d2:56:22:59:33:
c3:c4:c2:14:75:31:ec:44:f1:6b:7a:a9:56:07:e6:
81:a6:73:4e:18:7a:53:0f:a4:c7:da:b8:80:7f:69:
b7:8e:1c:f6:1b:99:77:b7:62:cb:f0:15:d6:6a:c4:
6d:31:6a:9b:92:83:4b:fe:03:2d:41:c2:3a:69:36:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6F:36:BD:7E:F2:2C:59:33:CA:C6:47:F6:38:EF:0A:C8:89:46:A3
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6G82vX7yLFkzysZH9jjvCsiJRqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c4:39:4f:da:42:0a:30:53:4c:2d:eb:2b:5a:b7:15:82:d7:
5b:de:90:19:9c:19:59:a1:53:b8:11:86:7b:28:44:ec:5f:e4:
61:e1:01:5b:8c:8b:12:aa:18:9f:d3:22:9d:0c:7a:6d:3a:22:
d9:84:c9:e2:0c:5b:70:67:28:a8:13:27:cf:2e:6f:a9:5f:f8:
e1:7d:d9:f3:9b:24:e2:7c:70:78:a0:89:b5:08:12:a2:46:0a:
67:74:27:52:76:01:93:86:d5:2a:6a:c1:69:92:02:25:d5:4b:
f6:93:98:ec:c3:a5:3f:15:b3:d2:98:ab:3e:da:87:de:f1:01:
04:63:61:44:4c:f0:c4:7e:e9:d6:24:70:16:c7:f7:11:46:21:
98:73:b3:8c:32:c0:a2:ba:7f:a1:ea:ad:d1:bc:67:0e:92:a5:
17:85:10:13:4c:f8:86:a2:b9:81:6e:f0:4a:3f:67:d3:41:29:
a5:e2:78:7f:be:b0:a2:e1:be:08:00:49:5c:32:e1:3c:da:e7:
2d:7e:2f:cb:f0:8e:3a:50:d8:53:d5:72:b1:0e:73:81:62:e7:
e0:88:94:8a:c8:df:c6:19:81:fb:75:d1:a9:91:74:2c:36:a8:
9f:00:76:4a:a8:af:f7:f6:b2:ba:ca:93:d4:e3:3a:c0:5d:0c:
63:fc:6c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org