Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ioa8Yqy-SAQms8ylYG03GSCILok.roa
File: ioa8Yqy-SAQms8ylYG03GSCILok.roa (raw, json)
Hash identifier: iXtdzIVD/HoZ01QwkdfVxzrF0B6mJgX2oUeBOhnJcP0=
Subject key identifier: 8A:86:BC:62:AC:BE:48:04:26:B3:CC:A5:60:6D:37:19:20:88:2E:89
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01914AF55C5847DE4C7F282F2D80DBFC9D2B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ioa8Yqy-SAQms8ylYG03GSCILok.roa
Signing time: Tue 13 Aug 2024 08:57:59 +0000
ROA not before: Tue 13 Aug 2024 08:57:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61254
IP address blocks: 37.140.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 04:11:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4a:f5:5c:58:47:de:4c:7f:28:2f:2d:80:db:fc:9d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 13 08:57:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a86bc62acbe480426b3cca5606d371920882e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6d:98:42:20:c2:ad:6f:82:17:c5:3e:1a:28:
41:c0:9a:26:9d:ff:f6:32:6c:19:4e:8d:c9:6f:4a:
46:b8:ea:df:f4:ae:dd:28:4e:e7:a3:05:62:43:73:
d6:13:ac:1d:5d:d4:0b:8e:99:c9:d4:53:bd:49:ba:
b4:d9:1e:67:d9:c4:7a:18:82:2a:06:e0:cb:88:36:
b3:0e:e4:db:c5:b3:fb:7c:0e:63:a5:cf:27:c3:dc:
cb:57:8a:6f:1f:cb:ad:a6:68:a6:af:4a:3d:47:eb:
09:85:c5:90:32:40:b2:25:3f:b5:f0:0a:09:58:cd:
74:7b:3d:fd:f5:7c:56:61:c9:37:8b:6d:36:f5:ee:
95:63:d4:ef:7e:9d:ba:d7:e0:6d:c3:b0:86:dd:e7:
a2:02:26:ff:f5:8e:de:55:01:44:26:d2:f1:bb:80:
10:9b:ec:88:fd:ec:ed:01:c4:c6:a8:e8:b5:fb:cd:
93:dc:39:85:a8:a7:ee:f7:06:26:0f:83:da:6f:38:
74:ef:a0:f2:52:78:eb:95:9a:a4:ef:1f:54:43:07:
52:14:7a:25:89:22:a0:41:34:8d:d6:01:f6:f8:d6:
ca:03:4b:44:18:1d:66:5a:40:db:bf:e7:83:9f:51:
f8:72:3a:b0:17:1f:41:da:a1:e6:21:ab:af:ca:e7:
3b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:86:BC:62:AC:BE:48:04:26:B3:CC:A5:60:6D:37:19:20:88:2E:89
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ioa8Yqy-SAQms8ylYG03GSCILok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:71:b1:7d:7a:5c:91:4b:b8:ae:ad:69:9e:26:be:a1:8f:5d:
24:d1:30:a6:38:a4:61:88:62:50:fc:67:c5:8b:40:00:ae:8c:
03:08:fc:13:75:89:2e:df:61:bb:3f:dd:d4:d1:75:11:a0:ea:
3b:fd:f0:bc:33:02:c9:c6:4e:5c:d0:76:19:df:65:ad:ae:98:
0c:72:bb:53:58:0e:38:67:31:73:2e:da:53:9a:f2:81:33:2d:
5b:e5:ce:8d:d0:6c:c0:74:9e:a5:7d:d4:22:ab:fe:a8:f0:4b:
19:bb:35:82:16:a9:74:f5:08:8b:8c:fb:8f:2e:ed:c3:b2:45:
fc:6f:5f:44:6e:eb:71:d0:72:ad:8e:07:56:50:ad:06:10:c7:
2b:64:4a:74:8d:6b:de:ce:c0:25:86:7a:7e:58:8c:7e:5c:6b:
47:04:e8:f2:15:8d:40:3c:a4:9c:bb:64:dd:95:69:63:76:fd:
9f:f9:8b:a8:60:e7:b8:e4:f5:eb:d2:d3:69:e9:30:f7:47:cb:
7e:70:6d:5b:3c:58:c7:36:1f:a1:6f:5c:d6:a2:de:83:2c:55:
45:65:e6:5e:dd:01:b5:1f:6c:3c:85:d3:02:14:8c:d1:48:3b:
32:31:f6:2c:7a:45:f3:37:10:84:7e:21:ad:96:a8:42:cf:1b:
16:e4:5f:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFK9VxYR95MfygvLYDb/J0rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwODEzMDg1NzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTg2YmM2MmFjYmU0ODA0MjZiM2NjYTU2MDZkMzcxOTIwODgyZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8m2YQiDCrW+CF8U+GihBwJomnf/2
MmwZTo3Jb0pGuOrf9K7dKE7nowViQ3PWE6wdXdQLjpnJ1FO9Sbq02R5n2cR6GIIq
BuDLiDazDuTbxbP7fA5jpc8nw9zLV4pvH8utpmimr0o9R+sJhcWQMkCyJT+18AoJ
WM10ez399XxWYck3i2029e6VY9Tvfp261+Btw7CG3eeiAib/9Y7eVQFEJtLxu4AQ
m+yI/eztAcTGqOi1+82T3DmFqKfu9wYmD4Pabzh076DyUnjrlZqk7x9UQwdSFHol
iSKgQTSN1gH2+NbKA0tEGB1mWkDbv+eDn1H4cjqwFx9B2qHmIauvyuc7FQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIqGvGKsvkgEJrPMpWBtNxkgiC6JMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvaW9hOFlxeS1TQVFtczh5bFlHMDNHU0NJTG9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYz3MA0G
CSqGSIb3DQEBCwUAA4IBAQCKcbF9elyRS7iurWmeJr6hj10k0TCmOKRhiGJQ/GfF
i0AArowDCPwTdYku32G7P93U0XURoOo7/fC8MwLJxk5c0HYZ32WtrpgMcrtTWA44
ZzFzLtpTmvKBMy1b5c6N0GzAdJ6lfdQiq/6o8EsZuzWCFql09QiLjPuPLu3DskX8
b19Ebutx0HKtjgdWUK0GEMcrZEp0jWvezsAlhnp+WIx+XGtHBOjyFY1APKScu2Td
lWljdv2f+YuoYOe45PXr0tNp6TD3R8t+cG1bPFjHNh+hb1zWot6DLFVFZeZe3QG1
H2w8hdMCFIzRSDsyMfYsekXzNxCEfiGtlqhCzxsW5F8+
-----END CERTIFICATE-----
Generated at Thu Aug 15 05:16:39 2024 by rpki-client on console-ams.rpki-client.org